Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft
File: ov7n60DFpFQ5UC658zG-_qxPjQw.mft (raw, json)
Hash identifier: 8hQadTZmnD1t8qKuLyUOrCk26lQYfM7HaHK3tkRTkG8=
Subject key identifier: 9B:73:10:3A:1E:8C:F0:C7:7F:F8:36:22:B8:81:33:47:A0:5F:2C:33
Authority key identifier: A2:FE:E7:EB:40:C5:A4:54:39:50:2E:B9:F3:31:BE:FE:AC:4F:8D:0C
Certificate issuer: /CN=a2fee7eb40c5a45439502eb9f331befeac4f8d0c
Certificate serial: 019D265F0ECC4F41371EF48B503D5DA404F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft
Manifest number: 01A1
Signing time: Wed 25 Mar 2026 19:00:56 +0000
Manifest this update: Wed 25 Mar 2026 19:00:56 +0000
Manifest next update: Thu 26 Mar 2026 19:00:56 +0000
Files and hashes: 1: iJct27IBYh-gAfl6eu5h4aNgM3U.roa (hash: 6ohSO1sfqYBcO+vPtXlYywNN/BR02DeUS7d8lZX/S7c=)
2: ov7n60DFpFQ5UC658zG-_qxPjQw.crl (hash: e4jekykilGh+7DMAklH/vS7Pfxr5d6NfcxHv18HtLwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:0e:cc:4f:41:37:1e:f4:8b:50:3d:5d:a4:04:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2fee7eb40c5a45439502eb9f331befeac4f8d0c
Validity
Not Before: Mar 25 19:00:56 2026 GMT
Not After : Mar 26 19:00:56 2026 GMT
Subject: CN=9b73103a1e8cf0c77ff83622b8813347a05f2c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d1:5f:65:87:d0:f3:e8:53:e4:38:14:28:5c:
df:6e:23:4a:83:3d:f8:3f:0c:23:a3:6c:b4:b5:26:
30:90:52:dc:2b:00:38:b0:31:6f:c4:cc:2f:fb:b9:
86:b8:34:fb:f0:ed:89:66:71:1c:04:13:b6:0a:be:
d5:62:db:ac:23:bf:e7:e4:bc:e9:ea:89:5f:90:4b:
86:35:45:f1:1f:ce:3e:93:99:3d:1f:23:0d:52:71:
eb:6e:f5:ac:83:5a:a8:b1:79:8d:e3:1f:a3:1b:27:
da:26:e4:56:95:15:d3:ce:f9:58:bf:70:ef:1a:6b:
d5:bf:a3:b1:52:6d:86:4b:15:d9:19:5b:84:bb:e1:
2a:a2:00:f6:10:55:a2:1b:af:ec:f8:af:da:50:b9:
cd:9a:65:b2:54:ff:b8:17:58:be:11:a6:36:fd:38:
d0:3f:b8:28:fb:16:f1:46:c9:f2:f4:0a:1c:1c:2f:
95:55:92:89:db:10:8a:97:b3:6f:a9:eb:5e:55:a0:
3b:2a:72:84:a9:41:c6:fa:67:e6:2d:b1:eb:8c:94:
10:9c:c5:87:99:85:21:35:5b:8e:82:05:17:ec:73:
00:5e:71:fa:22:f6:08:15:d3:54:38:72:79:ed:be:
70:08:aa:b6:ad:26:20:9d:b2:2d:44:53:cc:2f:c9:
6c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:73:10:3A:1E:8C:F0:C7:7F:F8:36:22:B8:81:33:47:A0:5F:2C:33
X509v3 Authority Key Identifier:
keyid:A2:FE:E7:EB:40:C5:A4:54:39:50:2E:B9:F3:31:BE:FE:AC:4F:8D:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:d6:8a:93:04:57:8a:eb:49:8d:7f:f3:0d:8f:ee:18:4a:19:
e3:78:5e:30:ac:bd:4c:97:d6:51:08:3d:04:0e:17:61:33:8f:
0a:b5:b7:1d:1e:c3:b0:0a:2e:7d:c3:12:c5:e2:26:fe:eb:10:
6e:76:f8:49:db:23:bd:0b:a7:82:73:c7:74:f7:f3:8d:a3:f7:
aa:58:e3:5e:40:e3:e3:7b:5f:49:b4:15:05:2c:9b:6a:bd:dd:
dc:38:90:a9:6d:81:51:71:8c:02:24:f2:59:40:21:bc:6e:aa:
ce:18:80:e8:4e:39:9a:23:3b:5a:74:4f:af:67:ea:52:8f:1b:
67:66:7f:28:1c:e6:53:bb:c2:fa:d5:fb:30:e5:f7:b6:49:a2:
33:96:b0:10:be:b6:16:32:45:ae:63:e3:91:a9:66:d6:7e:4a:
1c:e7:33:8f:7b:cb:b7:3b:eb:49:8d:3d:e4:00:b4:25:ea:25:
8d:94:f5:f5:45:ce:71:08:38:cd:83:15:74:52:d1:62:9a:69:
05:0f:d4:93:08:24:09:68:b5:13:44:c0:74:21:71:e7:53:2b:
3d:d0:c7:4f:0c:3e:16:8e:21:88:6b:74:c2:95:26:de:40:3a:
0a:07:66:a1:b3:a5:ba:b8:f7:ad:ab:32:e4:47:be:be:39:83:
ff:cb:76:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:46 2026 by rpki-client