Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: UJtQpx1qZ5CUilsu1nPRPuwDQRofIG+2cyconnJna5I=
Subject key identifier: 08:87:99:42:CA:C8:E0:88:FB:08:68:DB:34:EF:E9:2D:8F:10:3E:64
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 019D37C118BBEE4E41E10C249062C88D700E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: 06B0
Signing time: Sun 29 Mar 2026 04:01:34 +0000
Manifest this update: Sun 29 Mar 2026 04:01:34 +0000
Manifest next update: Mon 30 Mar 2026 04:01:34 +0000
Files and hashes: 1: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: ddsiPPODPAoILbfWNKNZcZvtprN03On82X/TTYyqC3c=)
2: sucnq0ecm8m_nWAQ-4GJKwNEi2U.roa (hash: fAx7NlwCpyfEvSm9rr9kk8PoUxL5xfjmL9DDVwXszMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:18:bb:ee:4e:41:e1:0c:24:90:62:c8:8d:70:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Mar 29 04:01:34 2026 GMT
Not After : Mar 30 04:01:34 2026 GMT
Subject: CN=08879942cac8e088fb0868db34efe92d8f103e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ca:5c:52:7d:26:5b:54:96:b4:1a:47:b3:5b:
49:74:10:ac:ea:fe:c0:47:8a:b7:d9:d0:7b:8b:30:
b0:d0:6d:97:eb:f1:00:28:fc:93:f9:00:28:5c:4b:
cc:bf:de:58:94:ce:a8:d2:5a:81:13:e5:39:4a:64:
20:1f:c0:73:19:83:84:a2:2d:cd:74:10:47:d5:4f:
31:19:3b:49:52:ec:f2:dd:b6:fe:81:c1:77:e5:70:
2c:98:f5:c6:81:63:ef:e9:e4:c4:1d:4c:d9:cb:9f:
a4:94:58:13:1c:8d:67:1e:a6:95:76:c8:d9:2d:d4:
cb:8d:4b:70:94:53:0c:b0:49:da:b7:21:0c:57:18:
44:a8:df:b2:47:6a:ef:21:e9:c1:39:61:0d:e0:29:
2a:41:54:01:4c:49:95:b2:43:ea:d7:47:58:e9:f0:
fd:ec:dd:30:7b:8e:32:75:4d:d4:19:5c:52:50:62:
a0:c2:f1:27:6d:03:bd:81:3d:22:9b:75:65:f0:83:
a8:7e:6a:5e:92:1d:1f:ed:02:1a:4e:6e:1f:ec:e5:
87:50:e5:4f:46:30:62:f7:5a:3f:4b:f6:52:bf:5d:
39:0e:2d:8a:0d:f2:5b:43:1e:87:79:33:ad:a7:78:
5f:d3:f1:3a:76:cc:b3:a9:bb:79:bc:a0:a7:bd:26:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:87:99:42:CA:C8:E0:88:FB:08:68:DB:34:EF:E9:2D:8F:10:3E:64
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:9b:ff:78:b4:3d:78:5b:42:cd:28:60:a2:79:3c:2e:c9:82:
2a:d5:fb:41:2c:41:19:d6:2e:dc:ca:13:b6:74:5e:a8:64:4e:
69:84:fb:67:67:d8:17:6b:9f:73:70:c5:50:2e:23:02:7a:01:
84:f6:87:f4:d9:6f:d3:83:d7:07:08:38:09:6b:69:4e:8b:4c:
d0:6a:95:45:8c:e5:81:a0:88:47:07:22:f7:b8:2e:72:e1:59:
3f:e0:82:63:79:54:97:51:b1:61:fb:c7:61:fa:67:c2:e4:11:
89:c4:47:70:e8:c1:e8:1d:6e:c6:2b:f4:e9:23:e8:9e:1f:e3:
ec:fd:c0:5c:f6:60:ff:63:48:bf:fb:ea:05:2c:2b:df:94:86:
ba:97:7f:98:6f:e4:2c:85:47:00:86:31:6e:76:2c:8b:24:0d:
d3:45:b5:e4:48:82:a6:46:fb:2c:9a:b0:45:7a:ad:c2:77:ae:
9c:a2:b7:af:20:d5:d8:01:50:6c:47:13:b9:49:81:c8:0c:70:
d5:ae:b3:4a:f4:28:06:b1:99:52:fc:ef:00:b3:50:55:7b:51:
90:82:60:85:b0:dc:48:19:d6:d2:ba:8e:c4:d5:70:69:77:fb:
fe:fa:01:33:88:2c:2a:81:5f:1f:64:b6:20:97:4b:aa:f3:fe:
69:b8:72:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:33 2026 by rpki-client