Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: yf+XwadjHvZKZS44XolsVfrgArsbltNHWawkGdzzgU8=
Subject key identifier: A6:09:39:27:6E:65:DD:73:E0:EF:66:5B:2F:4F:BD:52:D4:E7:F4:07
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 019CB9CB8ADCA969AB164ABA1D98EB05B338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 0BFB
Signing time: Wed 04 Mar 2026 17:00:50 +0000
Manifest this update: Wed 04 Mar 2026 17:00:50 +0000
Manifest next update: Thu 05 Mar 2026 17:00:50 +0000
Files and hashes: 1: IQ3VIn1iC9RO_pLlQOak5neUqZY.roa (hash: IKGnOs4cAOZb712YaFJ/S+RpUStTEJE1H/K5bUrnGZo=)
2: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: YaoV0txsRuhNTyBmzbYA5p3aktlLxXPMHauhcOvb1r0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 14:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b9:cb:8a:dc:a9:69:ab:16:4a:ba:1d:98:eb:05:b3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Mar 4 17:00:50 2026 GMT
Not After : Mar 5 17:00:50 2026 GMT
Subject: CN=a60939276e65dd73e0ef665b2f4fbd52d4e7f407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:88:6e:6d:f1:82:f3:4c:71:db:7f:74:74:99:
bd:48:b2:be:c3:27:df:d0:84:41:9c:36:3d:09:19:
37:22:5c:38:d7:eb:7f:60:76:02:87:db:40:6c:d2:
1d:41:26:2c:1a:d4:3f:47:2d:ca:8d:35:03:b9:86:
fd:ed:75:f9:8d:5f:53:85:88:73:ea:81:d7:e5:00:
07:19:d4:f0:f9:11:23:54:b6:88:20:ee:29:ff:19:
64:cd:d3:aa:37:e4:74:03:80:ac:b5:8a:2b:c5:7f:
48:88:58:4a:0d:73:51:a5:95:a5:71:f2:1c:6f:0c:
97:0f:3d:0b:b0:32:1a:a3:40:77:11:bf:34:a4:45:
24:b7:27:0b:08:d9:45:09:9c:63:0d:6b:1b:bb:90:
a0:85:d9:0c:16:24:38:43:f1:b4:47:59:40:66:d9:
4a:50:c0:da:41:5f:05:39:e0:61:e0:03:0d:1f:69:
47:3f:03:46:87:99:a4:87:a7:46:17:f5:5b:c3:64:
93:95:fb:01:1d:d1:cf:97:15:e8:d4:63:34:54:2c:
f0:c5:a5:8d:06:4f:b8:a7:a8:c5:72:f6:9d:70:1a:
f4:54:63:2e:2e:a6:1e:77:99:5a:7c:2a:08:b3:b3:
ae:0f:06:68:0f:c2:71:b6:c2:b4:6f:3e:49:7f:53:
a7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:09:39:27:6E:65:DD:73:E0:EF:66:5B:2F:4F:BD:52:D4:E7:F4:07
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:eb:cd:fc:ff:68:1c:bf:b3:2f:10:ed:32:0f:34:ed:76:47:
23:09:80:13:09:cb:61:33:99:2e:fa:5f:87:08:28:d5:5e:ec:
c7:e4:94:d0:00:24:1a:31:93:85:e8:a3:50:95:b5:99:6c:c8:
63:e7:e1:58:db:6d:19:8f:68:d5:32:69:7f:c4:ce:3c:4f:ad:
5e:fd:39:e7:90:54:75:cf:1d:99:9e:b4:c1:b5:96:3b:3d:58:
b1:ae:85:59:ed:a3:d8:87:91:64:44:f1:11:79:12:a2:81:a6:
3d:3d:e4:fb:91:fa:b3:b3:88:8f:ac:56:47:a6:6f:aa:97:9a:
f5:f1:3f:73:b6:db:18:71:ab:30:86:60:19:46:0d:f0:77:a5:
54:90:22:9a:bb:d4:2e:1b:95:99:01:56:57:18:7c:e5:a1:84:
58:75:5f:5d:22:a8:42:66:be:55:1c:a2:cd:47:5e:a2:51:6d:
4c:0c:aa:79:a7:6a:dc:e5:83:04:e0:88:aa:e0:1f:9e:d6:55:
26:31:fa:50:ee:66:fd:05:e4:2b:97:ae:17:ab:e0:09:64:99:
73:92:0f:70:5b:d8:32:56:a4:12:09:6e:fd:d2:c2:ed:2a:bc:
5f:8f:e2:43:72:30:c3:10:33:1a:59:88:13:73:a3:06:4f:e9:
f7:dd:55:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 21:55:42 2026 by rpki-client