Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
File: OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft (raw, json)
Hash identifier: mYOT3e5TMl4ED+653R8gzbhW3tcHRh3Bb+Uf+7AbYCg=
Subject key identifier: 0F:75:BB:EA:AA:2F:73:87:9D:6D:EE:9B:3E:5F:CE:DC:20:28:C7:E0
Authority key identifier: 39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
Certificate issuer: /CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Certificate serial: 019D390A0711B5FAA9181BE9FE8F3C40D91F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
Manifest number: 0654
Signing time: Sun 29 Mar 2026 10:00:51 +0000
Manifest this update: Sun 29 Mar 2026 10:00:51 +0000
Manifest next update: Mon 30 Mar 2026 10:00:51 +0000
Files and hashes: 1: 03j6ust2FRNKlpnD77gFA2A2Nm8.roa (hash: c/t/jvNYvALud0vqh9dV+CjRih2M2dPRGS927xjV27w=)
2: OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl (hash: F/r3jrd7UbGDCyukRNxv3VRHdxjAeGY/X66E3oZZIqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:07:11:b5:fa:a9:18:1b:e9:fe:8f:3c:40:d9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Validity
Not Before: Mar 29 10:00:51 2026 GMT
Not After : Mar 30 10:00:51 2026 GMT
Subject: CN=0f75bbeaaa2f73879d6dee9b3e5fcedc2028c7e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:6c:75:6d:72:d3:f1:62:ca:8a:48:69:aa:
8c:74:32:a5:45:e1:5b:5d:21:87:3b:60:1b:7e:05:
bd:a6:d6:3f:24:52:cd:6e:0e:89:52:74:5a:e8:95:
c6:82:5c:fd:21:0f:b0:86:4e:7f:82:dd:91:4f:98:
bd:e4:fb:1a:4e:19:6e:9d:d3:9f:00:c8:48:7b:30:
f4:e3:bb:fb:a8:d9:ee:23:45:4b:ca:3e:60:31:37:
33:2f:f1:c9:8b:90:3b:bc:f2:2d:8e:12:bc:db:d1:
b8:9f:93:f0:60:e7:79:61:cf:cc:a2:3e:81:a1:ab:
84:f3:ac:9d:09:08:12:92:7b:9d:d9:c7:5f:a4:7d:
9b:b0:d5:81:60:a7:42:1a:7d:9b:9f:92:df:05:a3:
bd:94:ed:01:91:1b:a5:0b:c5:f6:5b:d9:15:00:c1:
58:f5:56:0e:c3:13:65:41:b4:aa:48:48:83:21:da:
09:ae:fc:dd:d4:ae:9f:a9:d9:f9:3f:30:ab:58:6a:
b0:7a:d3:28:13:75:0b:c4:5b:4b:84:ed:22:23:c9:
65:bf:a9:dd:d2:95:df:63:91:21:dc:18:6b:10:bf:
4a:61:f0:f1:06:61:cf:c1:fb:26:2e:ad:2f:3c:e0:
e3:37:44:ce:d3:3e:6e:1b:cf:dc:62:14:69:35:d7:
d3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:75:BB:EA:AA:2F:73:87:9D:6D:EE:9B:3E:5F:CE:DC:20:28:C7:E0
X509v3 Authority Key Identifier:
keyid:39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f7:41:15:c1:4b:3c:c4:b9:eb:25:f0:5c:7a:35:a9:48:9a:
20:ab:da:f6:78:96:da:1a:44:1f:3d:36:d1:e7:80:0c:f7:ac:
7f:e7:9d:fa:57:9f:f3:e5:7b:55:25:fb:60:7c:b0:e6:19:b2:
d6:17:2a:d9:98:b4:cf:3d:49:77:98:4d:2d:1e:3d:5b:7a:de:
04:37:10:20:58:69:04:62:e8:21:32:c1:3a:4c:89:2f:70:90:
48:5a:00:f9:ea:e1:f0:c0:a7:ff:ce:41:f1:b3:19:bf:81:f7:
2e:07:f8:0f:7f:b9:b5:a5:94:6a:c9:54:d0:db:12:3f:64:ea:
2f:c7:d7:4b:05:dd:8c:d2:3f:92:77:90:9a:13:b0:df:b5:e6:
fb:f5:24:44:70:c1:ba:ca:a2:91:b3:f9:5d:e5:fb:75:04:a0:
9b:ba:e6:9f:f9:8b:e0:e2:7a:b4:e5:81:db:8f:c0:3e:be:b7:
32:df:22:26:2c:f1:22:1d:13:af:5e:fe:c9:4d:e9:ea:38:6d:
cb:3d:be:39:01:87:c8:ec:b2:ef:7c:58:a5:e8:b8:27:30:86:
58:eb:6d:f9:fb:8e:5b:25:72:35:fc:f0:b4:0b:69:7f:84:9f:
db:9b:df:c1:c0:cf:46:9c:3c:de:b2:d7:e2:ad:d7:44:6c:4d:
55:75:ac:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:06 2026 by rpki-client