Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: Otoo5r3zMeVTF/MaFOoZYa67hYO8yH1YcCcoM0yF5so=
Subject key identifier: 87:02:0F:61:29:B2:09:E3:C2:DD:27:3A:EB:EC:F7:64:98:AB:D2:35
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019D27A934C161F5B7601B13F3ECF953884A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 114B
Signing time: Thu 26 Mar 2026 01:01:33 +0000
Manifest this update: Thu 26 Mar 2026 01:01:33 +0000
Manifest next update: Fri 27 Mar 2026 01:01:33 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: VoEiRsmSFCiedDj7fnWBDCQ+C3PIuGSbXwyxTvJ3ItQ=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:34:c1:61:f5:b7:60:1b:13:f3:ec:f9:53:88:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Mar 26 01:01:33 2026 GMT
Not After : Mar 27 01:01:33 2026 GMT
Subject: CN=87020f6129b209e3c2dd273aebecf76498abd235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f9:1f:99:28:41:21:f9:fd:32:ea:19:0b:55:
39:ff:8f:3e:81:03:2d:7e:c0:6c:df:2b:21:fb:f7:
54:66:6f:80:ba:dc:5e:87:45:7f:e8:0d:f5:44:9e:
7a:d2:a4:f5:93:30:4a:d4:a7:11:c5:a2:d5:02:40:
34:28:f5:7e:0a:e2:25:bf:95:77:eb:8f:7b:90:1a:
92:0c:90:05:75:0a:08:1a:d9:53:40:7a:34:b2:4a:
02:1e:f9:18:1b:3a:bc:78:04:d7:a6:c3:b8:6f:f6:
39:59:e3:9a:9a:3c:d8:27:e2:b6:11:4a:da:2f:30:
b5:64:99:94:40:97:85:e2:82:d2:96:c0:8d:44:da:
98:8b:fd:17:16:15:b0:fd:b4:05:3d:59:56:a2:ad:
2d:ad:87:63:a0:57:54:02:97:59:a8:99:9f:bf:35:
f3:46:44:90:4a:09:82:8e:7d:34:ad:d2:45:81:20:
c8:fa:fd:3c:85:07:bb:2e:71:2f:92:39:75:b1:ee:
1d:a5:75:65:ec:d3:82:c2:fc:68:40:31:30:13:8b:
1c:e5:ef:47:db:df:e5:7d:8b:0d:5a:68:24:83:ef:
3a:b2:5e:dd:fd:8e:36:79:30:f3:b9:38:93:90:eb:
3d:76:ef:ed:84:8b:a2:d8:96:46:87:89:f9:4c:85:
73:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:02:0F:61:29:B2:09:E3:C2:DD:27:3A:EB:EC:F7:64:98:AB:D2:35
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:96:2e:8a:3a:4a:fc:f9:2e:7c:2a:64:62:84:26:97:06:e2:
10:3a:a3:32:7a:0a:e3:ed:6b:51:5c:b4:28:f2:08:8f:33:7c:
3c:4d:3a:02:9d:bd:a4:d5:65:41:f4:41:68:64:c2:35:f8:fc:
3b:e6:e9:d1:01:1f:dc:de:2e:af:68:23:c8:60:84:96:c6:be:
fe:c1:10:a6:17:d8:2f:98:ff:f1:f8:e2:b2:cc:aa:ac:a2:d7:
c2:73:b0:01:ff:fc:18:ca:3f:fe:ee:75:93:5a:4d:35:0b:2a:
e6:2b:0a:8b:00:53:a3:9c:99:0f:34:c4:21:9b:7d:36:a0:52:
5f:d8:6c:d5:9f:18:95:f2:97:ae:0f:9c:eb:d6:af:e6:7d:bf:
aa:1b:e2:9a:2c:c5:e7:60:20:61:bf:93:a5:10:6e:f7:54:88:
56:08:74:3d:65:45:b5:3f:01:e9:46:39:fa:97:3b:88:98:1f:
c9:97:3f:1d:f2:3a:5b:9a:5d:e0:76:88:f3:a7:bb:cb:13:c6:
3d:98:bb:b9:39:5a:95:00:06:d2:3e:c4:5a:24:5d:d5:83:de:
92:db:39:1f:9f:df:11:af:65:5f:30:5c:43:1e:bf:fa:c5:7f:
97:7a:91:41:7f:99:46:9d:34:f8:cf:7f:06:70:7b:26:7f:48:
87:bb:df:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:34:47 2026 by rpki-client