Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
File: o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft (raw, json)
Hash identifier: cZxi4XnlQYr5mg8VJZO2pUr880IPdZVBwPZl67HBlJ8=
Subject key identifier: 9C:6B:03:E2:68:C0:59:29:D9:4D:BA:0A:82:D9:19:CE:9C:F8:59:63
Authority key identifier: A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
Certificate issuer: /CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Certificate serial: 019CAAFD4636693A84BFB75C1F3373E384AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
Manifest number: 1346
Signing time: Sun 01 Mar 2026 20:00:51 +0000
Manifest this update: Sun 01 Mar 2026 20:00:51 +0000
Manifest next update: Mon 02 Mar 2026 20:00:51 +0000
Files and hashes: 1: TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa (hash: 8hOHuxX3j27ZIrYwIouhG6F7KAUYojmRWpf6OzaimAU=)
2: o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl (hash: mEQriG29+16id86Jj5kIYdIic/RVUpRdGIuwIaZqPBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:46:36:69:3a:84:bf:b7:5c:1f:33:73:e3:84:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Validity
Not Before: Mar 1 20:00:51 2026 GMT
Not After : Mar 2 20:00:51 2026 GMT
Subject: CN=9c6b03e268c05929d94dba0a82d919ce9cf85963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:ea:c4:1a:ec:6b:79:59:56:16:df:fa:b0:
f1:53:80:f2:53:e4:5b:ae:8b:ea:28:e9:79:2d:bf:
15:68:d6:4d:95:65:d9:af:d4:7f:ed:c3:b9:d1:d7:
24:cd:5d:fb:21:a5:88:12:f6:03:65:ca:24:57:36:
14:2f:69:e5:1e:09:c5:6a:3e:ed:b7:98:e3:c4:18:
5e:2e:8f:27:75:2d:f0:60:83:8f:e9:bb:e1:ea:1c:
ae:50:2c:b5:2a:3c:a0:a4:95:e0:72:ed:c7:c1:e9:
c0:2b:b6:46:e4:d6:b9:79:99:dc:47:75:20:cb:78:
7f:cd:59:bd:61:e9:f9:9f:1d:bd:15:7b:da:9d:f5:
0b:33:72:9d:28:47:a1:a0:af:4e:64:c8:3f:1e:bd:
d1:cf:bd:81:b2:da:69:61:d0:af:5a:04:c5:70:44:
a7:2c:7f:67:38:9c:fd:c5:e4:f4:e9:fe:7a:fe:b8:
81:6b:05:89:78:fa:b5:27:e0:30:9f:fd:26:ee:49:
4a:31:01:10:92:9a:84:90:d0:ef:a5:cb:87:ff:e8:
15:09:32:ec:5a:e7:c0:89:01:cd:2f:25:b7:f9:53:
31:90:50:ee:60:26:97:25:43:22:d8:f2:35:b8:a2:
ea:68:d3:35:4d:85:3b:f2:31:58:41:6c:b4:72:45:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6B:03:E2:68:C0:59:29:D9:4D:BA:0A:82:D9:19:CE:9C:F8:59:63
X509v3 Authority Key Identifier:
keyid:A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:61:a6:2f:dc:32:27:57:e2:a9:90:85:16:1b:74:31:8b:13:
5d:72:1a:2d:40:a1:75:de:8d:47:c9:9c:67:ed:e7:2b:26:33:
ea:ff:ee:93:0e:a8:b3:4f:5e:eb:47:fe:f3:04:b2:d5:1d:00:
ac:6c:0e:19:0e:6c:2b:d3:6c:b1:37:e0:45:83:5c:89:ef:1a:
e6:3e:70:de:50:47:39:94:f8:5b:00:92:d2:22:e0:e0:37:44:
21:4d:0a:79:62:db:58:b9:80:c9:6f:d6:98:3e:1d:ef:e2:e0:
08:1e:85:41:98:4a:bb:2e:3e:00:e0:e1:4f:5c:a5:08:5f:fc:
66:7a:03:74:9f:04:6e:3d:6e:95:7e:e4:ef:5d:8d:c3:7d:1a:
18:3f:47:7a:00:be:33:84:32:04:c9:a3:f2:c5:d7:0d:dd:7b:
22:d6:75:5d:40:33:2c:d4:3b:e5:90:d0:b2:ff:7b:8b:82:be:
2b:76:a3:e1:30:96:52:4f:79:48:fb:82:59:98:58:79:80:bc:
46:bc:b8:f5:72:da:89:fc:33:ab:35:a4:7c:21:34:81:65:da:
60:7a:92:39:18:a8:f5:cd:02:3b:08:29:06:11:29:cf:db:2c:
88:0a:a7:f4:90:56:03:d2:60:5d:db:fe:0b:d1:11:4f:bf:e5:
68:86:20:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:40:42 2026 by rpki-client