Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: JH7mCRAqb0NyJF34xCdAP+7rmCalbRE8RRlYeOegvgA=
Subject key identifier: EA:5E:7D:E1:FE:7E:B9:77:F3:EE:8D:80:76:41:CA:1A:AF:98:BC:B3
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019CE7EE2BDBA0216ABBFC7DBC236B87C45D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 112A
Signing time: Fri 13 Mar 2026 16:01:11 +0000
Manifest this update: Fri 13 Mar 2026 16:01:11 +0000
Manifest next update: Sat 14 Mar 2026 16:01:11 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: SnwLnonCsVcADBPyKw+SF12LeXs/cCUaroI6/auHDRw=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:ee:2b:db:a0:21:6a:bb:fc:7d:bc:23:6b:87:c4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Mar 13 16:01:11 2026 GMT
Not After : Mar 14 16:01:11 2026 GMT
Subject: CN=ea5e7de1fe7eb977f3ee8d807641ca1aaf98bcb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:38:ab:a4:6b:b7:09:5e:7d:e9:56:57:7d:4f:
01:90:42:69:7f:c3:ef:57:f4:4f:93:93:33:03:1b:
61:4a:62:50:f9:f1:c3:7d:11:53:34:dc:da:7b:50:
f2:a9:88:85:3d:82:04:bf:5f:05:3a:4b:cb:9f:93:
4e:88:6c:12:85:0e:24:7c:e7:e0:fd:06:3b:c1:29:
f3:17:9a:01:22:9c:48:e3:40:56:29:10:fd:b7:eb:
eb:d4:8e:20:97:0c:38:7d:70:dc:14:ca:e3:14:58:
3b:c7:64:ad:37:3c:3e:5c:6f:3c:5d:35:06:53:4a:
6a:78:a8:19:6f:5b:7b:31:7d:92:b1:19:e1:2c:87:
b4:7e:bd:f2:13:06:f4:d7:0d:b9:ea:71:59:10:21:
47:e1:c2:24:05:4c:88:87:e8:ff:f6:fc:61:0e:83:
ba:88:2f:1b:84:6d:f8:7a:b7:79:57:57:ea:bd:bc:
8c:24:71:5b:c5:cc:90:1c:7e:56:90:6c:d2:4f:45:
bc:0f:a0:89:fe:f7:fa:e4:99:ac:86:90:2c:b4:46:
0c:56:1c:05:5a:d6:6d:da:c8:50:b3:4d:67:c4:e9:
28:cc:20:e2:68:42:5d:62:7f:21:56:9b:cc:e7:86:
5e:ed:99:5c:9b:74:6e:3e:f0:0f:ec:e3:6f:fc:85:
b4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:5E:7D:E1:FE:7E:B9:77:F3:EE:8D:80:76:41:CA:1A:AF:98:BC:B3
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:70:c4:c9:82:98:1d:6c:c5:b3:87:ea:b6:82:0d:aa:c8:7d:
d1:5d:3f:5b:8f:f5:b4:0b:2b:65:3d:9e:da:68:ab:d4:4e:9f:
17:7a:54:44:53:98:75:0a:65:b1:46:13:c2:96:3f:e9:37:91:
99:e2:e8:d7:7b:2c:56:49:96:28:18:32:7a:fd:6a:70:a2:15:
9c:b4:1c:cd:66:16:ff:cd:77:4b:50:97:5b:08:54:aa:cd:61:
5a:78:44:21:4e:92:85:3b:80:f5:9b:e7:3d:71:92:46:80:19:
29:bb:d9:0a:fd:ca:78:7c:5c:b1:b3:06:a3:bf:9a:53:76:ff:
f0:64:76:8e:13:8b:1f:f0:ee:42:c1:36:56:aa:e2:a2:1e:0b:
fe:d1:db:8d:eb:3a:fa:ed:72:11:75:67:2a:37:c6:15:74:6a:
f8:9b:99:5c:be:64:3a:33:86:ba:e8:dd:64:44:09:b7:6e:48:
79:8c:6a:b1:33:8d:a2:a5:df:5e:08:97:84:af:06:0b:f4:c3:
b1:94:ef:b2:9c:e9:c5:5e:96:85:ad:65:a5:8b:41:c4:7b:c9:
c7:68:05:30:6e:05:4a:18:de:80:e1:29:0e:50:2c:a4:48:54:
a9:a1:18:c9:6f:d4:4e:b4:3c:9a:8f:45:1b:5b:87:f1:06:6f:
68:34:24:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 22:18:33 2026 by rpki-client