Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: bRihmGqYj9nlyvqzv96UNQYCPqnRg4OMogP38KCbMEU=
Subject key identifier: 2B:9F:63:BB:B7:8B:B7:EA:7D:21:1C:0A:C6:35:81:F3:E3:C0:2F:7E
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019D39099751F68BC3D9642C1B2D124C97D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 13A6
Signing time: Sun 29 Mar 2026 10:00:22 +0000
Manifest this update: Sun 29 Mar 2026 10:00:22 +0000
Manifest next update: Mon 30 Mar 2026 10:00:22 +0000
Files and hashes: 1: 8YjfuQgdLCvL-Jpmwk6qtizfv_I.roa (hash: brAMlNDL72wfdOjb6ddjdyt7eJo3B0Foc3PWILSQa/8=)
2: 9n4VcJdW8qnQyuWz0vME2QO1fbA.roa (hash: S37EYsMTrmOyNa0qB2TT/fhsEUbmtLIrd9epgXzmCws=)
3: GZDzHGbDx7dfkoatOEujE-QeXX0.roa (hash: rp5gMVM6d0QMtfUx8hE8lYmJBJMynSH2EW1XEZUY1fk=)
4: NzRF1KMW-RjrnCQ45Ns__CGotH0.roa (hash: vgtU60XykZYUOdD/K3o47xgLUs91d2y5R24TZ2aLcb4=)
5: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: HF5QeDlQrDjNNzBc8KF+VSt8xGJraSjkLhsaNFULfMU=)
6: hHhTehEBjNf1KtA383HryRHP5GU.roa (hash: 553Jp1J+2Jv+MXIIihnE80X01/4/KUBqAe/MNZh5Kwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:97:51:f6:8b:c3:d9:64:2c:1b:2d:12:4c:97:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Mar 29 10:00:22 2026 GMT
Not After : Mar 30 10:00:22 2026 GMT
Subject: CN=2b9f63bbb78bb7ea7d211c0ac63581f3e3c02f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:66:af:2e:18:a9:85:c4:f2:a9:44:42:30:1a:
d2:d3:cc:5f:d9:0f:10:56:88:1b:ff:d8:4c:db:52:
dc:fb:bb:c9:24:8b:d7:ae:eb:ba:19:2a:eb:f0:2b:
5c:fe:83:9d:f5:83:98:5a:db:1a:07:ac:9c:58:d7:
14:85:f2:b2:94:10:11:e7:f0:ab:ee:2f:1f:61:24:
b4:11:ac:b8:3b:94:a8:5c:0f:ff:b2:b6:96:e8:ae:
e0:20:34:73:50:00:74:2e:86:cd:96:cc:35:e2:d1:
9e:39:48:07:c2:f7:57:e6:5d:3a:c3:99:ac:e4:b2:
59:01:55:12:15:b5:1f:00:b9:9d:48:83:81:2c:37:
24:f7:f0:b1:30:b1:3c:88:40:e3:a5:3e:bb:6a:22:
6e:45:91:8e:7e:5e:86:eb:86:bd:b5:12:34:6c:e9:
21:10:7b:60:a4:1f:55:26:ce:66:a6:c6:4f:54:68:
c7:3b:1e:f4:7b:a9:f0:f9:3b:d0:44:a0:da:7c:5e:
e1:84:40:64:da:f4:21:42:16:d9:3b:61:6c:fd:1d:
55:e5:47:45:e2:1a:75:ca:71:90:d5:07:c1:67:a1:
69:8f:f3:55:fe:00:d9:87:0c:c6:4e:df:79:b5:8f:
e3:d4:65:32:0b:7f:d8:27:a2:96:a0:7b:ed:8b:16:
61:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9F:63:BB:B7:8B:B7:EA:7D:21:1C:0A:C6:35:81:F3:E3:C0:2F:7E
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:bc:2e:f2:67:5d:38:8f:4b:0d:b5:17:c4:b5:94:33:a9:5b:
98:2c:dc:02:ed:db:7c:b9:ad:35:e3:8b:66:dc:97:31:fd:a9:
f3:65:08:74:4f:8f:88:93:87:1b:7c:31:1c:a5:25:c5:ac:4d:
a4:d0:10:04:f6:8c:77:8a:4a:44:72:32:55:50:39:69:75:ef:
e7:ee:f7:6a:83:54:23:f0:9b:b8:e0:ef:84:ad:0f:f4:3d:28:
81:32:e0:f1:fd:04:0c:3a:cd:13:f0:2b:8d:18:6c:bb:8c:55:
25:85:61:d4:cc:59:0f:89:36:b5:f3:89:91:71:88:3a:9b:e4:
0a:55:cb:f6:40:16:6d:9f:41:3b:2e:c5:0c:55:6d:8a:5d:3a:
d8:44:86:de:e7:81:26:6a:08:64:a2:f1:2c:9d:fb:d4:da:11:
97:ba:a3:7a:71:ad:d9:85:c3:74:a4:30:c3:06:74:e7:2d:2b:
ce:70:8e:90:a8:9d:d2:5a:37:af:6d:2d:22:73:00:fd:77:7b:
15:b5:4c:65:cb:46:54:43:85:b8:b7:ee:2a:71:b9:d5:ee:62:
28:a8:ba:26:81:8e:70:fb:fc:be:83:8b:77:84:6e:79:3d:7a:
04:0f:0e:fc:3d:a1:10:f4:84:a8:89:9f:d0:e8:96:34:b4:37:
66:0f:c3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:14 2026 by rpki-client