Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: lSxSNTsgafXFxkHFPhvuNmrZ2PPL04YfVd91w9+PDAU=
Subject key identifier: FF:C5:7C:7A:95:E0:C9:C2:08:76:38:96:DD:AA:5F:8B:4F:74:8A:22
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019D27E024031346D4C2F68EAF225F3BF9F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0A41
Signing time: Thu 26 Mar 2026 02:01:33 +0000
Manifest this update: Thu 26 Mar 2026 02:01:33 +0000
Manifest next update: Fri 27 Mar 2026 02:01:33 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 2HrMWL1ReJf77Ol7wPDrm3yipOozNf+CN9pEdt2Ewss=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:24:03:13:46:d4:c2:f6:8e:af:22:5f:3b:f9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Mar 26 02:01:33 2026 GMT
Not After : Mar 27 02:01:33 2026 GMT
Subject: CN=ffc57c7a95e0c9c208763896ddaa5f8b4f748a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:98:b2:e1:d0:e7:6b:f0:39:f6:c7:6c:d2:1d:
5f:4c:18:db:d5:a2:e3:8e:c4:14:4e:e0:ae:ef:55:
f7:0d:43:d4:62:bb:86:09:c9:ee:fd:86:e9:b9:60:
6a:23:b8:f3:40:ee:f5:59:ef:ce:e8:3b:d8:00:32:
86:cf:d6:cc:5f:19:3e:26:a5:63:3d:ca:ae:1c:e2:
e6:17:29:3a:c7:01:36:74:96:5e:81:b7:a2:87:1c:
15:2d:51:cc:ee:b0:8c:da:89:0d:81:97:77:9f:95:
86:7e:35:8e:2f:b6:d3:cc:dd:0c:f2:71:aa:79:ac:
0c:58:69:e5:93:22:0c:96:66:cc:e1:4f:09:49:9c:
19:1b:43:01:6b:88:01:57:1a:5d:84:89:e2:82:38:
89:96:0e:35:7e:6f:34:7c:7e:ae:20:a0:68:df:45:
ab:88:af:7e:68:c7:00:60:2b:d3:aa:7f:45:ec:2b:
9a:7c:32:fb:6e:89:0f:b7:31:62:06:be:e9:64:ee:
a8:65:5f:60:e3:2a:c3:c6:9a:4f:8c:e4:e1:7f:e1:
8d:4b:d5:03:32:19:a3:8d:a5:31:fb:95:5d:68:2e:
2f:1d:27:92:33:e3:70:c1:63:9c:e4:64:60:6c:b4:
cf:88:9a:b2:cc:db:c0:53:ac:18:9d:cd:b2:4f:44:
96:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C5:7C:7A:95:E0:C9:C2:08:76:38:96:DD:AA:5F:8B:4F:74:8A:22
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7f:b1:d2:3c:c9:f9:c0:d4:26:1b:14:79:3d:75:fb:05:4e:
ca:23:ad:08:cf:dc:d0:3a:95:fc:80:12:16:e0:b7:95:a9:13:
f6:91:26:b2:a9:64:67:07:97:7f:fd:aa:f9:59:65:23:2d:a0:
b6:82:ee:b1:69:5f:b4:56:a2:7d:64:d9:5a:9b:da:b2:91:c4:
df:32:75:48:35:72:f3:55:71:c5:42:2d:7e:88:d6:8f:66:e0:
7e:c2:7e:0c:e9:93:73:2a:5f:ea:a8:08:d5:e1:bf:fe:03:41:
7c:80:6e:97:a1:d3:cb:04:b5:25:b5:3b:92:a1:cb:e6:43:54:
60:de:99:95:45:d9:68:6d:7b:d4:d8:80:be:04:eb:bb:65:25:
c9:b9:2c:b5:aa:16:80:31:54:dd:f9:f2:11:76:28:4f:75:d3:
f9:1c:51:9c:25:63:0e:ca:62:07:29:a0:86:30:dd:4e:d8:62:
fd:0a:d7:f2:1d:aa:d3:79:81:5c:7f:8e:b8:ac:50:36:78:de:
9c:d2:50:c4:c1:68:13:bc:ee:8e:de:22:ef:49:4a:e0:10:0a:
07:46:46:00:1b:35:85:42:44:27:2c:03:31:94:67:8f:35:da:
a4:f2:30:f9:28:ce:66:c8:2b:a1:c7:03:fe:c8:ee:ba:3d:73:
39:02:a5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:53:11 2026 by rpki-client