Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: if8CQbltbvxW9FYn3qG6MvjkLl/ZS8Zetly6lx+u4iQ=
Subject key identifier: 81:12:01:74:D8:07:FC:BC:03:54:FA:B5:F2:18:0D:C7:30:91:59:41
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 019D28F2AE1DB979B38E6A378FDEEA40E6D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 0522
Signing time: Thu 26 Mar 2026 07:01:26 +0000
Manifest this update: Thu 26 Mar 2026 07:01:26 +0000
Manifest next update: Fri 27 Mar 2026 07:01:26 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: KMVq49L71BFYs5sUyCxYlmKY5PF4/zzohuUA6ajiXuo=)
2: VbL2QWZ9Kg8L1pE36SvfZYyr8Ts.roa (hash: sfB+nZS7Puz64duDQmVXVvH/Ydql31OyVDJAMGHxmwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:ae:1d:b9:79:b3:8e:6a:37:8f:de:ea:40:e6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: Mar 26 07:01:26 2026 GMT
Not After : Mar 27 07:01:26 2026 GMT
Subject: CN=81120174d807fcbc0354fab5f2180dc730915941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:b7:cf:49:ea:f1:43:59:16:e9:c4:ca:b1:
79:ed:47:e0:dc:c1:4a:a4:c6:fc:77:d5:93:d5:ac:
9d:07:db:f4:f5:02:e7:80:93:9e:7c:9b:09:11:88:
32:46:04:1f:3c:2b:a7:b8:eb:0a:df:d9:f2:02:b9:
f6:cd:9f:7d:55:8b:b2:1f:8f:21:8e:ed:a9:fe:11:
02:88:1d:e3:97:a3:9f:4c:28:72:8e:7f:4d:94:f5:
29:6e:39:bf:c6:ac:f3:ab:42:e0:c9:f1:ae:f2:86:
b8:0b:8c:f7:69:58:85:9d:ad:a1:bc:23:7b:4d:98:
47:b6:aa:ba:39:09:32:44:3a:9a:9a:e7:b8:9f:8a:
34:ef:fc:92:17:cc:df:64:91:47:ec:91:a5:48:3c:
56:06:2c:fe:63:f4:8b:e0:64:fe:18:76:cf:c4:9f:
d7:71:08:b8:90:46:3f:27:eb:25:aa:c1:c1:b1:b7:
ab:80:21:3d:4d:fd:fe:4a:6a:6e:e8:28:af:4b:6e:
e0:7d:62:e9:74:cc:4f:d9:2a:5b:61:2f:13:12:bb:
62:1d:c9:65:4c:4b:3b:69:cb:17:ee:72:6d:e0:20:
34:e2:df:34:81:3f:f8:e1:fd:90:45:7c:66:f4:03:
81:c8:0a:2e:37:c7:f7:96:79:44:12:a3:d0:7e:e4:
7e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:12:01:74:D8:07:FC:BC:03:54:FA:B5:F2:18:0D:C7:30:91:59:41
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:7f:51:ee:4e:9b:9e:b8:ba:53:82:48:1d:88:a5:2b:87:a8:
62:50:20:94:73:77:d9:51:9a:47:a5:2d:4f:8a:c2:2b:0c:28:
48:87:1a:0e:da:6a:50:f7:b2:3b:20:f6:33:7d:10:1a:86:80:
17:6a:55:ac:88:d9:77:af:90:b1:9c:68:08:01:63:1e:26:b0:
3a:dd:ab:8b:52:e1:81:72:70:fa:1f:62:dc:c9:bd:8e:8d:2e:
57:f5:6b:d8:f8:a4:fd:d6:7b:bd:2f:2b:cc:cf:30:23:df:3c:
0e:d0:9e:7d:c2:13:3d:f9:cd:9f:8b:da:06:97:a0:83:29:07:
21:28:36:f7:5c:5e:3e:d4:90:d1:23:ef:7c:bc:61:35:23:6e:
77:a1:03:72:4f:18:46:e7:a5:98:40:aa:79:37:85:42:20:1b:
46:4e:51:af:27:2d:72:53:8f:b9:1c:e4:ab:87:90:87:b1:81:
90:1c:83:f2:b5:dd:fc:6c:74:9b:58:66:28:23:56:e7:f5:a8:
81:93:db:36:9d:94:0e:a9:06:9f:4d:d6:e2:f4:71:e3:fd:7a:
14:6d:03:da:62:a5:64:7d:b2:16:16:60:1c:6f:d8:a8:89:62:
91:36:b3:cc:3a:8c:47:6c:e2:4f:e5:b3:af:63:85:1a:7a:5b:
ea:15:1d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:59:19 2026 by rpki-client