Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: C/u1IMYqE0zwebeUvUhY/LZfmfFtA4NLB3vJVWHSGIU=
Subject key identifier: EA:2B:30:E3:88:3F:91:56:51:9D:F1:80:5E:20:91:3C:B6:98:FF:A9
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 019CC5CF6C306A40E7DA09BCB41550979E8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 1538
Signing time: Sat 07 Mar 2026 01:00:31 +0000
Manifest this update: Sat 07 Mar 2026 01:00:31 +0000
Manifest next update: Sun 08 Mar 2026 01:00:31 +0000
Files and hashes: 1: 2h_8VJcabHSDMCKwNPF09jw_Hf8.roa (hash: c7tBoia56lSI7zrOJCToiDaTHfoOdjooQhw4RuRBw4Y=)
2: 2olaVDhNeiiP_OOryqJU2C7ExIg.roa (hash: CFBBBaMUmCumEjhXa9EZ5QF+S88qsB/FZwclsZncEao=)
3: QZlonf94vrWyMPOp87JAm_NWNqo.roa (hash: w6YhRh8acabp1x77SswHpUR6bqnL4nDuqC2pTtKcfFs=)
4: RVIXwLiPYVV46x_SokJjK4dp3OI.roa (hash: uNt446qIJ1irJog4FynTK7I6Qj9x6JyOZdVR8VicpsI=)
5: SpN8Ae02yCS4OsvaV0LVnRQu4n8.roa (hash: R6h5Q2EcPAyb3qsGG8N6McT5J+RVk0PixkSdyl6z20Y=)
6: esU4fsvjE_GKeZBwL9xIr9vckzE.roa (hash: iqFT9wVD2iFSuqGQNBizWBYxsH/4xrNP/ECuVx8b/i4=)
7: kOm60nL452mtiYNcQ1MeyFmOk_o.roa (hash: I2UQMu6hqrbitekzOex2s4TwNRegO405AEsyAGOsafo=)
8: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: ksf7pLx+tSHqJcPLMpUHvLChY54jS1hRZZGiQr9T+PY=)
9: xKxA9QME2V8f2RH3M46PbYUw4oY.roa (hash: thsfcGsSl3d+8qrEjeuctIXvk8eBzxGLHCJIT/WWbto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 00:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c5:cf:6c:30:6a:40:e7:da:09:bc:b4:15:50:97:9e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Mar 7 01:00:31 2026 GMT
Not After : Mar 8 01:00:31 2026 GMT
Subject: CN=ea2b30e3883f9156519df1805e20913cb698ffa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:fa:32:11:7d:bc:17:58:02:21:a4:34:58:
de:81:e1:84:72:40:b8:80:c4:72:0f:09:1b:31:1a:
3a:35:78:8e:d8:d1:28:38:62:e6:47:ee:ee:b3:54:
e1:db:09:83:8d:72:e5:37:3c:00:df:b2:89:f6:3b:
d4:d6:e7:a8:fb:6f:50:6e:f8:14:24:8e:16:37:85:
1f:c5:c4:c7:77:83:52:cc:df:22:7e:6a:44:d7:78:
2b:66:eb:2c:f3:08:2b:83:ec:12:c1:ef:6e:83:6e:
8e:c9:2f:e5:b7:e8:ec:0c:38:ac:24:9c:c2:7d:ad:
e5:c9:ef:0c:5d:6d:ff:2a:97:58:0a:58:d2:b1:95:
7f:4b:75:e2:cc:41:51:6c:5e:db:e0:23:41:6f:02:
6a:75:eb:34:9a:90:00:4e:42:6b:48:27:2e:ae:52:
c4:22:f9:b9:63:ea:e3:da:48:5a:d0:2d:c8:f5:3e:
c4:9e:32:94:c3:ec:98:94:97:f4:41:5e:34:cf:ff:
ee:45:d5:a4:45:e2:2b:47:af:59:2d:82:f0:fc:59:
2b:83:77:6b:f2:62:bc:f1:df:5e:2e:c0:fb:88:48:
91:b6:6c:bb:91:e7:33:c3:e2:8c:67:0a:b1:b1:14:
01:fb:90:fe:45:b3:ff:de:b9:74:c9:52:41:82:43:
d4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2B:30:E3:88:3F:91:56:51:9D:F1:80:5E:20:91:3C:B6:98:FF:A9
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:33:06:bf:73:f0:12:da:1b:54:1c:d6:c5:d4:1f:9d:0a:d6:
d3:8a:07:25:02:1a:bf:a3:08:ce:f5:76:c8:07:18:ee:5f:9e:
2a:4a:8f:0f:a2:62:84:e9:4d:1b:a6:5b:a1:00:0e:c7:8c:81:
b8:ca:65:86:22:1e:7a:cb:a3:ef:b8:f0:bf:ad:29:40:49:72:
67:a1:7d:3b:fd:d9:67:0b:4a:04:61:55:be:3d:b7:6d:3f:bd:
17:58:f1:ac:9a:7d:af:b6:68:79:a9:6b:8b:ac:aa:0e:a4:cc:
0a:c7:90:46:a2:bb:31:a4:ab:41:9e:74:6c:45:51:da:63:08:
fd:6d:a0:6a:9b:cd:d9:37:29:f7:ea:46:64:f9:fa:d3:b8:af:
df:6f:bd:70:e7:f8:7e:17:40:65:de:b9:15:6b:85:10:26:7e:
17:3e:f3:17:d1:71:80:29:d1:00:2e:76:cb:06:9c:8b:dd:d3:
6d:ee:6f:03:b1:d6:d1:5d:f3:e4:78:87:6d:f5:d2:4b:bb:e5:
d9:99:f1:f3:d8:2a:5c:f4:33:5a:c1:27:0e:9e:81:aa:31:39:
7b:37:89:6f:bb:52:a5:d6:cb:cc:cc:dd:0f:e0:3d:2d:8d:79:
b1:9c:ee:b2:68:ce:81:4d:3f:35:5b:31:9f:aa:8a:5c:81:dd:
be:2d:98:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 06:28:28 2026 by rpki-client