Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: Hvr4NRX4XtAiWR2MkdomWJ5jutTI4eK8IDqskGRYezI=
Subject key identifier: DA:E8:D4:EC:B6:DD:8E:5D:D4:9A:78:4C:83:EB:D4:9B:B8:7B:80:C9
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019CAA21E74ACD5794B5A3FA9DD07027BEDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0EEB
Signing time: Sun 01 Mar 2026 16:01:14 +0000
Manifest this update: Sun 01 Mar 2026 16:01:14 +0000
Manifest next update: Mon 02 Mar 2026 16:01:14 +0000
Files and hashes: 1: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: SWQBtu9MIcbt69+DKVOCFHkBOannGn5VoiVl1ekr9oI=)
3: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=)
4: xkVE7KUdk3_Gxthu42EOBxgV05Q.roa (hash: OLCiaU+AVFxgMEa5gMdkqLSxOFCgu1RCocNrX9T3asM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:e7:4a:cd:57:94:b5:a3:fa:9d:d0:70:27:be:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Mar 1 16:01:14 2026 GMT
Not After : Mar 2 16:01:14 2026 GMT
Subject: CN=dae8d4ecb6dd8e5dd49a784c83ebd49bb87b80c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e4:01:9d:c1:f5:45:00:d1:35:57:28:ff:bd:
50:d9:a5:43:fd:d5:29:77:68:0d:f2:88:36:1f:2f:
05:94:0f:7c:72:06:18:c5:b6:15:f4:dd:3a:52:19:
2c:09:df:f7:8e:ab:03:09:44:b3:a9:52:74:b7:d1:
7f:a1:46:f1:67:cb:d2:19:45:b4:e0:52:a3:fc:21:
a1:70:2e:db:47:70:04:c6:fe:96:0c:e3:d9:d2:c6:
09:69:8a:8a:c1:9d:d2:98:1d:3e:b8:0a:2b:f6:b4:
52:56:b8:e2:49:38:2b:c2:ee:6f:8c:25:04:e9:36:
86:c5:40:75:57:82:bc:35:c0:ae:1a:98:8c:70:d6:
7c:ba:4c:a3:93:8b:5e:19:c9:45:8d:7c:35:15:69:
05:60:02:9c:9a:8a:40:05:39:4e:0e:7f:fc:fd:67:
aa:b2:1c:68:d8:ae:ea:47:2e:4f:0d:dd:66:4a:c2:
cf:00:3a:c9:23:2d:2a:5f:b1:ae:ce:a0:fb:21:b2:
4c:a4:25:53:33:ce:a2:d5:4f:df:5d:5c:91:89:ae:
91:44:f5:44:f7:fa:72:a1:f1:53:08:ca:de:44:72:
6c:12:93:cc:17:9f:4d:8b:22:a3:98:1e:ea:3b:32:
46:ee:e3:99:65:e7:4b:5b:4d:bb:9e:e7:34:4b:54:
c9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E8:D4:EC:B6:DD:8E:5D:D4:9A:78:4C:83:EB:D4:9B:B8:7B:80:C9
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:35:f5:c2:51:9c:04:03:85:e9:90:43:40:14:b3:81:7f:ec:
c7:5e:09:18:5d:ef:96:c8:ea:52:5e:22:62:27:dd:f9:0b:94:
56:3c:c1:a6:5e:8a:5c:24:04:29:94:fc:0e:28:1e:5f:48:ff:
7f:13:25:f0:6e:16:11:a8:5e:84:61:7e:b4:a1:02:25:b1:11:
53:e8:93:00:78:61:f3:f5:52:7e:05:97:80:aa:3d:63:f2:c4:
9b:ef:3c:71:c3:e2:06:a2:77:49:cb:6b:fd:fc:ec:c8:a0:19:
af:a9:2e:e2:a0:f1:17:54:01:f7:b0:3f:a6:f7:aa:15:1a:a4:
0b:89:8f:7c:81:9f:7f:da:66:e4:5d:a6:49:39:22:30:15:ef:
c9:de:50:10:40:3f:59:ca:03:69:a2:cf:23:b5:18:01:79:12:
0e:90:aa:ea:2a:fb:1c:6b:8f:aa:fa:34:7f:89:28:28:a7:84:
49:49:e1:e8:1c:6b:cd:c3:9f:fb:2b:a9:1e:f6:64:59:83:a6:
5c:15:50:2e:d2:5e:12:46:f1:66:df:4a:ca:40:e3:78:b6:49:
4c:f7:2f:9b:68:23:b2:e8:31:a9:82:31:83:80:fa:80:34:fb:
4c:b2:f9:c3:33:a4:36:15:4d:ba:d9:5a:59:32:db:cb:9b:32:
5a:97:67:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:38 2026 by rpki-client