Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json)
Hash identifier: pqZkJpHMGiuoDBSEGAwO/BMfJalQX9b0LmnfTT91EZ4=
Subject key identifier: 2F:C3:37:28:F0:BE:32:5F:FF:66:FB:1F:B1:BA:76:62:8D:B6:C6:B6
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 019CF68588BDB484709EF4826E672FDB61BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
Manifest number: 0DA2
Signing time: Mon 16 Mar 2026 12:01:12 +0000
Manifest this update: Mon 16 Mar 2026 12:01:12 +0000
Manifest next update: Tue 17 Mar 2026 12:01:12 +0000
Files and hashes: 1: LkRlWvjojGp88ImWjfx2Z3qaOy4.roa (hash: kB89kqUtMQKcyA7jSVcONA2ZKYzA7LpbjPMFFP5OhVw=)
2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: 7pCB0AMQbbyxQ6MAUsUASV/STT5ygEqz5Ru8TRmgKMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 12:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f6:85:88:bd:b4:84:70:9e:f4:82:6e:67:2f:db:61:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Mar 16 12:01:12 2026 GMT
Not After : Mar 17 12:01:12 2026 GMT
Subject: CN=2fc33728f0be325fff66fb1fb1ba76628db6c6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f6:33:16:f6:48:5b:68:96:f1:b7:18:6e:88:
cd:ab:81:22:5b:8e:e8:97:55:46:b4:b4:e9:af:ac:
fa:ff:ad:3d:64:08:dd:36:58:3f:67:15:55:2e:a9:
34:8a:5d:ba:cc:33:3e:a5:eb:69:76:cc:c8:87:1b:
a6:e2:a3:3f:bd:62:a9:15:76:bb:32:40:73:e2:34:
4c:ae:aa:db:41:69:71:db:1d:3b:6b:3f:5b:7e:04:
6b:69:f2:39:71:62:c0:c6:bd:3c:3b:a9:21:25:a5:
1a:49:c1:b0:98:08:86:42:31:b8:d1:ff:73:a5:5e:
95:38:fb:70:e8:50:e1:a8:10:33:19:b8:4c:96:c6:
8a:ef:ed:14:67:60:eb:b5:a2:20:bd:44:3e:bc:f4:
37:5a:82:42:b9:4d:38:d3:e0:25:93:35:45:cb:5a:
4d:b3:d7:bf:9b:03:f0:bc:08:45:9e:3b:3c:a7:3a:
7c:ee:3f:57:78:2e:8c:0e:3e:6a:11:00:7c:8a:87:
f5:ea:d3:71:17:e0:f9:1d:fa:0c:80:e3:2d:70:c6:
4e:70:67:23:00:83:49:61:41:3c:f5:15:08:3f:c4:
49:7f:e8:6d:2b:7e:49:21:70:13:25:ce:55:9e:84:
84:ab:67:e1:d3:84:d1:4c:6c:e7:8d:0c:45:30:fe:
a2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C3:37:28:F0:BE:32:5F:FF:66:FB:1F:B1:BA:76:62:8D:B6:C6:B6
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:51:a8:e7:bd:be:9e:7f:68:11:69:a9:ff:09:d4:78:25:b2:
99:1a:ed:38:52:7f:98:bd:8b:4a:5f:7d:48:82:3c:d1:5e:87:
72:54:09:e4:c9:00:e8:53:d7:ac:c9:3b:dd:73:cc:76:06:ba:
76:c6:2b:86:1f:7a:43:75:aa:32:eb:1c:25:28:6b:5c:fa:2e:
d8:85:d3:66:0e:1d:9e:41:9e:41:eb:57:a4:b6:24:32:41:16:
bb:c8:55:d0:07:8d:bc:9d:33:31:49:4b:d4:68:81:28:2c:a1:
30:44:d9:f8:06:55:a7:7b:6c:f4:c9:25:ec:e2:2a:c1:14:94:
46:bd:7e:8e:f4:97:d4:66:87:05:a4:41:5d:50:c0:3e:8d:6f:
ee:1f:3f:ef:ac:dc:a5:58:10:6e:0b:49:e7:ac:9d:94:38:36:
56:d1:6a:ea:95:0d:72:2f:3d:a2:08:da:7d:df:06:0e:d5:45:
3d:bc:25:ae:4f:31:72:8e:a4:de:e3:83:4b:74:71:b9:2a:c6:
75:30:86:d6:7e:f9:28:68:fe:dc:7a:93:3b:91:8d:db:7a:51:
82:ab:a6:ac:96:41:be:92:21:81:2b:11:2e:51:36:64:6a:0e:
fb:fc:e6:bb:42:e7:c0:20:b6:60:22:b5:0d:01:31:16:3c:fc:
20:2c:8c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 21:03:18 2026 by rpki-client