Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: JXPc/68Dk0Fvyg2OeIeYuK6VPuQM682lZeI2+WOsVWo=
Subject key identifier: 6B:6D:D6:73:08:1A:57:DE:EE:86:17:C0:49:C7:29:54:A7:A5:65:5B
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 019CC8D09730D05D293B35582EB500BD779B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 0642
Signing time: Sat 07 Mar 2026 15:00:39 +0000
Manifest this update: Sat 07 Mar 2026 15:00:39 +0000
Manifest next update: Sun 08 Mar 2026 15:00:39 +0000
Files and hashes: 1: HlrwIab2M9srn4RxDvYJgsLRgu0.roa (hash: 7RDUg5q6/CoL8hnKalD+rZmIPoU5JzkF0lqwqiGYim4=)
2: gAEobSYXeBTkpjhr1NGGBygqZvA.roa (hash: UAsheFQAdNFM95KSSftG0uZENkjtk9zrTcPB/F/4eEU=)
3: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: IX6DGb2uDfzmoc9P5KlHwDm4NZQjfc2S2BizcEL0UKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 15:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:d0:97:30:d0:5d:29:3b:35:58:2e:b5:00:bd:77:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Mar 7 15:00:39 2026 GMT
Not After : Mar 8 15:00:39 2026 GMT
Subject: CN=6b6dd673081a57deee8617c049c72954a7a5655b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:2f:8b:ef:fc:0b:9e:62:46:2b:6c:0d:98:
74:2a:31:ed:cc:9c:4d:da:2c:11:ad:92:74:52:df:
b7:12:cd:9a:fe:c9:bb:9c:58:54:e5:39:6c:9c:26:
22:6d:29:32:36:fd:5c:74:5f:6c:b4:4e:dd:0a:46:
7b:e1:8e:b9:7c:88:2c:be:bd:7c:ae:78:b4:3a:34:
87:4a:0c:41:96:1e:29:9c:22:26:f9:75:82:41:f1:
8a:90:ef:a0:3d:63:0d:4b:11:9b:f2:19:d2:01:16:
2a:ca:81:3b:17:27:40:c9:d8:80:fa:00:23:20:44:
60:12:11:84:bb:06:7f:1b:81:75:64:0b:b8:9e:4e:
98:ec:36:1f:3a:a8:20:29:07:50:36:de:5b:6e:6a:
ec:9d:03:96:9d:ab:d9:65:3b:67:29:79:2e:fc:02:
b1:49:ca:81:1f:d8:66:ce:64:c5:6b:7f:b4:66:16:
d0:39:ec:32:0f:10:e2:6b:42:34:4c:59:4f:60:06:
71:82:1c:63:a6:78:7c:c6:40:2f:ba:de:4e:93:ba:
16:cf:3d:a3:45:97:08:a4:24:76:29:d8:5a:5f:ed:
89:86:af:79:da:60:13:80:2a:08:e5:57:3d:db:b4:
bb:e0:92:02:a0:2f:cb:cd:d8:16:b9:b2:a2:34:0d:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6D:D6:73:08:1A:57:DE:EE:86:17:C0:49:C7:29:54:A7:A5:65:5B
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:16:e9:0f:1b:cd:7c:bd:e8:e8:cd:71:64:4b:33:23:4e:ea:
cc:19:29:c3:4a:70:e8:6e:88:83:4d:98:d6:a3:f4:f6:c4:e5:
2e:10:c6:7e:78:6c:b7:67:90:cc:3c:fc:18:a6:05:33:4f:be:
b6:fb:eb:48:68:8c:85:d4:13:a9:bf:6c:5b:0d:5f:b0:c1:ee:
57:89:ad:f4:fb:d7:ab:8b:ce:fe:a1:8c:4f:b9:78:78:49:06:
06:79:60:b7:e4:77:a8:68:f7:b2:ba:f6:f6:7b:a0:31:a7:46:
79:3e:bb:75:65:37:75:84:be:e4:96:15:cb:bf:20:4f:0e:ae:
05:f8:1d:85:e4:f0:3e:8f:5e:e5:fd:26:a5:29:43:17:c3:b4:
06:57:ef:42:80:26:bf:f7:f2:ba:e5:46:54:a0:3c:ec:62:06:
45:3c:9f:f0:57:49:3f:32:2b:24:12:a6:5f:e4:79:d7:0f:59:
b4:09:89:da:f3:0f:39:b1:9b:df:a1:77:47:1a:84:05:24:62:
51:8a:cd:e3:c1:56:01:0c:4a:ec:e5:80:2b:53:0b:3e:13:a3:
49:6f:dc:89:a4:b7:40:80:18:f3:d6:ec:b5:87:72:45:33:4c:
8f:be:a8:c8:2c:a5:4a:17:fe:a5:dd:91:48:80:c5:7d:e6:61:
75:36:27:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 02:09:15 2026 by rpki-client