Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: 12YLcq30AMmMiY1vdTKuhT2I2S49zyb3Cm6Sr0T8FUU=
Subject key identifier: 3F:38:3E:8D:3D:4E:91:1E:4F:6D:A9:15:F3:73:78:05:34:20:92:CE
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 019D273B331E6828731CB66C0A95344DB6EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 0A5A
Signing time: Wed 25 Mar 2026 23:01:24 +0000
Manifest this update: Wed 25 Mar 2026 23:01:24 +0000
Manifest next update: Thu 26 Mar 2026 23:01:24 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: bvPDidIgfLeN6zoli5IhOMoVEXQZxKc+hO4H/Dqad+o=)
2: iG53FLKNGEtI7O_-qbJCuOHpkfY.roa (hash: btGtfmg9m2lBCFlLyRHCIrg7YepxRxneqBtZfQH7n/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:33:1e:68:28:73:1c:b6:6c:0a:95:34:4d:b6:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Mar 25 23:01:24 2026 GMT
Not After : Mar 26 23:01:24 2026 GMT
Subject: CN=3f383e8d3d4e911e4f6da915f3737805342092ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3e:c2:06:a3:82:e0:e6:c6:11:3a:b3:18:d7:
61:5a:20:91:7c:cc:cb:eb:68:72:7d:cd:f4:d6:a9:
da:cf:9a:ac:6c:16:33:ab:b5:3a:b6:e5:05:b0:50:
4b:b5:85:ee:d1:30:4c:62:12:21:62:84:41:a8:33:
3d:d7:26:86:fe:67:63:f7:f3:cd:97:0e:20:58:69:
e5:c7:cb:04:9d:83:e8:ae:15:87:36:a2:f9:64:c9:
34:4f:39:39:99:9c:b5:e7:fe:11:c7:c3:0c:87:ee:
29:c8:47:d6:5e:b4:6d:f1:37:2a:66:e5:85:b0:8f:
d0:db:04:b8:9f:83:35:4e:8f:21:c4:03:a5:c3:49:
ad:f7:cc:f6:51:58:d8:3f:86:19:06:01:0a:1b:6c:
8a:1c:51:a2:a5:61:13:c6:e6:a2:9e:c5:27:76:d8:
cf:5d:86:82:d0:ad:f5:7a:93:17:ce:5e:17:31:89:
8e:43:1d:19:67:bd:ef:a2:99:05:a7:d9:bc:ae:9d:
af:25:aa:49:43:87:29:d8:f4:85:60:79:44:22:8a:
4a:9e:cd:f2:cc:67:77:14:bf:1f:c6:bb:48:42:09:
42:af:cd:ef:dd:b4:3e:2a:45:5d:28:88:35:89:46:
d2:50:1f:84:51:6f:48:0f:b0:43:b4:78:5f:e8:66:
0b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:38:3E:8D:3D:4E:91:1E:4F:6D:A9:15:F3:73:78:05:34:20:92:CE
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e2:42:0d:e1:d2:d9:56:c5:42:9d:e5:78:38:7e:79:25:cc:
e9:72:69:9a:55:4d:de:7c:c5:cb:59:cc:be:d6:7e:2a:cb:a0:
e5:85:bb:f5:7a:21:50:23:0b:3e:46:c3:f5:50:e0:b0:fa:11:
16:2e:05:6d:78:15:ab:f4:05:cc:a4:74:bb:ad:5c:61:7c:7e:
eb:1c:ac:14:1d:e5:81:58:1a:96:82:f1:d5:1c:51:48:53:44:
01:6c:59:5a:9f:b3:a6:7f:0e:8d:c1:a8:5a:ff:d1:be:8d:80:
73:d9:2b:b0:4d:86:d3:c8:bd:35:52:0f:f5:12:5c:6b:d5:a8:
b6:13:b1:7a:41:b0:fe:d5:88:85:21:8e:dd:cb:fa:31:6c:ea:
a1:89:e8:c7:1d:ae:ce:84:67:e3:50:87:90:21:43:a0:3e:87:
a4:14:20:71:5f:74:07:f9:39:83:dc:37:25:b2:7b:9f:64:8f:
34:62:46:5b:f4:89:c3:99:d4:81:98:fc:d0:43:07:8d:70:a5:
05:c7:0d:0f:35:99:a8:2d:ec:f9:d6:95:41:96:d5:28:0d:56:
8b:e3:7d:d0:1d:f8:f3:30:99:8e:c7:ab:41:39:72:98:52:2f:
5b:f7:8d:b7:82:8f:e8:8f:d3:92:6c:45:66:b8:14:47:1b:dd:
64:62:24:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:10 2026 by rpki-client