Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: 0+oKgBx3twiUrQOnh2Fzn1axi/yKwmmeMOjwgZjz9KA=
Subject key identifier: 01:A5:6E:53:9D:A2:BB:F7:EE:D1:71:66:98:8E:67:E5:DC:FB:A1:99
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 019D38D2EDCD0091F3F1648F064FEE6A0B04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 0B2A
Signing time: Sun 29 Mar 2026 09:00:40 +0000
Manifest this update: Sun 29 Mar 2026 09:00:40 +0000
Manifest next update: Mon 30 Mar 2026 09:00:40 +0000
Files and hashes: 1: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: N5DGVEILc3oWPU+vzrwYkidzhj0SNPaBo399Se9Ar9Q=)
2: qukZOL3y-aU1clCkqnWrjrRORuo.roa (hash: AXo2TQQEBH5zNI61c1elakGj9Z6fZg1L8w+i18Gk+4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:ed:cd:00:91:f3:f1:64:8f:06:4f:ee:6a:0b:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Mar 29 09:00:40 2026 GMT
Not After : Mar 30 09:00:40 2026 GMT
Subject: CN=01a56e539da2bbf7eed17166988e67e5dcfba199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7f:01:23:80:4f:96:93:05:eb:75:0c:f7:f1:
64:66:33:38:17:66:b9:25:2a:62:04:a1:a2:61:d9:
b0:f1:aa:32:df:81:e7:b7:1a:5b:9d:fe:37:ac:1f:
34:9e:99:b2:db:d3:9d:58:1e:73:a7:64:0b:19:e3:
2e:a1:9d:2e:f4:bb:20:d1:53:12:06:35:b5:8c:aa:
52:9f:46:2d:b0:39:9f:db:46:1f:38:ae:0c:59:a6:
cd:c3:68:83:18:2e:96:96:c4:4a:9a:d1:ba:94:b3:
c2:08:20:74:32:d3:a2:8b:bf:b5:29:d0:7f:19:5b:
49:d7:79:fd:5b:6f:13:be:4f:a5:66:c6:e9:61:38:
31:e7:67:f9:13:cb:ff:47:ef:87:6d:20:44:a5:48:
69:b9:d6:2b:36:03:18:e2:32:77:84:01:31:9f:29:
f3:9e:b5:fa:29:5e:fe:56:f8:37:3b:4b:d5:b3:24:
af:14:c4:d6:db:0c:f4:9f:14:a9:1c:57:34:cc:ae:
c6:5b:b3:10:ba:ab:5f:80:10:22:4c:44:56:5e:1c:
1a:0f:f5:56:86:ed:90:6c:9f:7d:77:a5:8e:72:94:
75:cb:ff:f4:d6:b4:a5:63:94:eb:99:f5:7a:64:2d:
f8:2d:ca:25:86:6e:f7:ad:c1:fe:5a:4b:cb:21:ea:
14:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A5:6E:53:9D:A2:BB:F7:EE:D1:71:66:98:8E:67:E5:DC:FB:A1:99
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:c0:28:6a:ea:2b:c6:80:e9:bb:2d:69:5c:9f:56:6c:90:0e:
2d:46:ed:d9:f4:08:88:0d:26:86:ee:81:35:03:4c:3c:ae:c4:
0a:88:b5:4f:29:58:d5:05:a6:ba:7e:11:87:b5:3a:05:d3:1b:
67:6f:2c:dd:cf:0f:40:cc:08:51:5d:b6:7a:ce:29:45:46:e2:
bf:63:43:94:96:5a:4e:e2:5c:93:80:39:ad:49:06:4a:48:3c:
4f:bf:4d:9e:fe:d7:82:89:8d:15:b9:01:6a:52:bf:4d:bc:73:
3b:3d:5d:73:d4:fb:be:4d:d6:df:4f:dd:83:b0:2b:46:9b:ff:
89:cf:b9:f2:37:3a:95:9e:9a:4b:5c:72:45:3b:93:d5:1a:c1:
a9:7c:6c:82:68:ab:55:a3:c5:2f:20:15:90:8b:88:de:c9:89:
9d:6e:16:5d:56:94:af:a9:b6:79:c0:89:47:59:48:7a:4c:29:
b0:f4:12:a6:1c:24:7a:99:88:25:01:4f:70:d1:a0:c9:3a:d6:
1a:6d:20:a9:29:86:be:23:04:d5:c1:4c:b3:6a:ef:c5:7f:89:
a7:cf:56:3a:fb:36:9c:bc:57:d8:95:64:f7:71:b9:e3:ce:19:
d0:a4:2a:82:8e:55:f0:61:85:72:b5:79:50:46:44:6c:a3:e4:
70:47:24:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:20:32 2026 by rpki-client