Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: v1eRvq6CAT9ox91VYf5mW3C9LancUQGVyB0rmKI54KY=
Subject key identifier: 3A:CA:01:39:42:52:1C:7A:EE:2B:4E:E7:C9:0A:02:52:36:16:4A:8D
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019E1F111F36AEF26AB448DEC5A61EEBAFA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0AC1
Signing time: Wed 13 May 2026 02:01:16 +0000
Manifest this update: Wed 13 May 2026 02:01:16 +0000
Manifest next update: Thu 14 May 2026 02:01:16 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: MFGpevuUrfBz/jmdGNujPDV+UKNFfq/FOjpXwIpzHnw=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:1f:36:ae:f2:6a:b4:48:de:c5:a6:1e:eb:af:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: May 13 02:01:16 2026 GMT
Not After : May 14 02:01:16 2026 GMT
Subject: CN=3aca013942521c7aee2b4ee7c90a025236164a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:3e:5c:07:93:71:92:cb:fb:f0:65:21:78:
ca:00:14:e5:00:e3:09:d5:6a:fa:a0:6e:ab:cb:56:
f7:ac:34:69:7f:9b:87:41:37:ba:73:c8:5a:dd:df:
40:61:54:ca:fe:51:51:1f:62:f2:2a:c6:a6:bf:78:
64:b5:3a:db:65:bb:c5:49:af:4d:34:83:1f:45:d4:
c1:66:dc:b3:2b:53:f0:61:a5:f5:aa:77:12:8c:1a:
db:86:06:02:49:5e:9f:a0:90:0f:95:dc:6e:8b:df:
cc:5d:e9:04:fd:a4:66:51:c8:fb:f4:e9:08:a0:94:
21:ee:bf:93:a8:52:5f:29:bf:0a:a2:1e:98:16:1e:
8a:51:c5:79:03:b7:ee:15:5a:01:8b:62:5d:22:9c:
ea:f5:c6:9c:98:1a:8e:17:cd:1a:d9:76:96:2f:b8:
05:a8:63:6b:a0:0c:85:e7:8d:0e:5c:73:75:18:ab:
bf:5f:98:91:76:3e:35:fe:37:26:09:c8:7e:29:72:
51:90:74:21:a0:ed:2f:9d:3e:7b:fd:99:46:fc:28:
53:17:93:34:e8:f3:6a:18:fb:43:07:54:fb:5d:db:
46:b7:7d:e3:82:cf:86:d9:b8:b3:de:3d:03:99:40:
45:76:49:d5:45:10:98:fe:7c:f6:14:71:8b:0b:d7:
61:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:CA:01:39:42:52:1C:7A:EE:2B:4E:E7:C9:0A:02:52:36:16:4A:8D
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:0e:31:d2:28:4c:d0:79:4b:17:eb:16:20:51:00:39:12:c4:
c0:19:fe:54:a7:27:54:37:ed:20:85:fd:99:c4:9d:2e:00:c1:
0b:69:a4:c2:0a:ee:57:12:a3:64:b6:47:00:9f:79:e2:6a:ce:
ed:20:db:01:6c:f1:25:f5:b6:92:68:23:f5:a6:b9:5e:66:c9:
cb:fd:ba:8d:b5:51:cc:3f:50:7e:e0:ca:9e:ad:0b:5f:2b:1f:
ff:49:ce:25:71:ea:3d:95:6a:4f:8a:29:a3:0c:5b:04:80:d8:
9c:36:68:bd:6c:3f:8e:07:77:b6:f8:00:a9:02:ad:2f:24:d4:
10:46:44:d7:80:c2:7a:c5:6d:00:c5:3d:a5:5e:3f:39:59:42:
b8:eb:7d:2a:48:50:c1:f6:8a:56:92:4f:a2:b4:04:12:f7:09:
b1:a8:93:03:bd:86:5a:87:96:ea:9e:a7:0d:5f:5a:40:9c:76:
74:45:fd:16:e2:5a:ab:7b:b4:d0:f4:74:97:a8:c4:e8:37:c2:
91:66:23:38:23:fc:a2:7e:64:6c:d4:ea:1d:36:e2:9f:26:df:
58:f3:31:43:03:12:1d:cf:a2:64:08:6b:e1:0e:df:a5:19:b3:
f6:30:8f:d3:fe:8a:36:c8:72:27:c6:10:7e:55:bd:be:b6:63:
d2:6e:a9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:04:55 2026 by rpki-client