Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: o3hpH+RnrlW7Z4K4dKD5WF8WVBcKfRqPZjQu1N2zFpc=
Subject key identifier: 87:C4:E7:93:F1:7D:5C:FE:8A:57:77:A7:FA:78:1A:C7:00:8A:E9:02
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 019D26283AEFFA11A45C7C3D0E0DB29D79C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 12AA
Signing time: Wed 25 Mar 2026 18:01:03 +0000
Manifest this update: Wed 25 Mar 2026 18:01:03 +0000
Manifest next update: Thu 26 Mar 2026 18:01:03 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: J0915OMANHlCNrazcw1+JK2Eqj02Qwy+JPAXuFC8fyg=)
2: Wsump-ruMTHeCIUMQYq9YHizRHM.roa (hash: PRDR807Wy2QehMf95nyisTATR9YQb1obROcnB9juLnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:3a:ef:fa:11:a4:5c:7c:3d:0e:0d:b2:9d:79:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Mar 25 18:01:03 2026 GMT
Not After : Mar 26 18:01:03 2026 GMT
Subject: CN=87c4e793f17d5cfe8a5777a7fa781ac7008ae902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:35:8f:16:f8:0f:4b:13:12:61:85:56:8c:b3:
82:a1:2f:d1:23:82:43:6a:cc:4b:6c:50:8e:d8:7e:
f4:91:4a:ef:23:b2:55:8b:79:ed:48:67:35:90:a6:
c4:22:70:c2:45:91:b7:e2:f5:df:ee:0a:22:cf:01:
3c:d0:61:dd:b2:20:5c:c9:4f:da:24:c6:7e:7f:a4:
32:88:f4:7a:96:9b:c3:6a:f4:35:de:59:bb:e7:15:
95:67:88:95:51:4d:02:0b:9b:a9:2f:38:73:23:f6:
80:fe:15:78:b8:c2:7b:3d:86:8b:b1:b1:18:68:9f:
ff:49:2f:20:c5:0a:c9:a9:07:2f:f6:74:aa:b3:b4:
a6:a8:55:94:26:7d:b2:6f:7e:8e:e4:98:19:f5:2a:
9a:62:1b:f8:0b:e7:fb:91:29:6e:84:00:63:5e:1e:
39:c5:00:fd:5d:6e:f3:1b:dd:78:d3:c5:29:c6:0b:
5c:09:53:e0:1d:30:64:4c:8c:6b:c6:71:76:17:28:
44:c8:ac:35:16:29:b8:b2:9f:a5:55:54:2a:eb:85:
ba:81:85:f4:a0:01:b0:ec:f2:2e:3a:d8:e0:f7:46:
f1:48:8a:ee:80:73:95:ba:e1:4d:eb:1c:54:c5:0b:
bc:65:30:a9:ba:26:41:ea:b6:13:c8:3e:41:ef:9a:
44:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C4:E7:93:F1:7D:5C:FE:8A:57:77:A7:FA:78:1A:C7:00:8A:E9:02
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:12:bf:6f:5a:95:9d:11:ef:b9:93:73:7b:3e:18:84:22:d5:
f4:2e:c8:60:dd:5d:96:65:96:ae:97:6b:61:cb:79:08:e6:52:
e8:6c:6a:38:5f:e3:32:7f:42:e6:11:69:d3:87:d9:3b:da:a3:
ae:8c:f8:7d:a0:69:17:b1:df:17:76:4e:1b:0f:53:cb:14:e3:
e8:46:26:31:99:df:8d:89:7f:d1:ea:a5:8e:1e:63:f0:ed:26:
70:f1:90:49:c9:2c:8d:88:4a:fa:e4:60:6c:ac:6a:68:79:73:
a4:39:95:f2:30:9c:f4:3f:ac:3a:cc:ea:7d:c5:0b:5d:14:d4:
aa:78:1e:6a:b7:48:29:44:48:34:e4:a4:dc:ef:8c:69:09:74:
a1:82:ac:b1:6a:fd:28:5b:8f:1a:65:65:cf:bf:53:8a:33:19:
ac:d9:b4:e1:6c:0c:23:aa:3c:4c:7e:d9:ab:4b:d4:8a:e8:d6:
b5:66:f5:0e:0a:6f:2d:a3:da:7f:a1:52:f5:75:9a:ae:4d:bb:
6c:1e:c8:a9:3f:2c:e1:fc:79:02:b4:a6:2a:94:b8:f4:38:7c:
2e:e5:f3:15:56:ef:86:b4:d7:8a:08:38:e7:de:72:5a:86:9a:
e1:34:99:08:fd:18:4a:d5:7a:38:28:c3:a4:c5:de:0c:74:57:
ec:a1:50:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKDrv+hGkXHw9Dg2ynXnGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5N2Q5ZjNkYmZjMzY1MzMyZTI4MmJkMTc2YTY4MDc1NDQ2
ZDFkMWIwHhcNMjYwMzI1MTgwMTAzWhcNMjYwMzI2MTgwMTAzWjAzMTEwLwYDVQQD
Eyg4N2M0ZTc5M2YxN2Q1Y2ZlOGE1Nzc3YTdmYTc4MWFjNzAwOGFlOTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjWPFvgPSxMSYYVWjLOCoS/RI4JD
asxLbFCO2H70kUrvI7JVi3ntSGc1kKbEInDCRZG34vXf7goizwE80GHdsiBcyU/a
JMZ+f6QyiPR6lpvDavQ13lm75xWVZ4iVUU0CC5upLzhzI/aA/hV4uMJ7PYaLsbEY
aJ//SS8gxQrJqQcv9nSqs7SmqFWUJn2yb36O5JgZ9SqaYhv4C+f7kSluhABjXh45
xQD9XW7zG91408UpxgtcCVPgHTBkTIxrxnF2FyhEyKw1Fim4sp+lVVQq64W6gYX0
oAGw7PIuOtjg90bxSIrugHOVuuFN6xxUxQu8ZTCpuiZB6rYTyD5B75pEsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIfE55PxfVz+ild3p/p4GscAiukCMB8GA1UdIwQY
MBaAFDl9nz2/w2UzLigr0XamgHVEbR0bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMt
ZDg2YWIyZmU3NjQ4LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMtZDg2YWIyZmU3NjQ4
LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAABK/b1qV
nRHvuZNzez4YhCLV9C7IYN1dlmWWrpdrYct5COZS6GxqOF/jMn9C5hFp04fZO9qj
roz4faBpF7HfF3ZOGw9TyxTj6EYmMZnfjYl/0eqljh5j8O0mcPGQScksjYhK+uRg
bKxqaHlzpDmV8jCc9D+sOszqfcULXRTUqngeardIKURINOSk3O+MaQl0oYKssWr9
KFuPGmVlz79TijMZrNm04WwMI6o8TH7Zq0vUiujWtWb1DgpvLaPaf6FS9XWark27
bB7IqT8s4fx5ArSmKpS49Dh8LuXzFVbvhrTXigg4595yWoaa4TSZCP0YStV6OCjD
pMXeDHRX7KFQZA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:00:47 2026 by rpki-client