Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
File: o3F-pUuVlC-tgalD7bHBD535Svs.mft (raw, json)
Hash identifier: mVMPVeI+wObDoiPiiloq/yXLy28ASlCkRcoj55ekcNI=
Subject key identifier: DB:F4:68:1D:A7:28:54:5B:96:74:C5:A2:2F:37:5E:9B:DC:D4:BD:A2
Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Certificate serial: 019D394192D2D173DDA0CDD06C6DD3E85824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
Manifest number: 1817
Signing time: Sun 29 Mar 2026 11:01:31 +0000
Manifest this update: Sun 29 Mar 2026 11:01:31 +0000
Manifest next update: Mon 30 Mar 2026 11:01:31 +0000
Files and hashes: 1: QR6JCvg_yJC5a7s73DyQnmCM4I0.roa (hash: s2aQJ0ionOhGA/bORwEZg/xbj2CgaA7Pt0VzSP4Fylw=)
2: o3F-pUuVlC-tgalD7bHBD535Svs.crl (hash: +gXoHGXim32nYP1CdOy6jLDNw+q0e+Kib39Z4pT1SLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:92:d2:d1:73:dd:a0:cd:d0:6c:6d:d3:e8:58:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Validity
Not Before: Mar 29 11:01:31 2026 GMT
Not After : Mar 30 11:01:31 2026 GMT
Subject: CN=dbf4681da728545b9674c5a22f375e9bdcd4bda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:ba:41:4f:41:34:ac:36:66:db:7a:8a:83:
4d:23:85:ff:cd:ab:77:84:90:da:bf:97:d5:21:a3:
0e:a6:e3:b6:86:d1:00:f2:fe:cb:34:fe:ee:b2:cd:
b1:2d:56:e2:3c:5e:7d:5c:cc:c9:4d:8a:a5:70:b5:
59:2d:a2:01:7d:5e:d5:08:67:22:30:c0:7f:97:be:
e2:9f:05:51:bb:3c:27:80:f1:9b:99:14:a6:e9:32:
cb:43:ef:ff:92:cf:20:3c:4a:16:02:a9:9b:3a:7a:
89:4b:77:4b:07:2c:e4:8a:a3:b7:8e:a2:ff:04:3e:
e4:e8:29:4f:71:d9:76:55:45:7a:c0:54:f3:da:48:
8c:c6:b2:7b:6c:d9:4a:1f:f8:0d:e2:ec:94:29:c4:
f5:a1:29:7a:68:8d:a2:5e:d1:95:20:7e:b4:5e:69:
91:b0:35:71:aa:98:c7:53:ac:80:56:bc:2d:c9:95:
a0:9b:86:4b:89:27:7e:92:65:1c:f1:29:b9:35:5d:
37:de:7b:08:74:39:ee:8d:c1:77:73:1a:de:d1:63:
6b:af:7d:7f:25:cb:15:5d:b4:31:1f:23:65:ea:7d:
c8:41:52:4f:e6:5c:e7:5a:22:cc:3a:0c:1b:97:5e:
d7:02:cd:3c:6f:f2:4c:55:c7:8e:94:d3:06:e2:46:
e3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F4:68:1D:A7:28:54:5B:96:74:C5:A2:2F:37:5E:9B:DC:D4:BD:A2
X509v3 Authority Key Identifier:
keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:05:4e:db:1a:7d:30:78:48:ad:f0:16:0f:5d:bd:b9:08:51:
d1:05:10:c8:bd:7c:77:38:d8:59:3b:39:8d:d6:2a:4d:e5:00:
05:55:10:3d:fb:e2:95:14:2c:b0:66:95:21:50:6e:39:a7:57:
7b:41:39:b3:4e:f6:29:aa:cf:73:63:45:a5:a9:53:c0:9a:16:
30:b7:9c:67:31:b6:e0:8f:78:c2:18:91:1e:6b:32:1b:25:da:
a2:de:7e:94:82:8b:92:91:d7:cb:20:72:b0:b8:a9:8e:27:ce:
91:bd:00:37:51:82:ec:37:74:d4:bb:99:82:e2:8d:b5:35:08:
b1:9c:d9:f0:5f:5d:af:eb:2f:22:58:5d:b1:ba:73:45:ab:e8:
d4:9b:ea:09:1c:77:9f:7f:2d:c1:c1:61:56:5f:7d:d6:0b:23:
61:1a:aa:fb:bf:81:ea:eb:b6:b5:a1:7e:07:c7:0c:bf:58:9c:
a8:fc:0f:ec:91:78:20:59:d4:aa:25:2e:27:fd:44:24:00:ab:
7f:99:fe:b5:00:34:e7:f3:27:dd:1f:6f:53:fd:e3:97:32:d2:
76:dc:2d:08:1f:12:1b:34:19:a3:4a:75:5d:8c:9f:fd:38:b1:
e5:f2:3c:da:87:96:01:77:03:78:e6:4c:8e:6e:df:dd:e1:8f:
26:9e:74:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:31:50 2026 by rpki-client