Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
File: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft (raw, json)
Hash identifier: 8tgusu0Z1BOMuZq2UyorxwzdEJz9IbKGI4zWVW6JQhc=
Subject key identifier: 9D:6B:15:2B:26:13:FA:5B:56:2D:D9:D0:66:63:38:04:A2:1A:C7:17
Authority key identifier: A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
Certificate issuer: /CN=a36619427c283fa3b2bb7b45cc35a51286398961
Certificate serial: 019CE3D9A120A9707BCF4D912BEB8114D4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
Manifest number: 0117
Signing time: Thu 12 Mar 2026 21:00:16 +0000
Manifest this update: Thu 12 Mar 2026 21:00:16 +0000
Manifest next update: Fri 13 Mar 2026 21:00:16 +0000
Files and hashes: 1: kFGche0sUMJjtQYWtRrXVgbIroM.roa (hash: 34UZsa7v3vzkYl287UK/ejNXOYJMH9D9QG1MuCDxpCg=)
2: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl (hash: 1eGmA42652xM57wbtESveUUXK7ZHhrHGASYqLQXEBJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:d9:a1:20:a9:70:7b:cf:4d:91:2b:eb:81:14:d4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36619427c283fa3b2bb7b45cc35a51286398961
Validity
Not Before: Mar 12 21:00:16 2026 GMT
Not After : Mar 13 21:00:16 2026 GMT
Subject: CN=9d6b152b2613fa5b562dd9d066633804a21ac717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:97:a7:51:a6:5f:ba:27:da:f1:91:4e:c4:2e:
b2:0a:47:1b:c1:a6:8f:8b:08:a8:82:24:82:cb:5a:
a3:44:5a:54:1a:15:96:8e:86:b6:50:4e:09:81:e2:
af:79:30:88:d6:c4:5c:7c:0b:1a:16:94:94:6f:b2:
25:07:16:ca:ad:d4:24:03:e4:31:d5:2b:1a:35:c0:
ce:3f:13:7d:fc:cd:0e:4a:ff:8b:62:9a:b4:fd:ea:
72:e9:48:eb:e2:7a:bf:92:75:ef:f2:97:cb:4a:15:
a5:4f:fc:03:44:8f:b6:a3:b8:f5:05:4f:e3:c0:95:
ef:f6:67:40:d5:83:1b:b1:e2:2c:41:51:31:b8:88:
9e:7c:ff:f3:86:18:31:bb:79:40:b1:74:c2:65:a4:
40:8c:b8:03:ea:06:a7:04:64:55:1a:db:a5:8b:d1:
7f:e0:cd:d9:35:da:dd:89:2d:de:b1:4c:c8:83:e2:
08:0d:6d:e6:c5:31:3b:a0:c8:e3:28:5a:e8:d4:8c:
99:a1:21:43:f1:58:d8:a5:d1:f8:d9:ac:12:cc:be:
0d:2a:51:03:5c:29:db:9e:ae:42:a7:4c:b4:1d:05:
0a:d0:01:12:65:15:c3:5e:ae:a5:60:d4:95:93:40:
e9:c1:b3:e4:b0:b8:f3:7c:29:6c:46:3c:7e:c9:15:
ea:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6B:15:2B:26:13:FA:5B:56:2D:D9:D0:66:63:38:04:A2:1A:C7:17
X509v3 Authority Key Identifier:
keyid:A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:fe:50:b9:f8:74:45:7c:79:39:ce:7c:f7:d9:b8:54:b1:87:
dd:ae:1d:a2:04:07:76:06:62:d9:9d:c3:85:16:84:7c:35:71:
2a:57:7a:44:52:d8:eb:46:49:e5:cc:3a:a6:e8:74:e4:d9:6f:
a1:d7:56:fe:d3:d3:a3:93:f4:ad:00:53:22:8b:cb:0b:99:9a:
20:b1:b7:75:dc:8d:ab:43:94:8a:bc:c5:b9:ee:e0:eb:9b:13:
6a:9d:6c:1b:42:08:be:01:40:36:e5:4b:13:8a:49:31:c6:cf:
14:3e:f1:16:c6:a9:39:9a:70:dd:02:fd:c3:79:5c:6c:d9:fb:
25:92:69:4d:71:46:58:a3:31:b6:d3:89:f1:1d:99:9d:68:b0:
9b:b3:dd:0a:03:00:43:76:11:6b:9b:d8:7a:05:1e:3e:51:0a:
cb:80:40:dd:73:a0:fe:c5:60:6a:a0:ca:63:d4:fb:fc:97:c4:
d2:18:96:d5:e3:d3:e9:d5:03:00:a4:60:27:b6:02:a5:40:f1:
1a:a8:a4:13:bd:2a:08:a0:65:1d:da:af:85:28:aa:a2:d2:cb:
b5:1d:30:d5:19:71:65:64:74:32:ea:2c:f4:a2:a4:e0:08:12:
bb:b1:f6:26:a0:11:70:a8:ac:c7:be:c2:d5:c5:97:cc:82:62:
4d:6e:f8:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzj2aEgqXB7z02RK+uBFNTkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjYxOTQyN2MyODNmYTNiMmJiN2I0NWNjMzVhNTEyODYz
OTg5NjEwHhcNMjYwMzEyMjEwMDE2WhcNMjYwMzEzMjEwMDE2WjAzMTEwLwYDVQQD
Eyg5ZDZiMTUyYjI2MTNmYTViNTYyZGQ5ZDA2NjYzMzgwNGEyMWFjNzE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypenUaZfuifa8ZFOxC6yCkcbwaaP
iwiogiSCy1qjRFpUGhWWjoa2UE4JgeKveTCI1sRcfAsaFpSUb7IlBxbKrdQkA+Qx
1SsaNcDOPxN9/M0OSv+LYpq0/epy6Ujr4nq/knXv8pfLShWlT/wDRI+2o7j1BU/j
wJXv9mdA1YMbseIsQVExuIiefP/zhhgxu3lAsXTCZaRAjLgD6ganBGRVGtuli9F/
4M3ZNdrdiS3esUzIg+IIDW3mxTE7oMjjKFro1IyZoSFD8VjYpdH42awSzL4NKlED
XCnbnq5Cp0y0HQUK0AESZRXDXq6lYNSVk0DpwbPksLjzfClsRjx+yRXqMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1rFSsmE/pbVi3Z0GZjOASiGscXMB8GA1UdIwQY
MBaAFKNmGUJ8KD+jsrt7Rcw1pRKGOYlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTct
M2I4MTc4ZGJiOTRjLzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTctM2I4MTc4ZGJiOTRj
LzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKf5Qufh0
RXx5Oc5899m4VLGH3a4dogQHdgZi2Z3DhRaEfDVxKld6RFLY60ZJ5cw6puh05Nlv
oddW/tPTo5P0rQBTIovLC5maILG3ddyNq0OUirzFue7g65sTap1sG0IIvgFANuVL
E4pJMcbPFD7xFsapOZpw3QL9w3lcbNn7JZJpTXFGWKMxttOJ8R2ZnWiwm7PdCgMA
Q3YRa5vYegUePlEKy4BA3XOg/sVgaqDKY9T7/JfE0hiW1ePT6dUDAKRgJ7YCpUDx
GqikE70qCKBlHdqvhSiqotLLtR0w1RlxZWR0Muos9KKk4AgSu7H2JqARcKisx77C
1cWXzIJiTW74Tw==
-----END CERTIFICATE-----
Generated at Fri Mar 13 00:17:52 2026 by rpki-client