Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
File: o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft (raw, json)
Hash identifier: +p1Fr8aYPX5acgFhtzq9lsLIvvFHRWcGxBEXBK+Jiw8=
Subject key identifier: 27:33:D0:15:F8:A8:F1:A0:3E:67:A8:BD:0C:3D:02:3D:56:52:9A:79
Authority key identifier: A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
Certificate issuer: /CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Certificate serial: 019D3941001FF8C047665B4A15FEE8003B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
Manifest number: 09EE
Signing time: Sun 29 Mar 2026 11:00:54 +0000
Manifest this update: Sun 29 Mar 2026 11:00:54 +0000
Manifest next update: Mon 30 Mar 2026 11:00:54 +0000
Files and hashes: 1: TAHQBaXvNoEqJwVwuxNKlcHwMBY.roa (hash: 1l7RMaksGMvJALttYQHPmRPplRyW7anaFOwZ35pYzSw=)
2: o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl (hash: ZTwmoJkeYuVUJA7NOANS2bOtJrwkyyW5eCXZJh5M/FE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:00:1f:f8:c0:47:66:5b:4a:15:fe:e8:00:3b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Validity
Not Before: Mar 29 11:00:54 2026 GMT
Not After : Mar 30 11:00:54 2026 GMT
Subject: CN=2733d015f8a8f1a03e67a8bd0c3d023d56529a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fc:0d:da:34:f1:c0:a2:af:06:c5:56:83:78:
f9:cf:d2:ee:64:ba:c8:4c:67:e3:13:83:ac:0c:d0:
3c:33:23:9a:05:38:a0:22:f6:d0:87:36:44:a6:33:
cc:e7:ee:7b:39:90:fa:f5:85:86:23:24:7d:42:fb:
e4:d0:c6:aa:04:9a:dc:bb:dd:3c:bb:50:4c:f4:a4:
51:5b:d9:b3:f1:1c:e8:d0:a3:5c:ad:6e:08:65:6c:
98:bf:fe:85:43:8b:63:57:d0:52:f1:6a:4e:5b:02:
61:cc:33:0e:84:4a:79:ce:68:60:3b:10:92:bf:3c:
a7:d7:f6:96:5a:22:c9:cc:f8:23:88:93:2b:de:a6:
e8:cd:d9:ea:ca:2c:2f:d0:f7:82:49:e2:d4:58:90:
c7:ef:41:05:49:9b:9f:e8:e7:b7:9b:0e:bc:96:d7:
96:a3:d9:c7:fc:5c:9d:45:00:bf:3e:1a:a2:fe:22:
35:34:44:ac:6c:37:dd:ce:b5:12:5b:7f:dd:72:9e:
80:79:a9:19:6e:4d:dc:17:0a:7a:f6:9a:94:60:20:
c0:bc:10:04:8e:f9:ab:45:fe:d8:ec:2e:de:c7:f7:
26:b9:a1:f4:a3:fa:b6:02:89:ed:2c:33:82:e5:f1:
10:33:1d:b3:44:86:51:3b:c9:0f:7e:7b:d7:2e:a5:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:33:D0:15:F8:A8:F1:A0:3E:67:A8:BD:0C:3D:02:3D:56:52:9A:79
X509v3 Authority Key Identifier:
keyid:A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:a1:b6:11:3e:8b:fd:78:73:f8:d1:99:9c:65:b8:e2:b2:30:
35:b7:73:96:c1:b7:18:82:c4:de:30:3b:f3:ae:2e:48:b5:25:
2d:26:8d:c0:5f:33:bf:5e:30:7f:46:db:2e:41:ee:83:79:49:
b0:0f:1c:0b:95:c4:e7:2a:f6:7e:59:1c:58:1f:a0:12:d9:76:
02:ac:0a:79:91:07:2f:e4:0e:a9:b6:7f:1f:ca:b0:94:fb:73:
18:78:3f:e4:db:a2:2d:79:63:84:6b:bc:a3:8d:67:5e:d0:cd:
a2:9a:91:59:2d:80:9c:f5:2b:0e:5b:07:68:75:a6:ac:e5:65:
a7:de:44:09:a8:df:fe:b6:fa:b2:3f:e6:cd:c3:e4:15:71:1b:
6a:d2:2a:17:d1:90:6c:92:82:a6:25:44:fe:cc:19:6a:4c:89:
17:0c:26:d2:e1:87:f6:af:a7:ff:e5:60:01:b9:39:a0:4f:d6:
92:a1:6b:4d:84:af:b7:f9:5c:c9:00:c0:4e:48:ba:a0:7f:55:
60:71:9f:35:2f:78:0b:da:f6:dc:43:d1:46:92:8a:ec:5b:a3:
78:30:37:b3:f6:17:df:f2:36:8a:e7:10:c2:a6:ec:b2:6e:c3:
54:7b:0d:e7:0d:c4:24:28:36:ba:e5:91:63:9d:33:66:40:c9:
f9:20:ac:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:40:30 2026 by rpki-client