Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: 6OBgVXIgvbEkxku/Wu4Zj9B8cEquBH21X8w0kcC/jxE=
Subject key identifier: 1E:01:68:A2:D8:C4:3A:3E:18:F8:34:C5:C3:8E:9D:94:1F:F9:42:49
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019D265EE5B764D92DD2D378FBBD77CC816D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 1344
Signing time: Wed 25 Mar 2026 19:00:46 +0000
Manifest this update: Wed 25 Mar 2026 19:00:46 +0000
Manifest next update: Thu 26 Mar 2026 19:00:46 +0000
Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: AN3tlUb23nOHx5GUW10z4H21fR7JpdozOOiVaCO1T80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:e5:b7:64:d9:2d:d2:d3:78:fb:bd:77:cc:81:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Mar 25 19:00:46 2026 GMT
Not After : Mar 26 19:00:46 2026 GMT
Subject: CN=1e0168a2d8c43a3e18f834c5c38e9d941ff94249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:68:b2:2c:6b:fe:3c:e9:c2:25:24:69:79:0c:
0e:37:58:70:12:63:eb:b2:07:03:c4:3a:17:14:58:
76:20:89:2d:8f:d4:11:af:23:4b:1e:49:03:72:a5:
21:71:ea:93:18:9e:34:fa:f4:fe:da:be:b6:d5:9c:
93:d7:83:25:f5:c3:2e:be:65:07:ee:b2:26:50:37:
13:1e:01:a8:3a:9e:78:c7:a9:af:8d:13:8b:a2:b7:
95:ad:6f:4a:10:3a:b1:41:34:57:bd:cc:e9:fd:80:
7b:30:69:4d:a6:e5:ca:8e:02:8f:23:f3:a0:40:38:
8d:9a:cb:e7:03:9a:db:84:62:92:21:e1:dc:4e:03:
5f:2f:7b:9f:ac:cb:6f:3b:08:22:df:13:c2:16:bd:
c8:67:e3:02:e7:e2:3d:c7:46:57:c7:e9:aa:09:52:
a6:a3:a8:2b:4a:69:c0:03:8c:2b:39:47:13:49:03:
78:97:06:1b:14:c3:48:1c:d3:b1:78:e4:06:7b:74:
f3:d2:63:f3:8b:6f:32:00:96:80:6b:be:13:73:f5:
ba:92:e5:c6:e4:8a:a9:b1:42:67:d6:d8:2c:97:e8:
62:b0:82:db:57:75:f9:bc:db:ed:42:ed:6e:a9:72:
4d:51:81:5c:a6:5f:9e:17:40:5d:8d:8c:51:9e:bd:
45:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:01:68:A2:D8:C4:3A:3E:18:F8:34:C5:C3:8E:9D:94:1F:F9:42:49
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:0a:31:ef:cb:af:0b:e9:f3:bc:07:7c:2e:c3:7d:a9:b9:f2:
56:c7:fd:74:ff:dd:6a:88:c8:6a:2a:aa:cf:63:ed:98:f9:bf:
c9:73:02:9d:57:7a:aa:50:e8:47:0b:cb:ab:b1:39:c2:1d:9c:
32:ad:9f:77:35:6b:37:77:18:c4:7e:12:65:53:bd:ff:d4:cb:
ff:90:01:06:85:d5:0e:32:95:f1:f0:a9:8e:b7:0d:b0:c3:2f:
c9:5d:c0:32:35:c2:f0:e2:39:bc:05:c0:93:5c:2b:6b:fb:99:
bf:a2:2d:50:36:da:24:28:f2:b1:63:e2:33:9b:39:d1:c7:42:
63:ed:df:52:c6:07:7a:5f:54:c8:d8:fa:1a:02:0d:42:14:25:
c9:79:df:a5:55:c5:d9:e2:e3:35:b1:05:74:61:19:5c:2d:2b:
c5:e5:74:b4:0f:4b:b6:4b:6f:ce:b7:ba:24:b0:09:53:2b:0a:
74:ca:c9:32:18:3c:be:af:12:9b:d6:3b:84:ba:2b:4e:34:ca:
44:1a:ea:74:e9:9a:3c:67:3c:3d:5c:e6:fa:7e:4a:0e:8f:a8:
df:8d:ad:2c:3a:f1:e5:0d:f0:e5:6f:3e:48:90:55:63:ce:db:
db:28:ba:7f:8a:9a:35:8a:b0:38:c0:ec:44:cf:8b:43:07:1d:
89:fa:77:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:40:25 2026 by rpki-client