Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: YpQJ8qcr9vBHwxdLXSHyvX8LrtsGUJXa7SnBQTe/awA=
Subject key identifier: D4:7B:63:BA:95:53:AE:34:FB:11:A9:64:94:00:DF:D5:A3:46:FE:B5
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 019D38D3641F735095251A33C40AAD8D8270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 12E3
Signing time: Sun 29 Mar 2026 09:01:10 +0000
Manifest this update: Sun 29 Mar 2026 09:01:10 +0000
Manifest next update: Mon 30 Mar 2026 09:01:10 +0000
Files and hashes: 1: 0U-cjSx-vbFV-NT594PYA8nArLg.roa (hash: HUb+G3KOFlBU9/9PngolZEI4Hx103lYxj0RKTkVEA0w=)
2: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: 570pDs9+eFIJMwh2gglZw3h1ZsZmj0owo+4gyq8CYow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:64:1f:73:50:95:25:1a:33:c4:0a:ad:8d:82:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Mar 29 09:01:10 2026 GMT
Not After : Mar 30 09:01:10 2026 GMT
Subject: CN=d47b63ba9553ae34fb11a9649400dfd5a346feb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:64:12:28:82:e7:94:87:10:2e:55:07:df:
f1:05:f6:f4:ff:a4:d4:49:a0:c2:79:cf:fa:82:e2:
24:97:31:c9:ce:88:2b:d0:03:2f:f8:45:87:8f:fa:
e6:3b:ff:f8:f3:66:c2:fe:bc:39:65:b8:13:54:8b:
d7:22:41:d4:f1:2c:bf:ea:9b:a1:67:6e:c3:9f:51:
0d:7d:82:f7:d1:3b:43:a9:35:dd:f5:80:67:46:c6:
a3:3e:12:8c:b6:51:8c:c9:05:36:cd:40:58:79:1c:
d2:97:0c:12:81:e4:f3:6c:f9:c8:37:ee:45:00:c1:
dc:3f:2e:97:86:fc:da:dc:86:4d:96:c2:c8:45:a7:
ce:06:be:1a:a1:74:7d:15:b3:82:cd:8d:0a:d9:30:
c1:49:17:b9:a3:5a:f0:78:09:3f:95:8a:3b:26:60:
ad:33:a4:b1:ce:43:c8:9d:9e:df:60:14:96:4c:e0:
5b:f4:c3:62:a9:c9:48:aa:76:22:67:a9:57:3d:96:
be:ec:40:c0:75:58:63:37:13:95:0a:4f:86:94:43:
6a:64:7d:9c:c2:c8:e0:72:98:1f:70:44:1d:1e:35:
aa:ab:9b:db:fd:6d:c7:d5:5e:7a:e1:99:77:6e:91:
f4:36:97:71:95:eb:82:99:06:e9:b0:ea:65:a5:47:
4d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7B:63:BA:95:53:AE:34:FB:11:A9:64:94:00:DF:D5:A3:46:FE:B5
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:05:08:76:1d:e0:8e:37:89:d0:31:8a:f5:df:f2:8e:da:9d:
56:4f:4f:bf:0b:54:44:21:ed:60:ff:98:3a:d0:a6:04:34:dd:
cf:39:33:ad:8a:23:82:03:16:84:50:c0:70:3c:6d:39:c9:36:
d6:38:1c:4f:54:97:b6:e7:eb:af:82:d6:3b:c2:03:ab:f7:ad:
d9:60:98:ea:40:74:5b:a8:95:86:0a:dd:0c:10:3c:7b:2d:3c:
12:7d:79:1a:db:4d:c2:56:0d:5c:11:c3:49:b9:43:94:46:54:
a4:41:79:12:28:c2:ba:fd:64:77:7a:5e:8b:93:13:ae:cd:41:
c7:11:c1:f8:a1:5e:fd:0c:e4:06:6c:e3:22:b6:3f:ac:b4:97:
b1:4b:36:5a:d9:e3:77:10:36:98:cc:1e:8b:00:d8:88:e9:3e:
3d:66:83:17:36:b0:0f:09:11:b7:6b:c2:ad:87:44:88:4e:7a:
1b:ca:ea:0a:0a:7e:88:98:8b:9d:63:2e:f7:37:11:c5:f2:1e:
ee:cf:a8:c9:13:c9:b1:cd:a7:c7:67:9b:1c:f9:fd:85:1d:aa:
75:9a:c2:c1:4e:a7:f6:1e:56:fe:87:9d:1c:d8:d2:5c:75:7f:
53:04:8b:fe:ff:4c:db:bc:aa:71:66:12:7c:ee:e1:c0:9b:75:
4e:05:d9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:54 2026 by rpki-client