Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: BkI0E/pc0MxqmSjeEI5YflCA6CweT++HqOn0Lx0oBU8=
Subject key identifier: 3D:51:E2:25:35:75:9E:6F:E5:31:E1:B3:2A:1C:07:C5:72:89:D8:AA
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 019D389C445F83DADFE4E91608439AEF0108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 0DDA
Signing time: Sun 29 Mar 2026 08:00:58 +0000
Manifest this update: Sun 29 Mar 2026 08:00:58 +0000
Manifest next update: Mon 30 Mar 2026 08:00:58 +0000
Files and hashes: 1: 1-F6a50KtQcu31PT6x_F9Z_uaDfs.roa (hash: P4rr0sjF2JMQ0Puk//ntxlDU0c1i5ZoIeElt4H2LfSA=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: sVFr9WrQHWIKNyfPRniAPlmBaprs+KbAj5mFg/YxfPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:44:5f:83:da:df:e4:e9:16:08:43:9a:ef:01:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Mar 29 08:00:58 2026 GMT
Not After : Mar 30 08:00:58 2026 GMT
Subject: CN=3d51e22535759e6fe531e1b32a1c07c57289d8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:a0:6b:30:b9:71:7a:c1:f2:eb:2f:71:5e:
97:19:c2:80:32:c6:9d:be:28:62:66:e9:93:d5:c9:
25:16:46:61:54:58:86:f1:6f:fd:dd:01:a9:2f:0d:
db:24:16:42:af:73:85:94:ac:d1:50:c8:3e:95:5f:
17:76:99:f8:3c:23:10:3e:4e:44:02:7e:54:0a:e5:
7f:ff:1e:a4:a4:0c:42:ae:e5:78:ef:e5:75:12:3a:
9c:61:ef:74:c0:d7:4e:28:a2:7f:44:a1:77:fa:c7:
a1:12:4f:86:f5:ab:f9:75:5e:d0:2e:67:66:97:dc:
df:89:c8:d5:d7:0d:99:f1:b2:96:d5:16:cf:c0:cf:
a0:8a:59:5b:44:7c:ce:ee:43:79:85:5b:bf:25:e5:
17:c0:e2:26:c7:0f:22:84:9c:6e:d7:af:c0:86:da:
90:aa:f8:21:fe:79:92:60:a6:24:83:83:97:8b:bc:
2d:ad:2c:f7:fd:a9:bf:8d:4c:21:d2:1e:60:0e:b0:
7a:d3:92:db:28:4b:13:24:83:3a:83:94:fb:c3:03:
90:18:08:9c:5c:6c:fd:ae:76:58:b9:9c:c1:16:bd:
0c:5a:87:6c:4a:d1:9d:5b:eb:64:95:f6:37:b2:d2:
c2:cd:1e:c6:a9:af:86:be:e8:8a:54:ef:83:d4:b8:
33:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:E2:25:35:75:9E:6F:E5:31:E1:B3:2A:1C:07:C5:72:89:D8:AA
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:7b:00:85:83:04:43:d7:0c:24:9d:79:3f:f1:d4:f0:05:3b:
26:b9:0c:8f:72:47:4a:10:cc:60:e5:22:a2:b6:7c:c5:80:1f:
13:b3:c1:fc:e5:e1:67:28:7e:5c:f1:5e:da:89:a1:8d:90:ac:
d5:15:24:d2:04:4a:2c:1f:45:51:13:6e:31:e9:ac:38:fe:83:
cc:d6:a1:7a:b1:68:dd:4d:03:66:d5:60:67:66:53:77:85:da:
60:15:99:12:ee:ba:a0:99:2c:62:3d:ca:10:2b:95:09:71:cc:
e6:92:36:1b:76:18:54:2f:d1:ba:81:66:42:e5:c1:b0:76:aa:
04:93:4e:ee:7a:b9:d8:95:30:b1:74:a7:d1:d4:55:75:95:67:
9f:01:59:4f:58:af:89:86:13:3b:75:de:60:04:6c:dd:ca:1e:
9e:a6:65:b1:8f:ec:d4:61:84:6f:a3:35:1d:39:c1:60:68:2b:
58:e6:42:16:ca:5b:0b:d5:e5:eb:3d:19:86:c5:50:d7:2a:b1:
89:0a:7b:cc:bb:28:e7:35:02:d6:8b:66:f2:8a:fb:17:e0:72:
4f:0c:2f:e2:2a:52:34:e8:88:23:37:e0:9c:00:05:08:50:b7:
81:24:b4:8f:96:a6:c1:9e:c4:b3:ce:48:7b:e0:37:68:f4:7d:
ca:11:87:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:09 2026 by rpki-client