Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: FY3W0++jX7dlA1seGTHviMzYbjhlkl3isxBC00VYHxg=
Subject key identifier: 94:DE:75:31:9C:EA:E5:F9:92:90:40:E4:F0:B8:80:04:1B:7E:C1:AA
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 019D27DFA8878F143B0ABF2226CDDC0D700E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 0C34
Signing time: Thu 26 Mar 2026 02:01:02 +0000
Manifest this update: Thu 26 Mar 2026 02:01:02 +0000
Manifest next update: Fri 27 Mar 2026 02:01:02 +0000
Files and hashes: 1: IQ3VIn1iC9RO_pLlQOak5neUqZY.roa (hash: IKGnOs4cAOZb712YaFJ/S+RpUStTEJE1H/K5bUrnGZo=)
2: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: iYQhjl9mUzwsBRoUC2fB6QSjujRf9kpWt78ua4t81f8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a8:87:8f:14:3b:0a:bf:22:26:cd:dc:0d:70:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Mar 26 02:01:02 2026 GMT
Not After : Mar 27 02:01:02 2026 GMT
Subject: CN=94de75319ceae5f9929040e4f0b880041b7ec1aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:dd:b1:32:7c:43:31:08:9b:41:dc:ea:3f:19:
09:b4:4d:e6:5a:b1:6a:3e:d4:13:0b:7b:55:59:76:
5d:e4:97:36:0c:3c:a2:85:32:08:03:01:a9:6b:62:
b9:09:af:61:72:41:dc:a5:f8:a6:6e:0c:91:62:36:
4d:34:e9:09:18:5d:84:4e:a6:ad:2b:7a:ee:db:07:
70:a0:34:ed:a4:89:72:1b:1a:4b:56:b1:a8:1f:13:
25:b4:f5:a7:0e:eb:9e:4c:98:e8:71:e8:1f:91:89:
51:48:23:f7:e1:43:4e:46:88:de:6c:ea:6f:b0:78:
59:4a:58:2b:2e:b7:5e:6e:a1:61:07:91:9f:44:16:
fc:ce:d5:3a:04:c0:ad:99:2e:91:c1:07:3a:4a:c5:
4e:70:3c:ab:48:c2:f3:f7:1f:71:7b:b7:53:21:f3:
30:36:f8:38:e7:ba:b4:17:7d:e7:da:28:1c:62:4a:
c5:3d:17:7d:c3:89:1a:44:4c:7e:e8:27:89:af:a4:
6f:b1:e0:a6:da:de:2e:ed:ac:3e:57:e5:8b:42:9a:
9a:55:51:70:c9:ca:11:f2:be:95:0c:9f:d1:df:7b:
81:34:0a:c9:32:7e:0c:cb:92:7b:6d:88:f3:c5:14:
dc:5f:df:45:40:4d:ec:22:2b:8f:34:fa:66:09:7e:
a6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DE:75:31:9C:EA:E5:F9:92:90:40:E4:F0:B8:80:04:1B:7E:C1:AA
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:7d:2f:30:11:bf:f2:a4:93:ed:ce:eb:e2:db:07:4d:71:0c:
9b:4c:10:99:26:cf:ba:5f:ef:cd:e9:53:45:5b:5f:bd:bc:ab:
a5:a4:23:c9:7a:ad:bf:6f:06:41:e0:54:96:20:91:c2:e9:32:
60:a7:fa:6d:f3:c3:b3:cf:08:47:b5:c2:65:40:26:90:b4:c1:
3a:33:aa:36:9a:38:07:7f:77:ab:95:55:91:3a:47:b7:b1:26:
67:01:ce:a9:7b:d1:98:e6:0c:c0:8a:f5:eb:f3:7c:3b:dc:f9:
f7:52:51:da:2e:17:ac:c0:96:43:fb:6c:37:d5:4d:8d:ee:82:
53:96:d9:54:63:c5:a0:17:6e:61:80:aa:c7:f6:2e:d8:e4:b1:
d5:40:c1:fa:b9:c1:c2:b0:3d:6b:19:65:14:44:78:bf:0e:c3:
c6:61:68:4e:13:02:2c:7f:03:20:75:1f:bc:b7:de:8a:b7:a4:
75:fc:8a:73:63:f7:02:75:f2:48:30:86:a2:4e:a8:d7:75:8e:
56:bb:ef:99:e6:43:e6:cc:ab:99:dd:21:68:ff:f2:f5:2b:49:
a0:03:a8:f1:dc:37:c6:7a:f4:57:34:6f:d9:a1:aa:e8:db:e5:
78:e1:ce:99:89:3d:f2:0e:de:22:3a:72:e6:80:61:b2:16:58:
fc:ce:80:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:58:34 2026 by rpki-client