Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: ZVqVF5wybtcAnYGOj1KI0w1XBb6HqT7VN9t4ePvu6+k=
Subject key identifier: EB:91:CD:3C:89:4D:CA:D2:5B:BF:D6:46:D5:FC:DE:95:E4:6A:7D:84
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019CC93EEB968607C2B2C014854E17F75696
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0A10
Signing time: Sat 07 Mar 2026 17:01:09 +0000
Manifest this update: Sat 07 Mar 2026 17:01:09 +0000
Manifest next update: Sun 08 Mar 2026 17:01:09 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 1jhuqw939QaJrl0sP0mFdsPGbMIymJaYp3JvRw9/htw=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c9:3e:eb:96:86:07:c2:b2:c0:14:85:4e:17:f7:56:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Mar 7 17:01:09 2026 GMT
Not After : Mar 8 17:01:09 2026 GMT
Subject: CN=eb91cd3c894dcad25bbfd646d5fcde95e46a7d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:47:5a:4b:8c:f9:8a:e7:f4:b0:14:57:52:ea:
18:e0:f1:46:f4:14:19:54:de:8a:15:79:55:83:c1:
81:7f:97:e6:ce:84:d5:68:ac:9c:cc:00:df:65:40:
d3:ed:52:b4:83:1b:52:f2:b6:3f:d1:5b:ec:ef:a5:
a6:f8:3e:e5:36:c7:57:86:b1:8a:e9:4c:76:50:69:
74:96:2e:db:9c:19:99:2a:7d:97:70:b5:6d:1d:d4:
e0:0e:98:a4:61:e5:4d:d7:9d:d4:3a:5a:db:a8:af:
84:6c:d4:73:13:9a:5f:2c:51:9d:d3:3b:8b:3b:87:
e3:dc:8e:ea:d3:be:d8:eb:28:05:4f:78:c8:80:5b:
1b:a1:11:e7:1c:ed:3c:b8:c4:e9:9b:50:4b:34:43:
c1:2b:7a:2f:06:ba:49:43:0c:69:c7:d2:8a:56:ac:
0b:22:58:fb:c7:95:a8:a0:99:2b:bd:36:7b:ba:dc:
70:54:4f:65:d2:20:6a:60:dc:bf:6f:49:cd:c5:d7:
70:bf:02:39:5d:65:bf:f3:29:1d:d1:2c:9a:08:cc:
96:04:42:35:03:0c:b4:4e:13:29:ee:93:d4:64:a3:
7e:7c:1e:99:e0:cb:0e:fe:49:49:74:67:70:5b:40:
5e:16:d0:54:5c:85:0f:8a:54:81:c8:6a:75:ed:88:
07:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:91:CD:3C:89:4D:CA:D2:5B:BF:D6:46:D5:FC:DE:95:E4:6A:7D:84
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:34:4f:44:d6:cb:d9:21:98:e5:37:70:94:e6:d0:c0:28:60:
fb:be:9d:6c:4a:54:7e:90:4f:03:92:c7:95:52:82:c8:25:b6:
ab:c3:93:92:16:3f:18:ca:23:72:e9:9b:e9:ef:28:25:ab:dc:
0c:b7:16:e0:2c:79:61:c4:3b:83:bf:e0:f7:fb:6b:4c:08:64:
ab:8c:55:75:76:12:5c:96:d6:e2:c5:bc:40:99:0a:b1:3e:47:
06:f6:78:b9:73:a4:5f:92:c5:49:94:6d:3a:7e:fd:88:a1:d8:
77:12:08:19:3c:41:0c:c7:1b:a9:83:bf:72:cd:63:09:d9:88:
1e:00:e6:88:16:7d:ca:4b:c3:9c:f0:fb:55:62:73:93:c3:26:
73:66:b1:fb:d5:2d:d0:67:eb:96:11:f6:84:99:65:11:4c:a7:
11:c1:4a:1f:e6:0a:0d:28:ad:4b:1e:3a:dd:54:73:1d:5e:33:
4d:b9:fe:7b:96:72:f7:bb:bc:fe:8e:cf:82:05:88:a3:f0:ac:
bc:ad:85:8f:3d:2d:7b:5b:1f:8e:93:06:a9:3d:13:e0:63:03:
07:d0:5c:fb:cb:9e:89:70:de:1a:a3:21:79:79:f4:49:65:39:
e4:ff:10:25:90:a1:99:ad:42:2e:f6:09:43:32:7c:73:82:3c:
dd:60:87:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 19:04:28 2026 by rpki-client