Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
File: ORxdMzEUXsjicYdvgEIge50Ay2Q.mft (raw, json)
Hash identifier: I7oO2y6ceB1cyB1hNekpSWEqCnI0VEcHBII7NnzxKp0=
Subject key identifier: 0D:33:D9:D4:ED:DE:D1:0E:4D:F1:8E:11:F5:E8:44:95:71:1F:C0:A5
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: 019CAEA3782DCAA52E2F406AC65A5EF4BE1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
Manifest number: 111F
Signing time: Mon 02 Mar 2026 13:01:14 +0000
Manifest this update: Mon 02 Mar 2026 13:01:14 +0000
Manifest next update: Tue 03 Mar 2026 13:01:14 +0000
Files and hashes: 1: ORxdMzEUXsjicYdvgEIge50Ay2Q.crl (hash: 6wH+o/wAlrRxH1csZ3l3hmRfIfghsZEEBjuuqgBPjJ8=)
2: bv7crWXlDlytvYkySG7c5NmMUkA.roa (hash: hgMG06MlwTq9Qr8spukEtgFAVFOnQKq96lFNbYV3uWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:78:2d:ca:a5:2e:2f:40:6a:c6:5a:5e:f4:be:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Mar 2 13:01:14 2026 GMT
Not After : Mar 3 13:01:14 2026 GMT
Subject: CN=0d33d9d4edded10e4df18e11f5e84495711fc0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bb:10:66:60:3e:d4:6d:e3:52:f7:4b:2d:ad:
b9:0f:cc:49:99:61:54:fd:d9:4f:78:1f:02:fa:47:
73:79:07:6f:c9:64:cc:8f:a4:96:86:1c:7b:7a:41:
3f:b8:72:59:d7:29:e8:88:92:e5:2b:6d:00:42:1f:
46:f8:a2:25:ed:06:f2:d4:e0:f7:12:ba:af:9d:bf:
50:d3:e2:45:79:71:62:d0:85:01:61:83:51:e5:33:
06:20:6c:52:89:cf:b4:f2:31:31:14:7b:39:f1:67:
67:30:a9:60:bd:9e:17:35:54:65:eb:2a:28:be:16:
41:89:d7:69:82:a1:bb:b6:89:8f:2f:61:10:38:61:
c7:d6:d5:84:8b:11:40:e1:b4:e4:d5:21:83:a5:08:
6a:73:ce:83:1d:e0:d2:27:71:23:94:a6:6b:6f:f0:
13:2e:23:37:46:4f:6f:54:dc:d8:c7:c3:da:ca:d2:
ac:db:33:6f:a6:60:b3:6b:af:09:1c:7a:6f:f4:21:
39:cf:e8:5d:fc:6a:ec:6e:d1:a8:96:af:cf:e4:19:
2c:47:eb:7e:6b:71:b4:5d:82:ba:52:65:3f:6d:f8:
6d:fa:32:3e:4d:e6:8d:a3:7a:6a:1c:0f:ef:8f:0d:
c6:31:d2:66:b8:03:25:66:5c:5d:b9:a3:17:83:68:
1a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:33:D9:D4:ED:DE:D1:0E:4D:F1:8E:11:F5:E8:44:95:71:1F:C0:A5
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:01:18:15:4e:14:6a:32:4c:e5:08:03:a2:94:6a:a5:40:64:
60:4a:8c:84:6c:eb:e5:72:eb:1c:37:34:76:4a:d8:8c:0e:c0:
69:67:a3:c2:0c:59:fd:a8:1d:fc:03:c1:83:93:1c:c3:19:05:
64:18:21:84:e6:a0:df:88:01:a8:9f:03:4d:d1:cb:a9:3f:73:
9f:25:ba:de:55:aa:ab:95:e4:9b:f4:7e:13:7f:bb:7b:40:0c:
e4:06:46:2b:88:6b:c2:e1:77:bc:c1:43:46:74:38:8e:31:f5:
e8:4f:17:69:1d:97:6d:1f:42:6c:31:00:b4:80:d6:f3:8c:60:
11:17:56:55:f3:84:fa:10:84:14:7e:f0:ee:e5:90:02:0a:cf:
aa:b7:02:da:38:06:bd:0b:e1:93:3f:36:2b:55:d7:8e:fa:3a:
71:39:06:71:7c:c2:64:e9:f4:66:da:d7:23:29:66:f2:c4:d0:
0c:cf:ab:53:b7:57:21:4f:ab:80:f7:0b:84:62:db:43:6e:9f:
3a:f6:f9:be:0f:83:9b:13:5f:df:aa:81:9f:0f:54:84:44:ac:
fe:55:d0:29:b1:4e:38:14:cb:78:ef:cf:35:b0:ef:db:5a:07:
d0:06:66:69:76:64:0a:8c:d7:cd:52:ce:95:48:d2:4d:64:4d:
ef:73:29:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:25:42 2026 by rpki-client