Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: cZ1YF7hF5CrQ8ZPriV/i6bGp90YHTkHAEk0bcSG9XSA=
Subject key identifier: DE:CE:FC:82:2B:E5:C7:9E:A7:17:F9:FA:3A:FA:5A:1A:FD:99:D8:62
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 019D284E1730721D820E8C738500EEB4A7E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 0C18
Signing time: Thu 26 Mar 2026 04:01:39 +0000
Manifest this update: Thu 26 Mar 2026 04:01:39 +0000
Manifest next update: Fri 27 Mar 2026 04:01:39 +0000
Files and hashes: 1: RsF6wJG_DVoKQM6B-sCzW6WCDW0.roa (hash: qws597tbqP0XDfiuU1TMHHh3nxH1S6tAU3H9xRP9fH8=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: jl/m2h40n41/Vzj7nnSkQEn3fxMhQwAJ7j/+X/43ilw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:17:30:72:1d:82:0e:8c:73:85:00:ee:b4:a7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Mar 26 04:01:39 2026 GMT
Not After : Mar 27 04:01:39 2026 GMT
Subject: CN=decefc822be5c79ea717f9fa3afa5a1afd99d862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9a:6d:91:ec:4a:75:28:28:c1:f6:45:8b:1b:
24:22:50:e6:27:04:a1:d2:2c:67:e5:e3:5e:26:02:
b6:02:2f:e2:c0:4f:c2:1e:7d:a3:76:9e:10:44:d5:
78:89:9c:ff:6c:3d:7c:79:b8:84:17:d2:ec:83:7f:
b5:6d:54:60:de:3f:6f:f0:c1:af:99:7b:5f:28:cb:
e4:65:fb:af:d1:41:85:4c:1d:d5:59:11:a4:33:bc:
82:57:2a:ce:08:c6:5a:7a:e8:52:f2:3a:0d:9b:30:
44:60:b9:d8:3e:91:cf:c8:cf:d3:bb:df:8e:d1:64:
87:3a:79:40:e0:ce:ad:00:02:ca:62:3c:44:58:84:
fb:ce:a0:f0:3c:6c:20:f5:31:c1:a7:e7:98:df:df:
25:b9:ea:e5:55:54:70:5b:56:b2:e8:d3:1a:e4:ee:
e3:ae:ce:16:67:52:5e:54:d1:bc:d4:0f:65:73:c3:
6c:35:ca:a5:61:55:60:02:4d:44:e3:b4:ca:35:4a:
fc:35:d3:0e:4d:89:fc:ca:0d:87:ba:0a:75:d2:d3:
38:9f:63:b1:67:84:ac:87:c2:06:1f:85:6f:00:11:
53:2c:3d:78:48:0b:a1:4c:5e:76:ba:26:e4:66:32:
97:82:31:bf:34:0b:13:d8:dc:26:5a:90:b4:a2:81:
90:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CE:FC:82:2B:E5:C7:9E:A7:17:F9:FA:3A:FA:5A:1A:FD:99:D8:62
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:44:e5:d4:99:f1:d3:03:c2:ed:84:d5:ee:4c:46:f5:d1:2c:
eb:ad:14:09:d0:63:8d:79:8b:46:dc:ad:57:a7:3f:99:0d:18:
8f:1f:8b:b9:ff:b3:0b:09:57:f8:73:c9:db:2c:67:a6:cf:83:
14:7f:96:dc:63:18:02:ce:ce:f5:9b:d3:85:a0:fb:b4:c7:08:
cd:57:07:0f:18:9b:f3:36:05:2d:9d:d9:de:9b:85:48:92:6f:
be:db:ee:16:69:6a:5c:0b:ae:18:73:39:47:3c:23:ea:c3:ad:
26:53:31:2c:87:d4:84:3b:71:0e:85:26:49:bc:79:6b:b8:69:
37:91:96:c4:61:bd:51:43:a2:02:8c:a4:3a:9f:4c:e0:d5:58:
2b:d3:9f:f1:b0:79:c1:7c:8e:25:b9:8a:33:2f:a6:a4:d1:09:
40:57:e7:43:03:75:f9:b9:6b:c7:09:7e:39:eb:a2:d5:18:e3:
1b:93:2e:13:c3:27:44:b3:70:23:69:b2:69:3c:71:5d:0a:16:
08:0f:61:4f:04:35:9c:1a:c8:c6:00:b0:28:45:29:1c:43:3c:
7c:7e:df:60:6f:5b:a0:ae:c4:15:17:a4:fb:a9:be:9e:f4:76:
82:3c:f5:e9:e2:66:a7:1b:bc:c9:b4:eb:74:39:cc:72:26:58:
1c:e9:df:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:56:23 2026 by rpki-client