Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: 5h8AVQJYcDyg+ERkrBdjTmLtB06WmzTLo8Lo9++N7m0=
Subject key identifier: 1A:5A:EE:D7:E0:BA:A2:AE:F0:AB:A5:20:27:C5:FD:4F:2F:52:D7:6A
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 019D2583E120371DA65AE5397F5BD8834871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 12D9
Signing time: Wed 25 Mar 2026 15:01:32 +0000
Manifest this update: Wed 25 Mar 2026 15:01:32 +0000
Manifest next update: Thu 26 Mar 2026 15:01:32 +0000
Files and hashes: 1: 0U-cjSx-vbFV-NT594PYA8nArLg.roa (hash: HUb+G3KOFlBU9/9PngolZEI4Hx103lYxj0RKTkVEA0w=)
2: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: XzPdpAFluFab3eNUzFfcQRJ0PnnxGP6D8xJBLfDr7Y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:e1:20:37:1d:a6:5a:e5:39:7f:5b:d8:83:48:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Mar 25 15:01:32 2026 GMT
Not After : Mar 26 15:01:32 2026 GMT
Subject: CN=1a5aeed7e0baa2aef0aba52027c5fd4f2f52d76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e8:a4:19:28:83:b1:ab:77:89:67:24:68:5d:
b5:e9:a8:e1:46:40:d7:ad:cb:e2:37:23:20:23:24:
1b:83:90:8b:16:b2:46:9f:96:e4:1a:08:97:73:9e:
54:d5:16:12:1e:c3:9a:1e:81:4b:ad:48:60:da:fd:
1a:de:c0:c6:7e:5e:73:f0:ac:6f:4e:51:7d:eb:3f:
94:50:f8:51:09:8a:81:e7:55:8f:93:a9:13:08:5b:
8d:d2:61:dc:83:18:c3:c0:a5:12:69:b3:b7:7a:30:
c2:6f:ae:8d:39:85:23:9f:8e:ca:ee:b4:37:2d:81:
e7:93:23:1d:9e:3b:94:83:dc:ed:8f:de:82:e1:47:
7c:99:cc:4f:cc:6b:71:b1:b2:6c:d2:66:b6:95:f8:
06:8b:98:9f:c2:b1:d0:cc:e8:db:ec:11:c6:57:22:
21:b1:a6:8b:34:ae:55:b8:55:ee:da:85:61:d4:e1:
a7:be:53:35:f2:da:6b:09:ef:2c:7d:26:28:c8:f1:
26:ac:d6:2b:55:50:8d:2b:4a:f6:dd:65:e9:da:b8:
22:a3:eb:fc:1b:05:ba:ee:1d:fb:6f:eb:40:a2:8d:
a9:ce:39:2b:a5:2c:5b:fb:76:15:d1:a5:3f:a3:86:
60:8f:26:e0:c4:49:2d:2c:d9:ec:d8:88:9c:33:65:
a2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5A:EE:D7:E0:BA:A2:AE:F0:AB:A5:20:27:C5:FD:4F:2F:52:D7:6A
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:4a:2f:48:f8:f6:96:15:68:bc:0c:46:cf:c9:31:da:77:87:
a3:89:f4:37:26:12:9e:c3:38:c4:f8:1d:b3:97:76:e5:90:3b:
cc:d2:45:b8:3a:be:be:46:17:74:01:83:5a:a6:10:73:05:12:
bf:51:44:65:1b:fe:b4:f8:b4:84:68:57:07:46:77:a2:6d:54:
e9:6c:54:19:8e:6e:7b:ab:ca:f0:4c:bf:a0:4c:78:2e:de:3c:
a9:b8:e4:6f:f8:d6:4c:a5:67:57:4d:ef:f5:ac:2c:23:22:55:
46:da:72:89:64:74:f6:93:34:c1:4b:6c:a2:52:02:6f:54:29:
13:d7:51:61:ff:30:66:6f:ef:e7:13:e8:d6:9a:45:7e:65:4f:
c0:20:aa:6a:a0:f2:68:f4:8d:cf:ea:aa:2a:2e:0d:96:20:5a:
36:96:e1:7a:3c:23:c1:3c:29:4d:23:08:56:84:90:8e:9a:f1:
84:51:89:50:62:06:8b:66:19:21:f5:9a:68:02:c6:5f:4e:02:
26:17:e0:1f:be:7d:be:a7:87:14:3e:16:ad:94:58:75:bd:b5:
34:0c:fd:db:d2:b7:28:6f:37:4e:60:27:69:b8:b5:1c:2c:3d:
6e:56:ff:54:e1:4f:0c:82:1f:ad:5e:8e:10:5e:da:09:59:d1:
bb:e1:d1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:39 2026 by rpki-client