Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: YeOLk3KM7lnt536hZlvKCXEBtgiPmDkwLBkb3YPmrto=
Subject key identifier: EF:1F:B3:02:EA:81:F6:A8:0B:2F:E0:F3:69:44:66:7D:FA:56:B9:96
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 019D33081B46E5CE2BB1158566616B4EA084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 03F8
Signing time: Sat 28 Mar 2026 06:01:02 +0000
Manifest this update: Sat 28 Mar 2026 06:01:02 +0000
Manifest next update: Sun 29 Mar 2026 06:01:02 +0000
Files and hashes: 1: 74AVprCTNRDcbv0uDtC-tI0t1tw.roa (hash: up3d+8yhBxWTyanUrBMpmMMg9KISyz71I4oLqcbMOrY=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: 6IxiyS+M71YZeUsgm1tR2OPwLx/cxFWmzd3kGBO2Ftk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:1b:46:e5:ce:2b:b1:15:85:66:61:6b:4e:a0:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Mar 28 06:01:02 2026 GMT
Not After : Mar 29 06:01:02 2026 GMT
Subject: CN=ef1fb302ea81f6a80b2fe0f36944667dfa56b996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4c:1c:c9:a3:42:1c:4c:35:5e:a8:14:22:8e:
41:7d:89:f6:07:60:01:3b:ef:f5:74:04:74:cb:ae:
27:33:17:89:49:78:03:5b:4e:f3:47:03:80:97:b2:
d2:84:c4:5a:2e:95:90:92:4f:f3:fa:18:42:3f:43:
12:7e:a8:e5:63:a0:19:9b:c0:1d:f8:da:b6:c4:e3:
e8:da:a8:b5:96:96:9d:42:bc:73:23:0b:08:cd:a6:
5a:6f:bb:8e:ee:cb:fc:17:ce:cd:01:31:30:73:0b:
9a:34:1b:85:09:26:2f:20:d9:69:16:9d:60:9a:58:
c2:fb:66:a4:db:90:74:b5:5e:ad:9a:b0:ae:13:ad:
67:0a:a5:11:d3:df:58:06:db:56:fe:c1:25:32:72:
b0:07:d1:81:32:aa:2d:78:8a:3d:6a:54:4a:a9:83:
43:88:41:c5:e0:2f:ce:15:5e:a3:d6:83:a2:96:2c:
e9:b5:62:9f:77:4d:44:9f:05:5d:b2:60:87:5d:e8:
4f:31:0d:4e:eb:87:ff:02:ab:a2:ca:9a:d7:c8:5c:
33:35:53:b7:db:7b:77:4e:28:d4:1f:31:b5:0c:fe:
a5:76:f8:d1:a0:ad:b0:03:41:e7:d3:7e:0c:b2:38:
1c:64:84:fc:09:a6:90:6b:28:67:92:e3:6d:73:98:
2e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1F:B3:02:EA:81:F6:A8:0B:2F:E0:F3:69:44:66:7D:FA:56:B9:96
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:88:e7:37:7b:2e:f7:e5:45:e5:9e:00:25:c4:27:b7:25:44:
a7:96:b4:d8:55:b5:49:05:2a:7d:ec:a0:2c:ac:64:de:f2:58:
92:c5:60:54:76:3f:c6:a7:a9:dd:8b:70:5b:ed:8d:36:d3:b2:
52:fd:97:15:68:27:71:38:aa:00:3e:76:22:6a:40:4a:89:4e:
84:b0:21:8b:11:c2:b2:d4:b8:d7:c5:8a:69:6b:23:ad:0b:20:
fc:31:0b:ba:e3:36:e2:50:c2:a9:13:2f:06:20:d6:b4:23:1b:
d3:9a:78:6a:e9:6c:08:49:b5:9e:a2:99:f4:33:ae:dd:38:fe:
b4:4a:78:68:6a:23:2d:12:0a:35:b4:ab:24:2d:51:d5:40:47:
fc:6a:3b:33:e2:48:26:dd:7d:81:1f:d3:c0:47:0f:1f:e0:33:
93:2c:0e:61:a5:d2:79:1a:81:0a:ef:79:82:9f:26:61:91:cd:
ef:d2:13:5a:31:7c:e9:10:96:c1:71:81:6a:7d:ff:5c:d4:71:
50:b9:86:b9:df:42:c5:95:82:3e:50:1e:f3:a9:8d:8b:57:03:
00:01:0b:dd:d9:f4:37:f2:3f:4d:47:28:75:a7:9b:7b:52:96:
64:8f:14:49:0c:dc:04:51:df:15:ba:13:e9:95:fc:14:d4:41:
60:e8:2d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 14:29:11 2026 by rpki-client