Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: GT/+npkMTztAcY5ODzN0dElq5os4aYOpfTKbX+Pn7yM=
Subject key identifier: 05:52:E4:D3:22:21:AA:41:C5:C7:4D:0E:F5:18:66:9F:62:98:51:21
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 019D37F792EA0E4AC3CB59036A09E56A26A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 1881
Signing time: Sun 29 Mar 2026 05:01:05 +0000
Manifest this update: Sun 29 Mar 2026 05:01:05 +0000
Manifest next update: Mon 30 Mar 2026 05:01:05 +0000
Files and hashes: 1: IXapM66e7MdcAVdK5ZgSYj804cY.roa (hash: Zge2mwt6CQnb9dk3bDCs3Oo7c63bsf/jL0cP3knXpFI=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: icOGQXjV0hfZhdwRVAJcn4Yi5NlWAQjflGdm/+Cn8hY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:92:ea:0e:4a:c3:cb:59:03:6a:09:e5:6a:26:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Mar 29 05:01:05 2026 GMT
Not After : Mar 30 05:01:05 2026 GMT
Subject: CN=0552e4d32221aa41c5c74d0ef518669f62985121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:75:b3:f3:c7:4d:a5:7f:5c:b1:88:d1:1e:8e:
a6:0e:65:7c:73:b0:e0:83:6f:b3:ca:da:cb:9a:e6:
eb:1a:88:20:de:83:be:a2:fb:df:58:c8:c8:9a:db:
ff:0f:d2:f5:c4:bb:05:d9:e2:80:6b:4f:4b:67:70:
a5:38:b5:02:3e:a3:2b:e8:93:a7:2a:ca:d1:ad:95:
fe:94:fe:b5:2b:13:37:e0:88:ed:46:51:7f:bd:ef:
dc:4a:ee:7c:2a:ce:24:5e:a7:f5:cb:83:5f:82:43:
a1:39:c8:a6:cb:fb:07:f3:a0:b4:af:ad:1e:93:ab:
2a:0c:37:3a:f3:55:4f:f2:c6:b4:4c:45:6c:2d:a8:
fc:95:96:f4:fb:5f:6b:10:c4:7e:2a:17:ec:55:67:
5a:66:d2:a6:81:6c:02:f1:19:c7:23:38:eb:ea:a0:
f9:64:38:7c:d6:e9:b3:d2:fc:29:86:92:40:ee:2d:
0f:6a:1b:ae:e0:8a:a5:9d:9a:36:3e:2b:7a:34:3b:
e6:ba:49:7e:d0:c5:38:43:3e:93:d3:ef:22:27:76:
04:b9:23:1a:f8:ce:2a:22:1b:6b:14:b2:d2:dd:c6:
42:ec:0b:90:a2:83:59:18:f5:3a:8a:8f:03:b6:5b:
2b:ff:f8:99:9c:31:b7:16:19:5f:2c:b5:59:82:e9:
ed:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:52:E4:D3:22:21:AA:41:C5:C7:4D:0E:F5:18:66:9F:62:98:51:21
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:e8:93:40:ce:a6:90:3f:8e:cb:0a:13:e4:a1:73:a5:3b:6f:
c1:c0:45:e4:5c:c9:04:50:51:7c:2c:31:42:26:1d:a6:0b:c7:
ae:2a:02:f8:68:f3:a4:e9:b5:99:ea:8d:78:c2:54:d6:6b:d9:
07:44:6d:f5:dc:0e:5b:92:52:ef:55:b5:8d:f4:5c:4b:03:d0:
e0:7f:db:af:64:5e:e7:99:21:53:6e:8e:bb:36:29:b9:a8:da:
68:7b:05:e9:29:83:7b:2c:05:00:94:74:7e:1f:88:7a:9c:a7:
71:3f:ac:01:c1:1d:25:4a:4b:6c:24:bd:e2:47:64:03:9b:05:
b8:53:76:bf:94:d7:c0:90:76:73:55:73:f9:4d:e7:c2:8b:6d:
f0:1e:83:69:80:ad:8d:86:ed:1d:36:70:a6:ef:fd:c2:f8:04:
1b:a5:b7:7c:43:d1:e9:4a:c2:f3:61:db:31:89:31:c4:2a:69:
0b:6d:46:22:1a:c1:00:53:77:d1:27:9a:d3:33:d7:9b:66:e2:
4e:8f:54:40:7a:e0:d1:36:b1:8d:f2:3e:59:40:fa:5b:22:d1:
10:ab:d7:18:10:cf:9b:75:cd:89:f6:2a:4c:27:51:b8:88:8b:
ea:4f:ad:a8:3b:67:7e:08:1b:64:66:c1:60:48:e0:5c:44:a7:
84:89:9a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:13 2026 by rpki-client