Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: BuaK8sVKBp5qrrlqPAg5HlMluvrj8VqQ7evcFPCXpcU=
Subject key identifier: DF:05:38:4A:FB:D7:61:4B:DC:41:A4:7B:FC:88:C1:EA:EF:13:EF:4B
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 019D29CE971DBFD672CD549ABD78101235C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0D55
Signing time: Thu 26 Mar 2026 11:01:38 +0000
Manifest this update: Thu 26 Mar 2026 11:01:38 +0000
Manifest next update: Fri 27 Mar 2026 11:01:38 +0000
Files and hashes: 1: IH423EjGhjGEYUhA9Vkl_n9zB8E.roa (hash: JSP/u1wkfocZw2cQtJFX46pxKJk7V7jUMeaOiY9+bXo=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: 8UvdIZJN+7La4Dp0UdARuXt8vjqEeZfUUcqiA65NHQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:97:1d:bf:d6:72:cd:54:9a:bd:78:10:12:35:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Mar 26 11:01:38 2026 GMT
Not After : Mar 27 11:01:38 2026 GMT
Subject: CN=df05384afbd7614bdc41a47bfc88c1eaef13ef4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:62:f9:7b:49:1d:f4:0f:7d:bf:6a:ca:16:
7a:75:6a:e0:ef:cb:a4:e3:c0:52:85:4a:38:bb:89:
e8:99:83:2d:6d:b3:57:05:6d:1e:d2:26:11:8e:e3:
f0:53:8f:28:fb:15:76:7c:c7:2a:74:e4:62:3f:28:
87:20:56:e2:76:4d:ee:8c:65:77:82:f0:47:4e:51:
39:54:15:95:20:78:c3:03:37:ae:46:a4:17:64:8a:
37:46:5a:98:89:02:c7:32:1c:35:cf:17:9f:3b:05:
14:30:de:5b:a3:87:30:59:08:80:6f:10:2a:2e:a0:
f2:db:89:8c:6d:5d:fb:0a:5c:7f:01:a3:39:b8:2f:
f6:b2:92:23:95:92:6b:f0:37:eb:2d:90:a9:cf:9b:
a6:22:30:14:18:f4:c4:ef:65:b0:4d:66:80:ed:34:
48:64:2c:36:67:c4:c6:4f:a2:23:15:36:fe:7c:b4:
b2:e1:12:6d:9a:c8:58:d0:39:6a:1b:6c:15:08:79:
04:1c:50:40:97:60:92:5a:7b:06:98:23:a1:73:47:
b8:95:a2:ec:11:e3:a1:ba:7a:f6:97:39:79:ae:d2:
2a:d4:b5:cd:b2:00:dc:3a:33:14:74:34:2c:31:13:
81:b3:5e:7a:e1:0b:79:74:88:c2:69:b0:c5:46:bc:
74:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:05:38:4A:FB:D7:61:4B:DC:41:A4:7B:FC:88:C1:EA:EF:13:EF:4B
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:92:ce:fc:c1:0f:bd:6d:dc:4a:e3:5e:fb:fb:2f:bb:38:53:
6c:87:fb:30:62:58:af:91:0e:60:65:8b:5e:11:1e:49:80:b3:
c4:e0:bd:36:c2:5f:21:f8:74:0d:23:09:e4:09:0e:c4:04:40:
e1:19:e8:07:23:23:59:b5:d5:6e:f6:6b:69:5c:5c:4e:0d:e2:
ce:d7:d3:32:f1:bf:98:e4:ae:36:44:0a:32:45:2f:46:15:f0:
66:1e:20:bf:71:99:10:25:a1:15:88:4f:79:c9:dd:52:47:c7:
71:42:85:3a:c7:12:be:5d:99:25:5b:45:98:e3:ce:0f:51:b2:
ca:a5:03:48:2e:db:9b:0f:97:f3:fc:1d:4f:17:dc:d2:54:f2:
93:5d:11:c7:e3:2c:b7:a5:87:b4:26:83:50:f0:70:16:91:45:
55:26:51:91:70:de:f7:93:62:7c:b7:48:8a:0b:4b:ba:79:7a:
d1:51:79:b2:83:b1:0b:07:9e:e1:c0:66:63:4b:97:4d:98:2b:
de:46:df:a3:8e:aa:09:e3:4c:40:88:ff:7f:6c:71:22:77:ec:
41:df:34:87:15:99:ec:3f:42:69:5a:44:f1:3c:ac:56:92:de:
f1:d0:53:e2:d7:2c:e1:4c:32:ea:93:8b:af:39:a2:c2:54:39:
3b:fc:f1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:38:40 2026 by rpki-client