Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json)
Hash identifier: 5SEKTOCeBMG42jIFZwGZf8O6WTa2YicBaE0zivfXe5k=
Subject key identifier: D5:B4:67:0D:E5:70:7C:8B:AD:D0:D1:61:B6:2E:10:34:C2:E4:B3:17
Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Certificate serial: 019CAD59B01E99B578933CA04F1C34F65C9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 07:01:02 +0000
Manifest this update: Mon 02 Mar 2026 07:01:02 +0000
Manifest next update: Tue 03 Mar 2026 07:01:02 +0000
Files and hashes: 1: Ih9S_kZcCOhq2N4y574bLA_RZG4.roa (hash: BK3QLHH47u/5bpJq4bbQNM29Xb79UfdHFqSx0wPQ9rw=)
2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: gfwV9UAxHQiBjg0AoZlXEz/p03r+yTDdkLFeiwJp/kY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:b0:1e:99:b5:78:93:3c:a0:4f:1c:34:f6:5c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Validity
Not Before: Mar 2 07:01:02 2026 GMT
Not After : Mar 3 07:01:02 2026 GMT
Subject: CN=d5b4670de5707c8badd0d161b62e1034c2e4b317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cd:2f:55:c0:a8:81:99:ce:4c:03:72:ac:71:
17:d3:59:bf:8e:5a:6a:f1:8c:16:24:20:fd:7d:3b:
e9:ee:4b:63:01:0c:04:e9:70:18:a3:c2:07:e9:71:
bc:5c:53:65:42:c6:e7:53:76:e4:99:30:f3:14:a8:
d0:ee:91:a2:17:26:1b:ea:e3:f4:24:6f:2e:12:e8:
87:39:0a:98:9b:ff:d2:f0:54:dd:15:ad:2a:9d:4e:
0e:02:7d:9f:a8:72:7f:da:33:c0:a8:95:f3:e4:22:
08:01:5c:c6:68:9e:ac:a0:52:7a:93:3e:45:41:b8:
b7:e4:9f:cf:0b:a8:07:24:52:4e:cd:64:e2:d8:7f:
ce:5f:b6:12:8e:f3:9b:89:1d:94:2b:a4:f2:fa:a8:
f3:68:4f:f4:62:e4:ab:a5:34:81:91:0c:45:d4:d3:
a5:81:08:2a:c1:50:dd:55:c4:b1:f8:93:f2:32:c5:
b0:bc:af:d0:a3:cd:a4:24:e2:4f:9f:08:f6:ac:06:
4e:77:20:5a:87:a5:83:17:84:54:db:f8:d7:e7:15:
02:ae:e0:7a:c5:55:f8:fc:f1:3c:fe:01:bd:35:61:
da:e4:36:53:9e:b4:ea:58:af:98:cc:85:dc:18:22:
29:a4:bf:62:0e:47:85:f1:4e:c4:f3:46:47:29:d7:
5d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B4:67:0D:E5:70:7C:8B:AD:D0:D1:61:B6:2E:10:34:C2:E4:B3:17
X509v3 Authority Key Identifier:
keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:2a:ee:69:e6:03:3b:c6:49:d8:18:97:da:b8:e0:16:2a:45:
97:f2:fc:f9:a3:a4:19:33:49:ab:14:e1:f2:b5:8a:93:a1:25:
9f:9e:f4:c0:cd:cf:8e:56:7e:bd:da:75:2c:75:77:70:84:43:
b1:5b:5c:8a:d1:18:60:23:bc:08:62:b2:9e:7e:ae:19:d6:d2:
eb:29:85:4e:eb:63:4b:27:d7:52:75:5d:55:7b:98:57:c9:c1:
69:2b:3d:25:94:31:21:a9:35:f4:79:7d:56:1b:b1:2d:76:e9:
c5:c0:59:1c:89:c5:03:6e:ba:73:d7:19:39:81:29:b4:6f:2a:
1f:e9:d6:ec:5c:b3:74:5b:0c:a8:d8:0a:c6:9e:5c:dc:92:34:
01:d3:c6:fe:3f:cb:83:db:69:05:11:e3:8c:1d:2a:e5:33:d7:
99:87:11:a8:94:26:60:dd:2f:01:40:c1:2a:02:f8:91:0b:6d:
76:85:66:69:34:0d:5c:81:d4:ef:71:ab:42:00:a6:d7:b8:ac:
f7:92:73:59:3f:94:c1:60:4d:1d:a9:7f:4f:65:18:48:b2:c9:
f7:8c:de:57:5b:ad:7d:ee:be:fb:72:72:22:74:5e:8c:19:99:
81:a1:1c:b7:d5:15:87:c7:03:c6:bc:1d:b7:58:0b:51:c3:e4:
35:3e:bc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:29:33 2026 by rpki-client