Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: 18MIyDsFH73ENd0wMXtnkdKkI7KpK5YK+S+1U73r938=
Subject key identifier: DD:22:3E:38:4A:CD:48:9F:8C:BE:37:F2:A7:04:01:55:F0:DC:16:C2
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019CADFEAEFB4BEFEF2CAA9110D1AC06F0A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 110C
Signing time: Mon 02 Mar 2026 10:01:15 +0000
Manifest this update: Mon 02 Mar 2026 10:01:15 +0000
Manifest next update: Tue 03 Mar 2026 10:01:15 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: bRBOto5mxKtpdClse1sQN8ntuQmzNhpjeffV5sRMLRg=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:ae:fb:4b:ef:ef:2c:aa:91:10:d1:ac:06:f0:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Mar 2 10:01:15 2026 GMT
Not After : Mar 3 10:01:15 2026 GMT
Subject: CN=dd223e384acd489f8cbe37f2a7040155f0dc16c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7e:3a:e9:d6:c5:c2:dd:8a:d0:62:40:9b:d8:
75:48:f3:81:de:c7:bd:16:62:48:28:00:25:82:fc:
e5:b0:8a:c4:de:ab:fd:ec:da:19:08:09:5f:5e:58:
4f:bb:0d:2a:5e:d4:8f:f3:24:32:96:b6:1e:26:c0:
9d:fd:5b:0d:dd:e2:38:5f:99:ed:d2:b5:f6:18:58:
59:ca:19:b9:26:83:5c:59:ea:20:ec:7f:4a:60:cc:
15:10:05:f1:ec:7d:55:7b:da:4d:60:30:ff:91:fe:
f9:67:7c:2a:1e:93:c4:e1:17:c5:a2:e6:40:02:6f:
44:a7:32:4f:2a:b0:57:5a:bc:6b:ff:58:fe:5f:3c:
d4:1b:5b:05:d4:04:4a:f6:f2:c6:14:c1:d0:e3:08:
b7:47:f5:07:dc:b5:b8:58:3c:97:89:3d:a8:50:9b:
b8:77:63:02:fb:39:e4:1d:4d:b4:4b:57:2e:35:fd:
7e:c9:d9:a9:da:c6:55:a8:78:4d:37:05:cf:c3:ae:
40:29:68:5e:cb:28:75:72:27:c7:20:61:31:a7:88:
06:fa:cf:28:ec:f8:d9:82:e7:3a:aa:6c:d4:12:64:
9e:0e:82:b2:75:cc:62:60:14:13:94:48:7a:b6:3b:
77:b1:68:0a:a8:8f:a8:21:97:14:bf:d1:2e:ff:3a:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:22:3E:38:4A:CD:48:9F:8C:BE:37:F2:A7:04:01:55:F0:DC:16:C2
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:c5:c4:de:a3:97:b7:a1:2f:98:5e:68:46:b6:59:92:7c:73:
69:fd:7b:ec:2d:ec:53:26:a2:5d:22:09:b7:ba:1f:d7:87:34:
ba:53:7a:c4:6d:2e:d0:0f:42:16:1a:b3:0f:3d:98:fb:cd:4f:
20:53:3f:dc:d1:bc:91:99:4d:fb:e3:38:19:cb:39:a1:c2:f5:
7e:bb:2c:a5:c6:94:8e:44:ff:31:70:4a:da:8a:3c:9c:b3:20:
2e:05:d7:3b:15:c8:d0:e6:d8:d8:10:40:5b:89:eb:89:2a:07:
29:f8:11:2b:3d:35:4c:fe:6d:fb:bd:6d:5c:11:03:83:86:6b:
5e:b0:28:8c:96:dd:97:8a:73:06:3a:a4:8c:85:d2:d8:91:b0:
7d:10:cd:e8:c2:db:45:ad:3e:bc:19:62:32:99:80:61:32:20:
22:8a:e0:7b:b8:37:92:bc:ab:ac:a5:0c:90:99:c1:c6:4d:73:
62:b9:4e:f9:0e:de:d9:ce:b8:ba:1e:8b:e6:7b:56:3d:d5:22:
ab:73:b7:f3:2e:4c:53:60:13:d6:08:01:a2:e2:04:db:0b:4d:
44:09:2a:08:d9:f0:3b:f6:ce:e3:70:02:22:cb:e5:cc:43:e6:
86:8b:d6:61:4e:de:35:c3:61:5e:1c:65:af:63:c8:c0:ca:e0:
54:65:cd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:02:22 2026 by rpki-client