Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: aFZcN3Uw8J6iFMVT7MrEAzLgWg9URL3YbId1izlxrhE=
Subject key identifier: 36:39:F2:A4:59:59:5E:59:4D:64:C8:B9:A8:93:F8:D9:28:8A:9B:73
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019CAC46EDCEB48CE5939BD5243743825324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0A01
Signing time: Mon 02 Mar 2026 02:00:55 +0000
Manifest this update: Mon 02 Mar 2026 02:00:55 +0000
Manifest next update: Tue 03 Mar 2026 02:00:55 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: so+3a8fyvTT+0EP74M6m+Odb+1SGSMP9hDKt/z62vq4=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:ed:ce:b4:8c:e5:93:9b:d5:24:37:43:82:53:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Mar 2 02:00:55 2026 GMT
Not After : Mar 3 02:00:55 2026 GMT
Subject: CN=3639f2a459595e594d64c8b9a893f8d9288a9b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:81:7e:30:8f:02:70:4d:8d:96:14:27:be:65:
94:ba:71:d4:ec:5d:1b:4e:98:3a:34:ef:9a:fa:d5:
7f:65:33:7e:85:83:3f:cf:b7:75:fb:32:18:f0:0c:
dd:3f:97:b0:15:55:34:07:1e:f1:e9:7b:e6:9e:97:
53:61:e1:88:a5:0d:8b:64:d9:52:29:ac:d4:7b:61:
38:70:3d:89:93:64:57:b0:9d:52:7c:d7:52:b1:db:
50:c2:dd:9a:9a:01:19:00:09:e8:0e:6f:96:55:df:
4a:65:9c:f5:7c:a5:3d:dd:6d:e1:ce:a4:64:19:0d:
29:17:45:b7:5d:29:96:40:a5:0e:1f:78:7a:f4:03:
62:b7:03:47:aa:4f:a8:6d:f4:be:f2:59:2d:a6:8e:
2e:4e:31:f3:dd:0e:a1:90:41:df:a0:4b:6f:3c:32:
10:9b:8f:e0:5a:88:34:bf:1f:c6:7e:f3:41:32:e5:
6f:76:b3:66:13:f9:44:cf:56:17:20:51:3d:9a:b8:
77:2d:de:6f:3f:5c:b6:8d:75:3e:83:c2:35:13:8d:
aa:c5:5f:69:51:ea:f1:43:0f:76:3f:7e:d5:69:df:
fb:cc:70:da:fa:a7:1d:1c:68:a9:7b:68:2b:71:70:
9b:9d:3f:c7:06:6d:72:34:2b:f5:ad:93:98:f8:89:
1b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:39:F2:A4:59:59:5E:59:4D:64:C8:B9:A8:93:F8:D9:28:8A:9B:73
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:48:d4:63:62:09:fa:de:9e:48:ef:e2:55:71:be:5e:60:83:
a3:57:e5:b9:9b:b9:d5:22:75:89:b2:0e:bd:a4:b4:69:28:f2:
bd:77:5b:d1:01:c2:96:2e:52:fb:3b:8c:16:8e:51:eb:eb:a7:
89:76:b1:6f:c2:d7:47:aa:24:6b:22:1b:96:5a:fe:eb:d9:98:
10:17:47:4a:09:82:fb:d6:c2:e6:e0:50:4c:28:fd:87:df:0b:
7b:c1:60:85:4a:52:ee:f0:ad:c0:4b:36:3c:32:23:1f:36:97:
1b:7d:b8:d8:65:9b:96:3d:c0:8c:56:95:9f:39:6f:20:a3:0c:
86:24:f3:74:81:c4:61:25:61:71:30:3c:9a:04:7e:b9:83:3b:
09:f4:6f:32:ab:5a:df:cd:d2:fa:8e:b2:12:09:76:7a:a8:5b:
71:e0:16:8d:dc:36:de:77:81:7e:4e:29:6f:0c:22:b0:55:54:
2f:a1:df:b0:53:c9:25:5a:22:e0:de:ca:a9:3c:64:d6:10:f0:
3b:bb:b5:1c:ea:bb:8f:6a:4f:ed:49:ef:66:42:47:53:59:e9:
4f:c6:73:69:d4:b1:0d:9a:98:9b:28:e5:0e:d6:56:2d:48:63:
18:84:23:da:5c:c3:35:6c:bb:1b:2e:4a:14:c4:40:be:a0:a3:
a4:55:ee:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:55:22 2026 by rpki-client