Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: qB8004GPJf4i2eEmcYZiK3IP//cm9/NA07kXjuH2Zi0=
Subject key identifier: B8:30:D7:59:E2:EF:E2:65:B0:6F:B0:AA:A2:81:3F:C7:B4:D6:5B:4C
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019D37F6E754EDD5D153BD6070818D67B979
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 05:00:21 +0000
Manifest this update: Sun 29 Mar 2026 05:00:21 +0000
Manifest next update: Mon 30 Mar 2026 05:00:21 +0000
Files and hashes: 1: LKfnJFP3stLPWkjsWhakvnaxplg.roa (hash: 3FNKamFL0cuW1/UK40gTZTnTQ2szlVWiH3Kqp5bB2Jc=)
2: _UAEb8lxXMfLr99B3gLyKpq6SRc.roa (hash: 5fNZHaDxkH+elaL5Caoe2vhcopBQ8ICg8obtjvq1FY0=)
3: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: sP1FQ+l+ibNO/QCKiqfRJqlLgwy/giXAYwGOvWpa3Lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:e7:54:ed:d5:d1:53:bd:60:70:81:8d:67:b9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Mar 29 05:00:21 2026 GMT
Not After : Mar 30 05:00:21 2026 GMT
Subject: CN=b830d759e2efe265b06fb0aaa2813fc7b4d65b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3a:df:95:65:dc:65:7e:06:10:94:33:88:57:
fb:6c:e1:3f:d9:6f:37:b2:e1:39:9c:10:b7:db:87:
be:72:06:14:0b:f1:64:ee:f4:a8:8c:20:a3:02:0e:
3a:4b:e4:44:fb:e2:9c:0d:c1:88:bc:97:d0:f4:d1:
34:e1:3f:34:f2:fa:a0:23:e4:4f:e5:ba:ab:13:da:
66:0f:35:8f:3a:85:71:22:9c:99:b0:52:97:28:a7:
d3:45:be:06:d2:fb:d8:c9:ea:06:17:11:03:7e:8c:
87:76:33:0d:bd:fb:18:79:44:06:a7:cc:65:ab:ed:
1c:cb:bb:aa:5c:6f:62:92:50:84:8e:f8:25:b4:a4:
f1:15:5e:20:3c:1d:30:44:5e:e6:0a:a7:a3:ef:99:
a0:3c:7a:f3:60:35:39:a9:e1:30:97:01:c0:79:42:
13:b2:69:29:5c:5b:fa:ea:a1:63:27:9c:90:f2:a1:
b4:97:c6:0b:a6:1e:08:df:34:56:5f:f7:30:38:5f:
f4:54:91:fe:1a:1c:ac:c2:de:48:0f:34:10:36:f3:
5a:18:43:a0:2e:75:39:ac:a7:ed:46:9b:61:37:38:
1c:33:87:60:7f:f3:97:d1:fa:bd:d0:3e:c2:45:fb:
86:d6:d0:68:72:f3:18:48:b1:a6:e2:56:b1:d3:5e:
a6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:30:D7:59:E2:EF:E2:65:B0:6F:B0:AA:A2:81:3F:C7:B4:D6:5B:4C
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:8c:68:e3:3d:d3:4b:e0:cb:d6:ae:66:dd:5b:f3:dc:a7:ff:
fe:c1:ea:84:77:6a:5b:8f:0d:1d:2e:6c:de:b0:63:95:ec:a4:
64:6c:c6:ca:79:a9:43:3f:70:b3:b7:dd:0f:3f:5a:c9:65:29:
f3:df:99:cc:e7:a9:80:45:bf:62:9d:d9:8e:6c:5e:76:6d:71:
d5:2c:bd:85:7a:3e:74:d6:8a:88:6e:b0:9e:bb:5b:8f:72:40:
b4:1a:1b:f4:0d:2a:de:de:40:af:e6:ca:fd:b0:9d:0d:11:e3:
ca:4a:1f:93:83:a7:39:42:0c:bc:d4:d7:ff:e2:4e:39:8c:0c:
2d:a6:9d:60:0a:28:06:83:e1:4e:b3:07:ae:25:94:30:7c:0e:
8c:5c:6e:b9:c1:33:45:77:7c:c9:2b:af:cd:3b:b9:47:de:fb:
37:69:c4:f3:13:b1:94:b6:e7:ca:c6:84:2c:e0:5b:43:0a:6a:
43:82:b3:09:b6:be:46:4e:13:73:4b:da:90:5f:f9:8d:0d:33:
9f:18:b4:1a:d4:72:d3:10:a1:9c:51:b4:97:b2:19:51:a9:75:
28:92:77:38:c4:c6:f6:29:1e:4b:00:f0:bd:db:ef:5d:26:e5:
05:c2:e8:a1:fb:6d:42:39:f8:24:1e:5d:86:8a:70:09:5f:7a:
65:ae:ac:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:30 2026 by rpki-client