Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: y8aayW8KQvUUiu+jYhHPnbTeZcCqeacoTkhIgzro9GM=
Subject key identifier: 95:17:25:5B:5A:F4:67:57:86:3D:F8:AA:41:80:30:97:04:68:7F:F3
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019D37C04BD1253ECA686064DECE7491E096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 134D
Signing time: Sun 29 Mar 2026 04:00:42 +0000
Manifest this update: Sun 29 Mar 2026 04:00:42 +0000
Manifest next update: Mon 30 Mar 2026 04:00:42 +0000
Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: yl/bVJ3FqcIl4VebD7IVftOqkwCA+L1rxKERIa8goyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:4b:d1:25:3e:ca:68:60:64:de:ce:74:91:e0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Mar 29 04:00:42 2026 GMT
Not After : Mar 30 04:00:42 2026 GMT
Subject: CN=9517255b5af46757863df8aa4180309704687ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0b:cc:e9:15:99:24:b4:76:db:a0:fa:01:96:
83:db:ef:c4:4f:af:fc:2c:62:2d:78:e3:8b:60:d0:
9e:9d:00:8e:ea:be:73:99:f8:2c:61:bd:28:13:12:
d0:7e:30:61:be:41:aa:48:97:4a:af:26:a2:18:a9:
a1:92:d4:ed:0c:51:e6:72:7e:da:1b:02:48:a6:51:
89:e2:5e:ff:c4:06:9a:b2:f3:d8:35:28:3e:fa:ea:
95:65:56:5b:e9:bc:5d:64:cd:68:79:73:55:d6:30:
10:d8:58:00:df:d6:93:c6:7b:b2:06:df:cd:86:72:
46:aa:45:23:95:73:37:62:1e:27:c2:f6:db:f5:0e:
1f:a0:33:66:33:71:14:21:4b:c2:14:83:0c:28:c7:
49:db:d0:d9:bf:1f:0e:77:d4:0b:6a:70:95:b3:2c:
98:19:0d:49:44:02:dd:8f:a2:12:51:bc:31:3e:98:
d4:c1:d8:0a:5b:78:b1:ae:9e:80:4e:e5:b3:73:56:
1a:62:76:ea:16:5c:ca:9f:79:87:3e:f2:52:49:6b:
76:3b:04:69:ae:d1:5d:d9:52:fc:c2:08:80:8e:ca:
35:de:8e:0f:aa:88:01:9c:0e:f8:62:b1:e5:bb:77:
3a:e4:5a:93:da:1b:6d:08:0d:bc:4a:33:05:1f:55:
06:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:17:25:5B:5A:F4:67:57:86:3D:F8:AA:41:80:30:97:04:68:7F:F3
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:c3:ee:c5:d3:76:30:e0:1d:b6:2b:26:6c:f6:11:cf:f7:d3:
0f:0d:22:5d:0a:c8:2e:09:c9:71:20:f9:0f:71:2f:e9:3b:04:
78:30:51:83:a4:0e:0b:a8:d7:f8:da:53:fc:e2:82:97:50:14:
de:da:1f:3b:9a:77:39:c9:4c:51:5b:12:66:23:b6:70:31:9d:
a0:7f:a2:d7:55:09:79:25:d4:65:bf:f9:1c:91:00:ed:f2:f6:
e1:49:28:f4:89:b7:89:f9:e1:1f:6d:7f:7a:5f:b2:d3:96:68:
e9:38:c6:6f:78:b8:ef:26:9c:5c:f2:fe:fe:54:55:e5:0b:d7:
b7:ac:c3:78:be:28:88:fe:bf:e1:7a:d0:07:18:d5:67:61:78:
4e:57:68:dc:6a:fa:91:42:b7:26:c2:30:37:38:96:ec:a3:9f:
ee:c3:9b:e5:ac:5d:21:ab:eb:44:cb:58:9a:a1:e4:b5:e1:a4:
b6:9c:38:38:a5:8b:ed:de:f2:a9:ba:74:74:aa:17:4d:39:d0:
35:ce:78:49:04:c6:95:68:e2:f6:32:ef:34:42:f6:6e:c5:1b:
75:e3:a6:bc:f3:7d:49:77:d5:9b:a5:84:92:60:be:e8:58:b8:
73:20:9c:84:10:a8:89:3c:1c:f2:03:14:31:37:58:8f:2e:b8:
df:10:f6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:41 2026 by rpki-client