Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: PivQVo3lWEZynGif4i3fdNL65IJY0uo6LiZyfcYTguE=
Subject key identifier: C6:33:3E:2E:26:2F:0E:C8:66:AD:33:30:12:74:D0:D2:25:15:A5:ED
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019CADFE058284C7E8716B507D82D101566C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 034D
Signing time: Mon 02 Mar 2026 10:00:31 +0000
Manifest this update: Mon 02 Mar 2026 10:00:31 +0000
Manifest next update: Tue 03 Mar 2026 10:00:31 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: 2hpANjIu2T7pRu6moKfM2m+VKkGbtM5VAsXkoCt+Qvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:05:82:84:c7:e8:71:6b:50:7d:82:d1:01:56:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Mar 2 10:00:31 2026 GMT
Not After : Mar 3 10:00:31 2026 GMT
Subject: CN=c6333e2e262f0ec866ad33301274d0d22515a5ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:87:04:f1:84:11:a1:ee:17:ef:61:96:88:3f:
8b:dd:9b:ba:69:4a:f5:c2:1e:17:1d:70:85:ea:bc:
51:2d:dd:e3:70:c8:5b:51:56:cd:35:87:8a:ee:15:
5b:70:06:1d:38:52:b2:d5:79:9d:27:dc:aa:37:fb:
e0:20:21:4e:c0:98:ba:64:1f:50:75:37:c2:bc:61:
96:85:bb:f6:d3:5a:03:ba:e2:c8:4e:47:60:e0:29:
ae:94:a3:ba:c3:b0:a8:c2:b0:09:e8:7c:27:50:15:
01:19:3e:b0:57:18:38:50:98:b5:51:22:8e:f3:b0:
81:70:1e:44:b6:1c:05:db:76:95:e9:a4:fd:7f:3f:
68:14:b2:1b:93:38:76:d0:e7:ba:81:5b:bd:6e:c5:
52:c1:39:a2:d2:88:4a:5f:83:0c:0b:69:74:2f:a8:
0f:30:08:5b:89:b8:c3:29:b5:4b:6e:7a:fe:e0:b6:
2e:c8:af:52:db:ed:87:ab:36:36:3a:a6:9a:c2:e3:
13:4b:0c:8c:ad:9f:03:83:84:f6:d8:8e:09:07:8c:
57:c2:3f:e1:f0:a9:be:01:dd:a8:2e:23:c0:9f:18:
a5:d5:6b:6b:9a:52:38:24:df:2f:2a:dc:04:10:0e:
85:6c:01:ff:70:3f:f8:9c:65:23:4a:39:5a:e3:35:
c4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:33:3E:2E:26:2F:0E:C8:66:AD:33:30:12:74:D0:D2:25:15:A5:ED
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:d4:0f:d8:f9:05:45:81:0c:5e:6a:32:f2:27:d7:2c:db:3e:
23:70:ed:84:8d:1d:ec:fa:30:f5:2c:1a:a0:82:51:d8:8b:53:
d1:4a:87:c0:0b:89:66:f0:e6:98:c4:47:0b:16:b4:14:d5:26:
16:37:76:e4:9f:46:f8:bc:f5:96:fb:b1:8e:09:b0:08:f2:48:
24:c2:7b:53:23:9b:fb:7c:e1:fc:19:1e:76:1f:fc:2d:92:62:
f0:ae:3b:e2:11:29:65:7a:05:70:ff:23:9f:81:a0:74:bd:86:
c9:4d:55:51:c8:77:47:64:6b:c3:1e:c7:57:43:20:2f:5d:62:
d0:49:ca:ef:36:20:ab:f7:2f:e2:b9:1d:77:ca:a9:a7:9f:87:
07:a5:ff:07:f0:c8:a9:da:f0:eb:80:38:d8:26:4b:c4:80:20:
a0:29:33:b8:e7:3b:64:fe:d0:d2:74:02:80:49:1b:0f:c9:a4:
ef:87:28:d1:6a:66:a9:af:8f:77:72:5f:da:e7:a7:37:93:af:
3e:98:23:b0:0e:cb:66:c4:70:bd:63:4d:2d:ab:d2:eb:2a:6f:
32:aa:6e:cf:88:da:44:ed:d2:03:78:09:95:dd:07:36:ec:ec:
b0:ac:88:7e:2e:6a:36:c5:d9:7b:e8:04:50:0f:ab:c7:69:e7:
69:9b:d4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:55:46 2026 by rpki-client