Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: 7TRxps7nxzpjlhBVTSCIYv7D1VwVND2hHtc04vn1ptk=
Subject key identifier: A2:71:D5:E2:EC:CD:C5:98:41:3D:CF:74:46:45:BD:1F:3C:BE:FB:17
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019CAC0FB302A4DAA9B0945E120D25D37F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 105B
Signing time: Mon 02 Mar 2026 01:00:35 +0000
Manifest this update: Mon 02 Mar 2026 01:00:35 +0000
Manifest next update: Tue 03 Mar 2026 01:00:35 +0000
Files and hashes: 1: CJjsxGugLLvFbEHWxKghiGCE6lc.roa (hash: cOhc+r4MNkPP5359GE1QtRWPIxNlJ+rMixUIriIgwqM=)
2: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: nCQSK82um85S7osOmV8h0ZNXDRbOgrOfeUtQDWaukVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:b3:02:a4:da:a9:b0:94:5e:12:0d:25:d3:7f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Mar 2 01:00:35 2026 GMT
Not After : Mar 3 01:00:35 2026 GMT
Subject: CN=a271d5e2eccdc598413dcf744645bd1f3cbefb17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:d5:9b:f9:4e:37:37:08:b2:ac:17:65:32:
28:3e:a6:52:ea:07:7b:fb:51:2a:58:5f:59:0e:c2:
3c:9a:35:8f:90:f7:02:13:8f:95:b4:98:ed:17:43:
04:01:c7:82:48:f8:28:d0:e1:d4:0c:ee:31:6c:77:
d0:71:67:a0:b5:ef:7a:dc:21:b4:eb:9a:aa:92:23:
80:33:3e:da:22:45:4f:ad:2c:97:7f:d6:bf:29:4f:
6b:31:37:b7:4c:9d:6b:6c:62:20:a6:7d:3c:2c:d2:
a3:1f:41:b5:ff:ea:8e:55:67:29:79:3b:a8:35:9e:
dd:9e:6a:38:7b:11:95:71:2f:92:01:c8:20:3a:0a:
aa:0e:92:f9:0b:b6:ff:05:e6:17:3b:ed:2b:25:77:
3b:2b:62:46:8a:9d:25:80:3d:b1:1e:82:bb:98:2e:
48:56:b5:7e:69:52:4b:9d:28:88:b8:71:7a:c7:64:
78:20:03:c3:c1:32:f7:cc:db:99:28:0e:e0:8a:08:
f6:e8:08:54:dd:20:c5:f1:43:b7:43:7e:a2:0a:3a:
01:86:1f:b5:46:4a:77:92:db:da:32:fb:98:d3:72:
39:a8:f6:53:cd:4f:6e:38:c8:1b:bd:fb:9f:cf:b0:
62:a1:34:13:6c:8d:01:c7:8f:00:af:cb:5d:23:61:
dc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:71:D5:E2:EC:CD:C5:98:41:3D:CF:74:46:45:BD:1F:3C:BE:FB:17
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:17:ca:d9:66:0f:25:d3:1d:9d:c2:c7:94:4d:69:57:58:da:
22:12:84:4c:75:36:7d:69:d1:dd:58:14:bb:6f:ae:12:ae:13:
3d:7f:e4:fb:39:d4:0d:2c:56:db:5d:8b:b8:2c:20:e9:c4:8f:
31:9a:fb:e2:f1:b0:ca:6d:d1:ee:c9:56:d3:1d:d8:d0:19:53:
b0:02:4c:7c:b2:14:a6:fe:df:1c:2d:f8:fd:8e:3c:e1:f6:8c:
72:cd:1d:b3:18:75:82:00:78:08:53:9f:f7:fe:91:0a:69:b9:
21:c1:29:91:f4:ae:1f:7a:00:28:46:c6:0b:d0:6f:88:28:3b:
c2:91:67:68:57:5b:f9:51:db:35:c2:54:8a:a6:42:88:14:cc:
f1:b3:cd:ab:ab:20:6c:36:f4:be:a3:12:45:1b:52:d1:0c:5e:
7b:0e:5a:a3:f9:41:87:e8:68:8a:a6:85:f0:1e:46:0d:75:78:
b2:8d:c7:f3:d6:d5:f2:b5:9f:27:9b:50:c8:cb:ed:a8:d2:c9:
a2:4d:17:0b:f0:90:50:25:21:c4:22:95:18:cb:35:d6:6e:23:
b7:95:3d:95:81:06:7e:d7:d2:3e:ec:6d:db:90:2b:0b:d5:3d:
42:9a:8b:b3:52:d7:1b:6d:f2:bf:1c:a6:df:31:8e:92:43:b5:
37:e0:0e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:41:09 2026 by rpki-client