Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json)
Hash identifier: m1h+mePVr0Y+HWGEegDLsQlxYn9XGfB1SJltu0Oj9JE=
Subject key identifier: C3:0E:86:F8:A8:E8:A6:17:D7:1B:39:C5:99:F6:7D:1E:4A:30:17:6B
Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Certificate serial: 019CAAC67F7622EF8F38311F5006A35DE570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
Manifest number: 0CC7
Signing time: Sun 01 Mar 2026 19:01:01 +0000
Manifest this update: Sun 01 Mar 2026 19:01:01 +0000
Manifest next update: Mon 02 Mar 2026 19:01:01 +0000
Files and hashes: 1: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: zNW9HFYl4Doh9jUH4Vegh9jVSaj6oe/0DkJ8iptaroc=)
2: sn3WdCt5cOff3eRSoyZ6m4C8YHk.roa (hash: cE5dlzPj8uIWRQ0h42WBrGLO+X2WE9nV3RUnSZAY1yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:7f:76:22:ef:8f:38:31:1f:50:06:a3:5d:e5:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Validity
Not Before: Mar 1 19:01:01 2026 GMT
Not After : Mar 2 19:01:01 2026 GMT
Subject: CN=c30e86f8a8e8a617d71b39c599f67d1e4a30176b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:98:6b:ff:18:10:d0:7f:c5:94:31:50:fc:19:
13:52:98:ba:22:c2:e6:9c:2e:e0:f8:ff:bb:84:c2:
5c:a4:db:77:84:9b:5f:79:34:d5:5a:05:81:1c:d5:
02:f7:01:87:e5:2d:32:f9:44:83:79:9b:4c:50:b5:
90:b1:0d:cc:eb:f9:4e:6f:2f:e9:e2:fd:16:62:b0:
c2:9d:19:10:28:7c:31:56:a9:6e:c0:cc:3c:63:b2:
bb:ea:c8:9f:fa:af:6e:5d:61:d6:29:27:3e:4c:95:
00:e3:68:90:7c:2c:7e:84:ea:0a:40:78:49:b3:cb:
e3:c2:97:23:cb:cb:89:d5:b8:f0:98:b8:9b:0d:1b:
f3:1e:8c:38:22:76:f8:34:f3:61:4e:8e:0d:a2:7c:
95:38:d4:42:96:d0:17:19:50:b1:c3:1c:c4:52:e5:
8f:b7:ac:62:3f:c1:a8:5a:b5:1b:d4:4f:31:d9:6e:
b7:06:54:0c:1c:6a:f4:cd:fd:aa:a4:f2:88:d7:3a:
71:97:da:fa:ea:81:12:a7:01:2c:38:a0:93:e8:c3:
31:7f:91:20:14:76:e3:39:92:e6:a0:5d:a8:60:90:
66:2c:53:ff:99:43:7d:c0:6d:75:0d:bb:fe:a9:e7:
9b:b7:a1:9b:5d:58:ae:b7:e4:b7:88:fc:0a:31:2e:
d0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0E:86:F8:A8:E8:A6:17:D7:1B:39:C5:99:F6:7D:1E:4A:30:17:6B
X509v3 Authority Key Identifier:
keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d8:1d:d8:1a:e0:b4:75:cc:90:2e:a1:a5:cf:d3:ab:cb:ed:
f1:23:39:f0:a2:ec:1e:34:38:2f:b1:1d:8d:b5:d7:65:5c:d9:
2d:4a:ad:98:13:40:1b:51:17:c7:77:90:ab:91:fe:49:d8:90:
40:26:93:05:41:2f:65:fc:8f:8f:d5:54:7c:d2:80:cf:19:c3:
9b:c5:c2:63:ce:36:a6:f6:c1:41:49:a5:2f:32:16:e3:fb:a6:
6c:b9:ce:51:a6:95:c1:0c:4d:4c:3b:5c:46:90:1d:53:a5:b9:
fc:98:82:be:5b:31:b4:4e:63:8f:29:5b:61:da:c1:64:e3:14:
26:c6:30:aa:69:4c:fa:6c:e3:e7:7e:fe:68:72:17:1e:ad:f3:
c3:55:59:5d:bf:68:c0:c5:47:24:f9:fb:78:32:b1:38:b4:1e:
14:32:ce:25:c2:3d:40:c5:59:0c:9d:84:b4:96:cb:73:d4:2c:
a0:da:16:3b:d9:c6:4e:8f:75:67:29:88:61:7d:29:09:54:4b:
7b:cf:79:ee:d2:cd:9f:50:66:01:c6:9a:82:c3:42:47:53:bf:
00:33:d0:64:54:7b:28:10:92:82:50:a6:ce:8b:53:8f:9f:84:
44:20:46:b3:61:4b:f2:e1:6f:21:2c:29:69:71:47:a3:06:ab:
de:28:19:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:54 2026 by rpki-client