Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: 0j36G5dX8kJsrB9MlyZttCeCZqzfix3qhSKLuZLujDA=
Subject key identifier: 88:D7:31:B5:A7:C9:4D:8F:78:80:FA:B0:95:2E:CF:00:AF:E9:35:BB
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019CC82BED1FD4025F7AFD186C9BA549EE2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0EFB
Signing time: Sat 07 Mar 2026 12:00:47 +0000
Manifest this update: Sat 07 Mar 2026 12:00:47 +0000
Manifest next update: Sun 08 Mar 2026 12:00:47 +0000
Files and hashes: 1: 5EPEfFcq0_CQJyJv8NvlTXW122s.roa (hash: shP8Ed/HPJC3iktLjU3AhfJDqjBPIc4NQ5VyPIH2+gA=)
2: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=)
3: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: ldzTA0N6Vms529ZhqDBXCI+iF1sjgGgx7j5GZHGrHsk=)
4: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=)
5: xkVE7KUdk3_Gxthu42EOBxgV05Q.roa (hash: OLCiaU+AVFxgMEa5gMdkqLSxOFCgu1RCocNrX9T3asM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:2b:ed:1f:d4:02:5f:7a:fd:18:6c:9b:a5:49:ee:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Mar 7 12:00:47 2026 GMT
Not After : Mar 8 12:00:47 2026 GMT
Subject: CN=88d731b5a7c94d8f7880fab0952ecf00afe935bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e1:69:20:21:18:ad:73:c9:e8:11:94:16:3a:
31:f2:2e:e0:fe:18:96:ef:0d:b9:fd:19:8c:e1:35:
56:04:10:8f:99:c5:e6:11:0a:c1:78:f5:c9:29:37:
78:b9:75:1b:20:1d:28:b8:db:ae:cb:74:2b:11:d7:
cc:42:dd:8f:03:e0:83:f4:4e:ea:ed:47:aa:c2:49:
8e:45:c7:e8:8a:e2:10:b4:55:ff:36:31:cb:17:2c:
31:c8:60:ed:e5:46:91:d1:b6:ba:5a:f7:e4:ec:2c:
1d:d1:b6:ca:88:30:2a:8c:1b:0b:54:96:02:b5:21:
65:b0:e8:d0:0a:e1:0a:05:2b:26:74:43:ae:40:7a:
e7:cb:c4:cc:de:19:b6:c1:cb:0e:5a:13:9e:e2:21:
64:9e:53:8b:d0:e7:0f:20:96:f2:08:bf:e2:6e:c2:
77:75:6f:1b:a4:50:f3:9a:e0:a1:65:69:87:19:2f:
f4:5e:65:f9:ad:a9:7c:da:06:58:9e:90:92:d0:44:
33:ca:f3:a5:70:df:a8:fd:5c:ff:dc:ca:e7:11:81:
93:a9:9c:34:e6:bb:6f:f3:56:59:95:c6:6a:1b:f0:
e6:01:9e:c9:5a:bc:17:d5:b3:05:ca:c2:bf:ca:e4:
d8:0a:4b:1e:87:9e:e5:95:6e:5f:23:f1:bb:87:bd:
39:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D7:31:B5:A7:C9:4D:8F:78:80:FA:B0:95:2E:CF:00:AF:E9:35:BB
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:33:5c:2b:0b:cf:19:af:78:16:75:73:06:28:56:27:13:92:
14:48:9e:84:ec:11:fd:90:16:54:4c:98:97:69:a1:ef:40:97:
34:cf:08:63:59:8b:04:7d:e6:8a:64:46:0b:1d:c3:bc:15:e9:
ba:f7:39:2b:fb:6b:c3:5b:de:1c:a9:c6:d9:b2:ba:c6:c2:e7:
75:6c:b1:58:e9:79:4d:b1:db:c0:0a:12:b5:66:95:36:7e:3a:
cb:81:a2:2a:e5:93:a0:c4:e2:36:cc:c3:df:49:1f:64:b1:4b:
a9:0c:f6:f0:f9:6e:85:f2:37:70:2e:a8:07:20:10:12:c3:48:
ad:06:66:33:86:43:a6:b8:d3:a8:32:f7:bd:e7:98:bc:83:0a:
1c:83:a8:f9:7c:db:99:90:27:45:18:78:3c:86:6a:46:db:d5:
20:73:30:fe:31:4e:20:df:31:79:da:9c:d0:b2:f5:e1:f7:cc:
ca:b4:50:80:24:d9:f9:28:ab:80:de:b7:e1:77:13:71:54:00:
25:c9:66:30:de:2d:40:59:79:96:20:99:bc:79:37:9a:9f:d1:
36:a3:bc:1c:a5:3c:d5:de:e1:b0:23:20:1d:05:98:c4:5e:6c:
f5:d5:0d:5a:ae:78:56:5f:bb:25:a1:84:16:ad:be:06:74:72:
ea:c1:ce:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 20:55:52 2026 by rpki-client