Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: 3LiZn8S7Il5dB/NeMWeQGqUz0nUyiS9DI+cuOt1aic0=
Subject key identifier: C3:CC:F4:9D:97:F8:84:F1:BB:70:79:05:5F:D4:3C:39:FE:29:C7:77
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019D394181C1D6CC2A1E81172185052145AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0E8F
Signing time: Sun 29 Mar 2026 11:01:27 +0000
Manifest this update: Sun 29 Mar 2026 11:01:27 +0000
Manifest next update: Mon 30 Mar 2026 11:01:27 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: +Hf+GpEWJmQcxvTxTIzmIIFtDAEcOeNO84Y1NI9uxEM=)
2: TbY4MLo9QmUSVk5hp07D_lX76Hc.roa (hash: GGTbtNI+aaL18L5FZQerRlg9rpMiVGf3/pLxdG5oxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:81:c1:d6:cc:2a:1e:81:17:21:85:05:21:45:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Mar 29 11:01:27 2026 GMT
Not After : Mar 30 11:01:27 2026 GMT
Subject: CN=c3ccf49d97f884f1bb7079055fd43c39fe29c777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1f:14:ba:4a:b5:a2:d6:72:d8:a4:29:54:f3:
33:d4:1f:17:fa:47:67:9e:a3:ab:1b:7a:ed:3c:9c:
68:e8:03:ed:39:63:d2:4f:da:b4:04:62:c8:14:85:
26:c5:61:28:74:56:85:b7:05:f3:21:b4:f9:ce:b9:
65:8d:ca:65:ed:6b:dd:d1:af:c8:e9:3f:5b:5d:02:
6a:80:b2:92:cd:6b:1f:05:bb:8e:27:f4:f8:82:5f:
b1:94:d8:76:03:e6:22:4f:c1:39:33:84:1a:42:64:
bc:9d:4c:2c:ef:a9:31:4d:29:a0:e2:06:af:b2:35:
3b:b8:8b:8d:44:7c:02:1c:a0:d8:31:55:1c:d5:56:
b4:1e:18:36:1c:2d:1c:00:70:09:ed:5b:39:0c:84:
9b:a1:f9:a1:68:95:e4:11:b1:9e:f5:9a:93:15:91:
46:95:dc:a4:53:7a:04:4d:87:c0:cf:12:c7:8f:f4:
7b:c1:ba:98:66:a4:f5:24:22:46:08:c1:b8:99:35:
1c:e1:43:df:b8:33:91:6c:fc:74:d8:32:fd:66:8f:
08:20:87:fc:93:99:bb:be:4b:fc:24:8f:60:74:06:
87:eb:85:2c:de:02:2b:27:62:ee:55:68:76:be:58:
45:61:3c:cf:28:40:0e:18:fd:6c:3c:64:62:68:48:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CC:F4:9D:97:F8:84:F1:BB:70:79:05:5F:D4:3C:39:FE:29:C7:77
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:1c:d7:16:99:f5:27:6d:0c:44:7c:28:c5:f5:a1:84:ca:be:
17:a1:59:30:07:9d:4c:f0:aa:55:64:6f:13:67:c8:ed:2a:7e:
8b:cc:32:74:8f:c8:6e:34:2c:82:c0:50:45:d9:b1:75:5e:fc:
d6:0a:ff:f1:12:2d:31:5c:a5:ad:53:9b:da:ad:78:e7:f6:29:
2b:5b:1e:41:d1:d8:e3:d5:e3:0b:a2:63:7e:5b:1c:c6:91:88:
7c:1e:07:35:83:50:7b:9a:fd:28:9b:7b:12:d8:94:ef:99:2a:
d3:3d:25:df:a5:dd:33:3b:e5:26:cf:6b:01:46:dd:3e:cb:15:
45:77:9d:b0:ca:88:4a:54:7f:d6:76:ca:d8:5c:b8:8f:86:f8:
d5:8a:2e:42:8b:15:91:15:5b:29:01:27:f8:f5:71:f5:a1:65:
78:49:57:d6:b5:bc:cd:1b:42:0c:61:2e:94:3e:8d:66:53:8e:
50:40:b0:cf:15:e3:a7:8c:c8:05:86:05:ca:b6:3c:9b:f6:7d:
3d:d0:8f:ed:47:b1:82:a1:2f:ad:5c:da:f6:34:8b:bb:91:fc:
0f:c5:07:94:d5:af:8b:9b:71:7f:b4:78:ca:15:c9:9a:dc:a7:
ea:8c:50:a5:57:07:13:ec:e1:01:27:67:b8:4f:08:bb:b0:a3:
6e:49:4a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:20:34 2026 by rpki-client