Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
File: O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json)
Hash identifier: qdfPOWayydv7/BdIBsMN24gP3jp24ZuFU4OhOFWsJAM=
Subject key identifier: 31:79:41:8C:79:76:28:63:7D:7D:22:E3:3F:B0:FC:09:CC:13:03:CE
Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
Certificate issuer: /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Certificate serial: 019D265F850766A712E327EA784F324C068E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
Manifest number: 1811
Signing time: Wed 25 Mar 2026 19:01:27 +0000
Manifest this update: Wed 25 Mar 2026 19:01:27 +0000
Manifest next update: Thu 26 Mar 2026 19:01:27 +0000
Files and hashes: 1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: ekDO6xJrjEKXovijRFcVqySvLW1lKTg9u1I9czBYX7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:85:07:66:a7:12:e3:27:ea:78:4f:32:4c:06:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Validity
Not Before: Mar 25 19:01:27 2026 GMT
Not After : Mar 26 19:01:27 2026 GMT
Subject: CN=3179418c797628637d7d22e33fb0fc09cc1303ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:65:4f:fc:41:d5:56:b6:45:b6:ef:a0:23:a6:
c5:c1:87:54:97:d6:d2:2d:c3:e2:ed:1f:1c:6a:c4:
58:2a:03:b5:cc:20:81:cb:ff:c7:95:3e:67:1f:82:
74:19:b7:2c:56:fa:2a:1d:3d:92:34:8b:58:ae:49:
09:83:c4:41:2c:f4:19:92:c3:ba:9e:f1:d6:92:49:
24:71:ff:65:e1:79:84:98:1a:4c:d6:39:18:a5:5d:
dc:57:0d:49:ec:72:21:4c:ee:2a:92:6f:fe:ad:ce:
17:27:ad:23:b9:3f:11:81:ed:49:fc:c2:88:81:5a:
f9:89:db:ac:61:f4:57:c9:b9:bc:7e:a4:dc:bb:92:
88:eb:5c:d2:1b:66:93:17:24:fc:df:83:d7:a9:9c:
48:3d:3e:40:d3:6b:4f:07:85:9d:3e:57:5b:ac:bd:
8c:06:8c:0b:b7:a2:40:c1:a7:8d:39:91:8f:c7:02:
44:19:bd:71:de:50:aa:81:2c:0e:9d:98:ac:57:a9:
51:00:5f:9f:5b:82:f5:18:7a:a3:25:e3:d3:13:bc:
e2:cc:9d:24:d4:98:55:b8:08:38:ec:b9:e6:a9:13:
7c:67:3e:87:3f:86:c7:24:79:8e:ed:02:ba:05:50:
ec:e8:da:06:9c:6d:e9:70:a6:3c:04:4b:63:b9:fb:
7f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:79:41:8C:79:76:28:63:7D:7D:22:E3:3F:B0:FC:09:CC:13:03:CE
X509v3 Authority Key Identifier:
keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:91:bf:e7:38:82:0f:4d:1a:ba:f2:fb:56:38:04:46:13:68:
fc:c9:ff:6c:db:19:a5:60:6b:6b:c6:a7:1a:1e:3d:44:0c:07:
d3:99:59:78:66:d6:ad:da:41:37:54:26:5f:83:83:61:3e:a0:
33:29:f9:67:d9:fe:db:b7:a6:32:0d:54:a0:15:07:94:8d:d2:
72:9d:b4:f7:95:61:07:10:d4:50:3e:3e:b0:22:13:8c:23:93:
6e:1b:70:95:88:6d:8e:fd:cf:4d:e5:07:25:14:41:23:e5:b8:
00:8e:c5:fd:96:8a:d8:36:55:11:84:69:43:63:7b:10:1b:16:
c5:f6:d4:6a:5b:4d:81:6d:82:59:92:c7:61:b8:bb:49:50:7f:
2c:10:c8:f8:83:07:e5:95:c1:18:ac:e5:d7:23:fa:e3:87:cf:
2b:91:90:9f:d4:db:d7:94:94:93:7b:67:39:99:5b:a5:9a:6f:
bf:e9:c8:c8:90:b1:81:d2:04:3c:79:05:34:ca:97:13:3c:05:
a1:ee:9b:fd:3f:99:f1:52:7e:9d:4c:d3:bc:9b:7f:0f:b5:a9:
8e:62:10:39:66:06:14:e0:5d:2e:de:93:49:a6:84:94:d9:a0:
c9:5f:86:7a:e3:03:1e:e8:b8:4f:c4:cf:a5:7c:bb:59:a0:36:
c6:dd:c9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:45 2026 by rpki-client