Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: ctJfi3VBht5Zo7VXr6kSzxJn8J3+UiSdailGJ1cKhD0=
Subject key identifier: 6C:D4:A3:41:25:8F:2E:BC:13:FC:1B:5D:7D:04:E7:5B:C3:5D:38:44
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019E9B84C844732D6B91F3F1D9A1334E8A73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0FED
Signing time: Sat 06 Jun 2026 06:00:30 +0000
Manifest this update: Sat 06 Jun 2026 06:00:30 +0000
Manifest next update: Sun 07 Jun 2026 06:00:30 +0000
Files and hashes: 1: 5EPEfFcq0_CQJyJv8NvlTXW122s.roa (hash: shP8Ed/HPJC3iktLjU3AhfJDqjBPIc4NQ5VyPIH2+gA=)
2: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=)
3: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: 9On+RjmoLKEOGZGvMgdEO8mn8YN5JuME7tfyYJONQMk=)
4: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=)
5: xkVE7KUdk3_Gxthu42EOBxgV05Q.roa (hash: OLCiaU+AVFxgMEa5gMdkqLSxOFCgu1RCocNrX9T3asM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:84:c8:44:73:2d:6b:91:f3:f1:d9:a1:33:4e:8a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Jun 6 06:00:30 2026 GMT
Not After : Jun 7 06:00:30 2026 GMT
Subject: CN=6cd4a341258f2ebc13fc1b5d7d04e75bc35d3844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:5b:c4:76:fe:58:ba:a0:a6:85:31:aa:42:
2f:9f:2c:79:2d:80:13:f5:27:26:d8:13:36:8d:fd:
75:10:5a:12:7c:40:04:d5:5d:f6:13:84:b7:71:ad:
95:1e:66:cc:dd:72:b3:ba:7c:fc:5b:72:0e:17:aa:
46:2b:58:4b:d0:d2:eb:58:58:42:3c:b6:0b:ec:9f:
cc:ae:fb:9a:14:42:e9:03:75:19:a8:c1:dc:9a:75:
58:2c:53:a5:82:e1:7a:f2:fa:4d:dc:1c:cd:75:6d:
ad:26:8c:b5:1b:b3:4e:d3:d6:f7:cb:16:3d:10:85:
5c:65:1f:48:14:db:31:b0:24:d8:b2:99:f4:e5:93:
b5:b6:fd:c7:ec:37:8e:14:27:8d:4f:bd:a0:ea:12:
24:f5:08:31:1e:29:96:0c:fb:00:5c:5c:a5:57:10:
fd:b0:0e:4e:df:e9:a1:4c:ff:f3:a2:b7:9b:63:f0:
59:7a:82:58:54:bd:8e:df:22:e9:99:f8:70:a3:2b:
a7:60:49:6a:2b:15:5c:49:d7:50:17:77:16:44:d8:
3e:ac:54:72:4d:f0:1f:99:30:9a:76:36:7a:91:f9:
b4:28:6d:cc:52:20:9d:68:96:e2:96:6b:be:d1:e6:
81:4f:97:19:58:d4:08:85:35:76:91:2f:0a:dc:70:
84:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D4:A3:41:25:8F:2E:BC:13:FC:1B:5D:7D:04:E7:5B:C3:5D:38:44
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:6f:d4:0b:fb:31:d7:8b:fd:c5:51:10:16:b4:6a:66:8d:ec:
8b:7d:30:48:ae:96:0c:e7:be:c4:98:76:64:b9:41:7b:8b:88:
98:ed:0d:1f:2f:02:55:8b:3d:4c:0f:1e:2d:7d:ee:7d:f6:7c:
c3:c6:f4:b2:cc:cd:8c:c4:2d:c4:c9:04:cf:20:e9:88:ab:68:
57:73:a8:50:25:ce:51:87:cb:d0:7d:58:d7:d7:33:ad:2e:5d:
f7:5a:2d:10:c7:72:b6:e8:0d:17:a6:ae:57:17:ec:a0:e6:94:
21:fc:c7:b7:33:b4:59:d9:b2:01:09:ea:0d:51:95:c1:35:44:
7b:a4:b4:ea:92:ea:1e:20:8c:5d:99:72:fd:a0:49:9e:0d:49:
45:99:a2:bf:c8:71:2a:a9:4f:d6:67:fd:f7:ee:08:1b:67:26:
5a:ea:95:c8:db:17:71:d4:2d:de:e1:e5:f3:f7:ce:3a:51:5b:
98:2b:74:8b:bf:d8:ad:7e:2b:20:08:d2:bf:f6:e8:d7:72:57:
35:8f:31:ca:19:91:f1:f5:8b:fd:84:0f:e2:65:ec:20:27:e3:
8d:d4:c4:61:e0:15:68:03:06:39:8c:be:01:0e:72:df:07:a7:
50:2d:fc:cc:e8:df:73:3c:00:1d:2f:e8:c4:f3:68:6c:c4:ab:
4d:92:00:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 14:44:06 2026 by rpki-client