Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: oOZ2QwrxloXnX5sRWnnDGx84ztpmsbysVC+dF0Zao4U=
Subject key identifier: 5F:3E:32:05:AD:F3:95:A7:91:5B:1F:95:D7:CE:EB:21:6F:D3:17:70
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 019EB5B37EA522A16B9E5A503BB20CECDA10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 0D54
Signing time: Thu 11 Jun 2026 08:01:39 +0000
Manifest this update: Thu 11 Jun 2026 08:01:39 +0000
Manifest next update: Fri 12 Jun 2026 08:01:39 +0000
Files and hashes: 1: 8qvgkfD_thQ4z_WLXGgGH3lh3Jo.roa (hash: lpIuAWveKCKeQMUzXLJXzixQ82Be/vxjOdAft2Y84BY=)
2: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: c9JZcAbwN4Ku/lLvmhGC21BY/7edv44AWPFVrBdyecU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b3:7e:a5:22:a1:6b:9e:5a:50:3b:b2:0c:ec:da:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Jun 11 08:01:39 2026 GMT
Not After : Jun 12 08:01:39 2026 GMT
Subject: CN=5f3e3205adf395a7915b1f95d7ceeb216fd31770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:ed:1b:35:6b:96:92:cc:5e:08:5c:66:bb:
45:3b:e8:ea:73:24:d2:06:59:7f:b4:79:4d:0a:47:
c9:a1:53:b7:63:22:56:83:ae:24:c5:cf:5a:7b:fc:
53:fc:e3:2b:29:53:c3:ee:a4:33:00:a7:80:dd:e3:
36:e2:ed:21:c3:8e:81:d2:fc:40:47:60:6e:1f:3e:
cb:9e:9f:27:cb:32:d1:fb:8f:39:54:84:73:4d:74:
ab:e0:0b:43:04:b7:6f:f6:23:9e:d8:c5:06:8f:cd:
80:a4:c2:84:7c:b8:b0:74:32:4a:6e:0d:13:a5:11:
b3:4d:9b:c6:d0:b5:d8:97:ce:53:d1:17:99:99:55:
6f:1f:e5:14:2b:3b:50:f3:90:a2:54:ed:6b:be:d6:
fe:f5:b6:24:6b:5a:70:a5:49:ef:da:47:97:dc:c4:
62:71:bf:08:1c:e5:a6:b3:29:00:e5:96:c1:61:69:
2b:39:7e:44:fc:f9:8e:f2:60:ac:07:2d:76:73:5c:
f8:34:b9:d7:2a:f9:0b:99:07:bb:25:88:61:22:95:
d1:59:63:82:c6:ce:13:55:a8:65:ab:d9:ee:1a:09:
73:29:2d:29:b9:89:83:57:52:9c:91:bd:c8:7a:11:
d7:1e:ee:af:2c:37:a3:d2:fe:98:43:0e:71:de:9c:
42:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3E:32:05:AD:F3:95:A7:91:5B:1F:95:D7:CE:EB:21:6F:D3:17:70
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:41:93:8d:36:aa:51:dd:3a:5a:81:51:0e:0b:37:4b:9a:44:
e7:d7:3c:55:51:cb:e3:04:67:1b:05:45:9a:d2:03:3c:a7:8f:
9d:cf:d3:55:0c:a0:ac:46:b1:33:06:68:96:5c:70:a6:8a:d9:
d0:53:bb:f7:c9:e6:05:2b:5a:71:61:b9:1a:9f:e2:85:0b:25:
d1:03:22:c3:9c:71:85:2e:aa:d8:d1:37:61:be:73:51:1c:50:
3a:c8:eb:04:63:2b:fd:3f:18:2b:66:11:cb:ec:0e:5e:79:8b:
72:fd:a1:44:9a:b4:4d:69:6f:5e:d8:b4:a1:55:b4:a4:59:f9:
6c:ca:49:fa:2f:d7:61:02:4a:1b:a9:12:01:b4:c0:3a:da:72:
47:eb:e5:fc:a9:fd:52:96:da:ff:3a:9b:ee:c9:44:cc:93:03:
aa:a4:5a:d1:5d:e8:26:0d:82:02:37:16:9b:fa:76:a0:57:c3:
81:0f:45:ae:53:ed:31:4b:2e:51:78:4f:b4:8b:de:c9:27:0b:
c5:6f:d8:9f:29:88:e2:49:de:97:57:2c:9b:86:1c:67:4f:1f:
19:79:b2:e3:ff:c1:ed:4d:3e:36:bb:32:56:ca:d6:20:75:e5:
90:a1:1f:08:84:a9:a8:d8:52:78:3d:89:0b:d0:5b:55:5f:2e:
bb:b2:b4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:55 2026 by rpki-client