Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
File: O-_lCkD7FzJUHoqXRQq13ndHcdg.mft (raw, json)
Hash identifier: kH/HN2ZBcdBkee3aIXKVRYsAeYRWsmiQWvZoz9ekYCc=
Subject key identifier: 92:3E:D2:97:4A:19:9E:17:4B:E7:D0:22:B6:99:3C:FF:55:A2:BD:FA
Authority key identifier: 3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8
Certificate issuer: /CN=3befe50a40fb1732541e8a97450ab5de774771d8
Certificate serial: 019D375215230D97D45BD2D7D489B1AB940B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
Manifest number: 0620
Signing time: Sun 29 Mar 2026 02:00:19 +0000
Manifest this update: Sun 29 Mar 2026 02:00:19 +0000
Manifest next update: Mon 30 Mar 2026 02:00:19 +0000
Files and hashes: 1: 1UG_i4X68HiPHviRW1z0p_TSsXk.roa (hash: Rxi5VpSkCVYP7zpaawxiqgEVbztptEcbkSS6G+faZaE=)
2: 921A09PidqQ_DPqribEcJ4Ns9ic.roa (hash: 1p6ZvcbQbV5L2uaDpeFuyGxdzNA8guzksazYOvFT/c0=)
3: O-_lCkD7FzJUHoqXRQq13ndHcdg.crl (hash: GwT5giu8gL/wP91I09MaKsbUAx0gZirpqpqo2SsCSOw=)
4: QakAbn2qL6zC8DUBjSIVZLBbpXc.roa (hash: 6xvVEYi0a4GqVQ6WMVJR2REYvzQK/KHG+c6HRFsJwKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:15:23:0d:97:d4:5b:d2:d7:d4:89:b1:ab:94:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3befe50a40fb1732541e8a97450ab5de774771d8
Validity
Not Before: Mar 29 02:00:19 2026 GMT
Not After : Mar 30 02:00:19 2026 GMT
Subject: CN=923ed2974a199e174be7d022b6993cff55a2bdfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:f7:a8:b2:97:70:4f:96:9a:85:55:53:3c:
39:91:da:ab:a4:e8:f0:c7:13:ff:60:9c:6d:ec:c8:
78:22:38:2f:f0:eb:8b:fa:ae:db:b5:af:c4:1d:92:
77:3f:9d:71:3d:d1:3f:7d:ab:a1:7b:9f:5a:47:68:
e0:5c:a0:7d:5f:59:64:cf:d4:fa:3b:f8:5e:ab:83:
93:d1:cc:b1:6b:2b:56:8c:1d:6e:de:07:70:3b:ee:
27:ee:62:34:a6:1e:59:0b:f7:d8:41:c6:81:b6:6c:
8d:16:19:85:5e:76:bd:f8:e9:50:dc:02:0d:37:ba:
b0:ea:aa:4c:7a:c2:f4:75:b3:e6:24:13:3d:8e:3d:
1b:5a:e3:98:78:d4:94:4a:8d:c8:0d:0b:2f:80:c5:
2a:14:48:10:86:36:6c:26:8e:f2:23:11:d9:b5:00:
90:7c:1c:c7:8e:0a:ce:62:16:1d:b8:08:de:dd:f4:
b4:ef:c7:83:5f:02:35:ba:b0:68:91:57:4d:35:14:
d8:aa:9b:12:8a:ef:a5:65:cc:25:1d:fe:2e:59:1d:
7d:f0:5e:09:14:da:57:b1:c1:19:bb:47:47:1d:dd:
f8:55:95:dd:2a:b3:2d:ee:cf:ad:c0:dd:01:51:0b:
b7:00:ee:f3:3b:4e:77:4f:fd:69:5b:c9:8f:ac:83:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3E:D2:97:4A:19:9E:17:4B:E7:D0:22:B6:99:3C:FF:55:A2:BD:FA
X509v3 Authority Key Identifier:
keyid:3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ba:9e:06:d8:70:cd:4a:a3:e7:a1:e1:d5:e0:42:6e:44:a8:
1c:45:5d:b4:e8:94:ba:5f:1f:44:a7:3d:dc:24:dd:e3:f0:74:
e3:41:a1:09:88:a8:3d:6c:8e:1e:11:47:ec:34:57:a5:e6:02:
86:89:35:fb:09:d8:81:14:21:60:e2:49:b7:f7:26:71:78:97:
16:1b:39:8a:29:07:3c:ec:12:42:28:fa:e8:eb:f2:7a:99:4b:
84:c6:74:9e:0b:c5:a4:a2:39:92:81:13:45:30:34:9f:2e:17:
d1:87:a0:7b:96:9f:5c:bd:30:de:36:76:30:d7:4c:61:c1:66:
fc:e8:26:4e:5d:ce:35:c5:67:4a:80:c9:40:47:1f:5f:ac:f4:
c7:2e:9a:39:11:52:b2:bb:9e:a9:d8:16:83:21:c2:67:fc:7f:
10:45:16:0e:9b:9d:b8:7c:4c:0f:1d:f9:ba:51:bc:ff:fa:3b:
f0:b2:97:2d:bd:99:e9:70:1c:66:4d:30:9d:b1:b3:fa:bb:4b:
90:c5:74:b6:ce:ae:8c:6f:21:31:fa:65:8d:73:08:dc:bc:7c:
73:03:d5:78:5b:2d:d0:6b:e1:ec:c8:6f:61:ed:99:3d:dc:ec:
61:cb:b8:27:59:47:a6:38:c2:11:a3:90:da:3c:aa:b1:d8:33:
06:b7:dd:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:57 2026 by rpki-client