Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: TwX3FPEvkYEn+tzjih5PglwRBof/FQXuYIMIrOE/9Qo=
Subject key identifier: 42:3B:B2:2D:D6:88:38:53:B4:CF:C2:D7:E5:33:0A:84:CF:B1:54:09
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 019CABA24F95C3F429F858C8C29F711EC702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 0A1A
Signing time: Sun 01 Mar 2026 23:01:06 +0000
Manifest this update: Sun 01 Mar 2026 23:01:06 +0000
Manifest next update: Mon 02 Mar 2026 23:01:06 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: fT+N7IpOM0WPalot8uNhw1/s2O5G/F4QuIGhjLQ/oYs=)
2: iG53FLKNGEtI7O_-qbJCuOHpkfY.roa (hash: btGtfmg9m2lBCFlLyRHCIrg7YepxRxneqBtZfQH7n/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:4f:95:c3:f4:29:f8:58:c8:c2:9f:71:1e:c7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Mar 1 23:01:06 2026 GMT
Not After : Mar 2 23:01:06 2026 GMT
Subject: CN=423bb22dd6883853b4cfc2d7e5330a84cfb15409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:48:a5:0d:07:12:46:3a:37:30:f0:4c:91:e7:
b6:7c:7a:41:66:ee:3c:62:7d:4e:40:23:63:46:7d:
c4:14:d8:eb:a3:01:aa:5a:a7:bc:2a:22:38:f1:cb:
30:ff:b4:ab:24:79:51:85:b8:b8:41:be:67:8a:8f:
d9:81:94:fa:85:f0:89:b4:40:f3:cc:6f:fa:a9:50:
63:4f:e7:9a:1d:37:71:ad:69:46:1b:2a:3b:28:ad:
ee:46:50:08:90:84:8f:bc:59:be:b8:04:e4:f4:06:
f6:81:4c:ec:00:03:cd:24:6e:36:91:f3:65:0e:c0:
8a:de:63:d3:f5:45:c9:93:55:44:fe:aa:10:21:de:
c5:2d:1e:27:2e:3a:c4:d1:3a:ee:40:74:8c:f9:20:
ab:e4:a8:0e:5a:d6:70:4c:87:13:55:a1:7d:63:23:
2f:ab:b8:68:78:ef:8e:99:05:36:4e:79:fb:9a:57:
3a:8e:e3:31:7c:49:a7:56:68:26:80:69:f3:18:68:
5d:5e:b3:04:f9:62:e6:5f:f0:45:4d:72:3c:c1:f5:
ef:ec:11:9c:09:ca:e6:c5:1b:64:63:e3:86:47:34:
6a:5e:25:c6:81:3a:af:aa:c2:d8:9c:90:a7:9d:59:
aa:29:92:01:94:ab:44:9b:d4:fc:40:61:c7:3a:1b:
1e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3B:B2:2D:D6:88:38:53:B4:CF:C2:D7:E5:33:0A:84:CF:B1:54:09
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:12:7c:c4:3e:95:de:3e:52:33:a6:b8:57:cf:c6:8f:86:42:
a2:f7:cf:f4:33:db:c0:da:fe:cb:f8:53:fa:ee:1f:1e:7a:02:
84:f3:f8:df:8b:83:ea:e1:e1:2f:cf:e6:ea:cf:b6:22:b3:dd:
24:f8:5a:a1:2a:bf:a7:8f:34:34:2e:03:ca:fc:b1:20:63:d3:
a3:be:01:2f:e6:83:9f:cd:d3:54:b4:c3:86:d8:a9:d3:6f:24:
15:14:6e:73:e4:b5:5f:16:74:49:55:cd:53:06:04:65:5d:a0:
3b:6a:d8:75:ea:07:13:e0:ab:17:13:98:29:53:d0:07:3a:d1:
9d:b3:f9:15:8e:b2:da:e7:74:ce:37:b4:76:4d:77:33:f5:36:
99:8b:38:03:1f:3f:3e:4c:4e:c9:50:59:aa:21:8b:ea:4d:d8:
a2:2a:d1:a6:b6:2f:19:97:b3:aa:39:dd:8d:96:6e:ea:67:6f:
15:ab:09:d3:e8:e2:9c:7d:10:c7:28:3d:d7:b0:f7:67:cf:7b:
60:58:4c:3b:e1:04:28:d7:d6:37:1f:70:1c:8c:9d:db:c9:96:
bb:e1:ef:1e:b3:7c:35:9d:ac:e8:8c:84:62:6e:f3:d0:f2:4f:
72:54:5c:43:34:c3:f8:64:3d:fa:8b:1f:b5:1d:b3:30:7e:f2:
8b:f7:83:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrok+Vw/Qp+FjIwp9xHscCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZTg0ZDZkNmE5ZWVkZTY4MmVmMWI1Yzc4ZjFiM2YwYTMz
MTM5MTEwHhcNMjYwMzAxMjMwMTA2WhcNMjYwMzAyMjMwMTA2WjAzMTEwLwYDVQQD
Eyg0MjNiYjIyZGQ2ODgzODUzYjRjZmMyZDdlNTMzMGE4NGNmYjE1NDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEilDQcSRjo3MPBMkee2fHpBZu48
Yn1OQCNjRn3EFNjrowGqWqe8KiI48csw/7SrJHlRhbi4Qb5nio/ZgZT6hfCJtEDz
zG/6qVBjT+eaHTdxrWlGGyo7KK3uRlAIkISPvFm+uATk9Ab2gUzsAAPNJG42kfNl
DsCK3mPT9UXJk1VE/qoQId7FLR4nLjrE0TruQHSM+SCr5KgOWtZwTIcTVaF9YyMv
q7hoeO+OmQU2Tnn7mlc6juMxfEmnVmgmgGnzGGhdXrME+WLmX/BFTXI8wfXv7BGc
CcrmxRtkY+OGRzRqXiXGgTqvqsLYnJCnnVmqKZIBlKtEm9T8QGHHOhse/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEI7si3WiDhTtM/C1+UzCoTPsVQJMB8GA1UdIwQY
MBaAFNDoTW1qnu3mgu8bXHjxs/CjMTkRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82MmI3NzUtNzg0MS00YTYxLWI3OGMt
YjdiYTI4MTY1YTc3LzEvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82MmI3NzUtNzg0MS00YTYxLWI3OGMtYjdiYTI4MTY1YTc3
LzEvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAURJ8xD6V
3j5SM6a4V8/Gj4ZCovfP9DPbwNr+y/hT+u4fHnoChPP434uD6uHhL8/m6s+2IrPd
JPhaoSq/p480NC4DyvyxIGPTo74BL+aDn83TVLTDhtip028kFRRuc+S1XxZ0SVXN
UwYEZV2gO2rYdeoHE+CrFxOYKVPQBzrRnbP5FY6y2ud0zje0dk13M/U2mYs4Ax8/
PkxOyVBZqiGL6k3YoirRprYvGZezqjndjZZu6mdvFasJ0+jinH0Qxyg917D3Z897
YFhMO+EEKNfWNx9wHIyd28mWu+HvHrN8NZ2s6IyEYm7z0PJPclRcQzTD+GQ9+osf
tR2zMH7yi/eD2A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:02:45 2026 by rpki-client