Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: L8twX0Q0eZJpJLIDdXmqgoP4HKQnS6/xW4TZX3gu+TM=
Subject key identifier: DF:71:B6:D9:F9:E4:1C:F7:D9:D9:69:09:14:45:F9:CA:42:5D:CF:E2
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 019D37528DE64ADF02A4CEF1AD041202DB51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 0C8E
Signing time: Sun 29 Mar 2026 02:00:50 +0000
Manifest this update: Sun 29 Mar 2026 02:00:50 +0000
Manifest next update: Mon 30 Mar 2026 02:00:50 +0000
Files and hashes: 1: 8qvgkfD_thQ4z_WLXGgGH3lh3Jo.roa (hash: lpIuAWveKCKeQMUzXLJXzixQ82Be/vxjOdAft2Y84BY=)
2: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: KdtYpCBcXwY4kxfOHiHDKdhI/wX8HZeWY5if8xcL/j4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:8d:e6:4a:df:02:a4:ce:f1:ad:04:12:02:db:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Mar 29 02:00:50 2026 GMT
Not After : Mar 30 02:00:50 2026 GMT
Subject: CN=df71b6d9f9e41cf7d9d969091445f9ca425dcfe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:c6:52:88:81:58:58:b0:6d:8d:43:40:30:
75:3e:34:52:bc:23:38:54:02:e0:c4:b2:58:ef:bf:
cb:86:55:13:28:5f:2c:36:88:ac:78:b5:ae:53:8f:
ca:88:15:db:7c:88:33:84:c5:1e:8d:b0:b2:a1:d1:
81:df:5f:39:10:e6:ee:97:c1:39:0d:c9:31:ae:0f:
16:28:e5:af:b7:92:90:f9:87:f7:42:d7:ba:09:65:
ef:af:e4:d5:1b:d2:24:71:64:e9:7e:d7:af:3d:4c:
1f:0f:2c:53:5c:4b:e4:31:23:38:14:00:da:28:22:
f9:24:c3:6d:ca:cc:e2:7b:fb:2f:05:b6:51:ce:aa:
15:20:34:fe:67:8c:fb:05:0c:91:52:46:f2:d9:8d:
65:b2:04:50:95:c5:4f:b9:35:23:e2:0e:f8:1c:ab:
02:4f:8e:25:d5:a1:a3:1b:a5:42:01:a4:19:f8:ab:
89:55:1c:d9:b5:50:fa:af:b3:e1:cc:e4:8a:05:6a:
26:1c:4b:a9:1f:c7:37:7e:47:d2:48:d0:eb:b8:91:
b9:d4:62:ab:c0:78:4b:d5:9c:15:db:b3:04:c7:8a:
8d:6f:ce:db:ba:00:20:3c:8e:de:fd:3e:31:e5:02:
fe:40:cd:9b:ae:ce:2a:e1:39:9d:30:f8:0b:57:df:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:71:B6:D9:F9:E4:1C:F7:D9:D9:69:09:14:45:F9:CA:42:5D:CF:E2
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:af:39:b8:01:7f:a3:67:39:d3:97:0d:b8:9a:e7:59:21:ee:
80:ce:2f:09:81:ce:4c:23:6b:48:44:55:7d:60:a6:bc:9d:c8:
c8:f2:68:7c:90:10:27:11:65:f8:94:d7:16:44:22:f8:f6:86:
4e:23:8d:7d:39:01:8d:91:20:f1:ab:7b:37:9d:d7:af:c1:83:
88:06:39:27:a5:44:4c:1f:ff:f7:5a:69:73:6a:ba:ab:ca:0c:
c6:0d:d2:6d:c6:6e:ad:cc:55:56:c9:f9:95:6c:f6:c6:02:4a:
b8:d6:0b:cd:c1:6f:e2:6f:62:d0:64:a2:9f:a7:5b:bb:92:e0:
9a:82:43:56:1f:3b:f5:cd:4b:16:62:7d:e0:18:84:c0:4b:12:
0c:bf:8f:d0:a9:e1:bb:10:5e:48:d0:63:85:82:f7:20:2e:3d:
83:9c:56:f7:3c:1b:d2:b5:68:26:64:0f:56:a3:c0:f0:1d:71:
21:6f:af:89:d3:3c:dc:89:d5:76:c3:49:ca:b8:c7:c3:d1:79:
a7:17:d1:5b:d0:ec:b3:ee:2e:a5:53:ea:8e:0b:98:8c:51:e8:
20:eb:27:b2:d2:33:bb:17:28:0b:a4:fa:5e:f4:2c:2e:ca:82:
8e:c8:3a:a0:d8:99:70:15:1b:e0:05:9f:d5:8a:88:d6:39:00:
25:95:91:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03Uo3mSt8CpM7xrQQSAttRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZmZiNjA1ZGNlMzA2MGRmYjY2ZGNjY2E4OGViN2RhMGFj
NzRhZjEwHhcNMjYwMzI5MDIwMDUwWhcNMjYwMzMwMDIwMDUwWjAzMTEwLwYDVQQD
EyhkZjcxYjZkOWY5ZTQxY2Y3ZDlkOTY5MDkxNDQ1ZjljYTQyNWRjZmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzonGUoiBWFiwbY1DQDB1PjRSvCM4
VALgxLJY77/LhlUTKF8sNoiseLWuU4/KiBXbfIgzhMUejbCyodGB3185EObul8E5
Dckxrg8WKOWvt5KQ+Yf3Qte6CWXvr+TVG9IkcWTpftevPUwfDyxTXEvkMSM4FADa
KCL5JMNtyszie/svBbZRzqoVIDT+Z4z7BQyRUkby2Y1lsgRQlcVPuTUj4g74HKsC
T44l1aGjG6VCAaQZ+KuJVRzZtVD6r7PhzOSKBWomHEupH8c3fkfSSNDruJG51GKr
wHhL1ZwV27MEx4qNb87bugAgPI7e/T4x5QL+QM2brs4q4TmdMPgLV9+3TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN9xttn55Bz32dlpCRRF+cpCXc/iMB8GA1UdIwQY
MBaAFDv/tgXc4wYN+2bczKiOt9oKx0rxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2Ut
NmIxZDA3MTQ1NTRhLzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2UtNmIxZDA3MTQ1NTRh
LzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbq85uAF/
o2c505cNuJrnWSHugM4vCYHOTCNrSERVfWCmvJ3IyPJofJAQJxFl+JTXFkQi+PaG
TiONfTkBjZEg8at7N53Xr8GDiAY5J6VETB//91ppc2q6q8oMxg3SbcZurcxVVsn5
lWz2xgJKuNYLzcFv4m9i0GSin6dbu5LgmoJDVh879c1LFmJ94BiEwEsSDL+P0Knh
uxBeSNBjhYL3IC49g5xW9zwb0rVoJmQPVqPA8B1xIW+vidM83InVdsNJyrjHw9F5
pxfRW9Dss+4upVPqjguYjFHoIOsnstIzuxcoC6T6XvQsLsqCjsg6oNiZcBUb4AWf
1YqI1jkAJZWRcg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:44 2026 by rpki-client