Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft
File: o8B3uDdyoALVxPi5IY7A3H8EDL8.mft (raw, json)
Hash identifier: shVVPa24aqkuOyjjDylEbuPssGaMG35t5Jry6J4lJvE=
Subject key identifier: 80:07:7E:68:97:FC:DD:88:9E:F6:F7:B3:32:BB:A2:77:E0:6E:5D:79
Authority key identifier: A3:C0:77:B8:37:72:A0:02:D5:C4:F8:B9:21:8E:C0:DC:7F:04:0C:BF
Certificate issuer: /CN=a3c077b83772a002d5c4f8b9218ec0dc7f040cbf
Certificate serial: 019D3A1CAD73B0B13A63B56E534F4BCDD8AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 15:00:51 +0000
Manifest this update: Sun 29 Mar 2026 15:00:51 +0000
Manifest next update: Mon 30 Mar 2026 15:00:51 +0000
Files and hashes: 1: 9gGSBVdoMqiDjRpMvCx2xmyD74c.roa (hash: NKCr7+PeOZuiE60zEjyMYDN68eBiZ4Wy2UIX8ZkkZo4=)
2: o8B3uDdyoALVxPi5IY7A3H8EDL8.crl (hash: aww8GqSZ4BPmMAHiEYU/BDY4s7i5sZSyF25MeWlvDGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:ad:73:b0:b1:3a:63:b5:6e:53:4f:4b:cd:d8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c077b83772a002d5c4f8b9218ec0dc7f040cbf
Validity
Not Before: Mar 29 15:00:51 2026 GMT
Not After : Mar 30 15:00:51 2026 GMT
Subject: CN=80077e6897fcdd889ef6f7b332bba277e06e5d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4d:37:2c:5b:88:a2:8a:fe:bb:41:a0:9a:f8:
c9:a1:de:6e:ff:1a:21:47:93:d3:af:44:94:2f:0d:
36:e2:71:cf:b7:e2:41:71:86:7f:16:df:ce:41:f3:
88:13:42:ad:7f:1c:56:bb:a7:51:92:81:b9:58:37:
a1:81:f1:ca:01:17:da:e6:bd:ff:ea:b7:43:0f:ec:
97:e1:18:86:72:79:df:1d:ea:14:55:0e:a2:f7:75:
23:af:f1:31:11:c9:50:a6:15:52:e9:e6:b6:52:64:
d8:45:2f:47:46:2b:7b:c2:26:c7:5b:02:70:a3:02:
fa:94:4f:2a:2b:f4:c1:50:fe:ca:14:bc:63:59:12:
68:53:47:10:78:a8:4b:d5:18:e8:18:06:b7:ec:29:
d4:36:07:cb:ae:99:d4:ce:4f:d6:3f:18:e2:88:09:
29:71:86:5e:4b:51:30:38:b3:bd:19:84:85:72:15:
83:14:bd:ec:4c:e9:9a:f0:fc:c1:a3:16:30:9d:0b:
2d:ea:b6:59:04:b1:47:2a:83:38:3c:fd:58:de:37:
99:04:be:0c:ae:46:a2:e6:0d:3f:ec:0c:b2:71:ff:
ab:99:0a:ec:15:0a:8b:ad:7d:cd:8d:64:ca:7b:c7:
6d:b3:25:54:8c:15:21:e8:19:e6:be:67:51:03:23:
64:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:07:7E:68:97:FC:DD:88:9E:F6:F7:B3:32:BB:A2:77:E0:6E:5D:79
X509v3 Authority Key Identifier:
keyid:A3:C0:77:B8:37:72:A0:02:D5:C4:F8:B9:21:8E:C0:DC:7F:04:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:aa:ed:2b:98:c7:9b:61:32:0e:bb:37:d5:f2:12:c9:31:f1:
5f:43:3e:e8:02:04:d3:05:57:b4:0e:32:b3:c0:02:b0:f6:50:
c5:76:8f:db:d7:b5:d2:b4:02:9f:95:d2:80:71:5c:af:c0:63:
5b:68:77:c4:32:15:6a:f3:ed:d5:15:2a:7a:fa:62:85:4d:53:
e3:d9:63:57:c3:94:61:29:1d:cf:f9:3a:05:b6:38:1f:d9:c7:
73:0f:da:c7:0f:93:24:c9:0c:aa:2e:08:1b:11:7a:74:54:9c:
40:54:89:f3:17:e9:43:31:5c:4e:cb:40:66:1c:88:b8:e6:ea:
2a:d9:ab:94:41:6c:50:e4:b7:29:9a:37:5a:22:7c:c9:71:2b:
81:04:24:ca:3e:3f:95:22:db:09:9a:c8:1d:0c:07:f6:27:fa:
06:4f:fc:2c:70:97:49:51:df:ad:7b:08:2f:02:91:06:07:3c:
4b:8d:7f:aa:96:28:c8:bd:57:31:28:98:31:85:e0:dd:71:eb:
91:60:aa:f4:01:ed:de:e0:29:96:74:3f:b5:f7:62:c5:01:e6:
0b:b0:3f:9b:cd:03:5a:ea:b8:e1:e3:c9:43:59:dc:b3:cc:f7:
5a:cd:96:4f:d6:1a:15:5c:25:f9:e7:21:53:05:c5:2c:82:71:
d0:73:ec:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:25:52 2026 by rpki-client