Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json)
Hash identifier: WG0q4vhr/VhgarbgfXGnO1FYMfpHDeNDawtGo6X2jMs=
Subject key identifier: F8:68:F2:AB:49:7D:CC:B3:D2:D8:EC:BC:6E:05:4B:FB:27:53:22:41
Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d
Certificate serial: 019D389C0052B0A7F4283E6EC92E2BCBC65C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
Manifest number: 0E90
Signing time: Sun 29 Mar 2026 08:00:40 +0000
Manifest this update: Sun 29 Mar 2026 08:00:40 +0000
Manifest next update: Mon 30 Mar 2026 08:00:40 +0000
Files and hashes: 1: HEEa4ysM1XA22RFVA0tNIjEfMiA.roa (hash: x2/fb4V3j3cZr5wvHzV5+fYI9k+vTTuH/CrmPNm7S9g=)
2: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: weMaykpETAKz6NpoGS0peDdOYjroGa1XJkcPRmHfOAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:00:52:b0:a7:f4:28:3e:6e:c9:2e:2b:cb:c6:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d
Validity
Not Before: Mar 29 08:00:40 2026 GMT
Not After : Mar 30 08:00:40 2026 GMT
Subject: CN=f868f2ab497dccb3d2d8ecbc6e054bfb27532241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d0:ac:05:18:2e:1e:1a:15:f8:46:4c:7b:66:
4d:f0:80:50:07:1f:85:3a:c6:b7:8a:4b:ee:71:fc:
9a:0f:23:bc:1a:13:fc:0a:9f:9b:36:31:b2:c4:20:
f5:c0:93:eb:37:5f:bf:e3:d2:7c:29:56:1c:23:6d:
3f:22:00:85:48:bb:83:c2:4e:d3:5f:88:01:ea:a2:
d6:a5:bb:c4:ed:e6:9f:47:fd:d8:8b:88:36:c9:1e:
9c:f1:d4:ef:12:71:54:01:8a:52:75:1d:7a:20:ae:
a6:cd:87:7d:7b:77:ea:82:f9:c5:dd:a2:7b:d5:6a:
1c:b9:dd:69:62:c7:b3:1a:c4:2b:d6:65:63:76:6f:
8f:85:27:2e:43:6a:6a:c0:4c:9a:27:54:cc:2d:f7:
ec:da:a8:7e:77:58:44:53:38:ad:01:3c:3b:40:f2:
ec:04:44:4e:7e:be:34:1f:63:88:5f:01:24:a0:86:
2b:e1:ec:03:41:9e:5a:fc:b9:09:07:9c:56:b2:8d:
e8:7f:52:85:df:47:21:ef:7b:f7:07:60:f8:90:8b:
14:3b:88:f4:a3:4d:05:56:d3:76:3e:07:50:b3:eb:
8a:ad:84:20:d0:d8:81:92:2e:37:21:cb:c2:1b:37:
85:fb:52:f1:ef:a4:b4:86:a7:ed:39:15:b1:ca:41:
a0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:68:F2:AB:49:7D:CC:B3:D2:D8:EC:BC:6E:05:4B:FB:27:53:22:41
X509v3 Authority Key Identifier:
keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ce:91:3c:b0:8b:ad:ae:16:10:1c:4f:90:9b:b5:d3:ee:4b:
84:f7:73:29:9a:4f:e5:96:a5:5e:f4:cb:d0:5a:a0:62:d3:7e:
3a:ad:31:94:57:64:19:7e:90:e8:41:62:1c:ee:8f:f4:cd:0f:
08:23:af:6e:63:4d:a5:8b:f9:91:3a:62:9e:c9:6e:f2:9f:f3:
23:7a:a3:08:ef:fc:12:b0:41:ff:a1:a9:01:a1:ce:58:aa:3c:
b5:38:2d:31:7d:26:6c:41:30:fe:09:a2:c8:53:21:d7:b8:0c:
77:23:d8:0e:91:d3:24:ad:8a:90:d1:4f:be:f7:d0:46:d6:a6:
e2:76:45:17:1a:6b:bd:74:5e:68:ba:68:ce:0c:fc:53:49:75:
a0:bd:27:67:77:77:cb:a0:8d:29:34:63:01:f0:be:40:2f:f1:
25:fd:bf:af:dc:a0:22:81:d2:7a:83:3a:a4:f3:69:4d:14:dc:
07:bf:56:f9:59:a9:3a:04:b9:4b:51:a8:d9:46:47:24:66:34:
14:93:9f:81:2e:26:0b:78:40:d3:9c:82:d0:9c:87:3f:ae:9b:
6a:c8:cb:91:58:ef:54:c6:53:72:d8:af:c7:b1:ed:f7:73:70:
e2:88:56:6e:73:83:a3:45:0b:3b:25:17:b2:00:d7:b2:02:72:
a0:e9:fe:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:17:25 2026 by rpki-client