Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: PLVGfSteBmnU0ZkjMn/2nUH0UW+Fd9EzIOa3q6u9GbQ=
Subject key identifier: 1D:38:74:19:5F:48:11:55:DA:50:30:92:BC:69:6D:BC:35:9E:0D:23
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 019D2772058136780F252DA4EDC0D2B7D473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 0B21
Signing time: Thu 26 Mar 2026 00:01:16 +0000
Manifest this update: Thu 26 Mar 2026 00:01:16 +0000
Manifest next update: Fri 27 Mar 2026 00:01:16 +0000
Files and hashes: 1: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: v2qKYouWz1wJC7crBDYjGuygxmfeMXubaJEpqG69MAU=)
2: qukZOL3y-aU1clCkqnWrjrRORuo.roa (hash: AXo2TQQEBH5zNI61c1elakGj9Z6fZg1L8w+i18Gk+4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:05:81:36:78:0f:25:2d:a4:ed:c0:d2:b7:d4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Mar 26 00:01:16 2026 GMT
Not After : Mar 27 00:01:16 2026 GMT
Subject: CN=1d3874195f481155da503092bc696dbc359e0d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a7:e2:0a:2d:dc:45:2d:c6:d2:fa:5a:d8:92:
62:b8:3d:b0:2e:02:a0:42:b5:7a:9d:6e:de:e7:0e:
c1:f5:5c:0e:51:90:d2:5c:2a:30:87:e8:48:a1:74:
69:0f:eb:7a:8c:2c:49:4e:08:0a:9e:d4:2d:83:f7:
63:2d:d9:1e:ba:d5:c1:ab:47:1b:7b:7e:5e:cb:bd:
c0:7b:9e:87:df:a2:35:90:67:e8:8f:06:cd:14:aa:
ec:b0:be:5c:2f:08:72:5a:11:1c:54:3f:a2:1d:9d:
00:e5:3f:42:90:85:55:cc:43:0f:a7:6a:2f:a1:b8:
f8:72:16:12:ac:c8:f4:fb:44:f6:26:92:b2:75:0a:
ae:32:90:10:d5:34:52:18:4f:33:73:42:49:f7:41:
2f:0e:58:71:c1:56:59:22:00:af:cd:17:67:2b:b3:
07:b5:d9:82:f2:ed:59:76:a0:bc:21:e8:8a:88:91:
8b:7e:e1:f7:d1:94:81:8b:ee:bf:a1:c9:a8:96:11:
a6:ec:25:0a:a3:30:86:ec:60:34:ae:0d:a7:ce:bd:
9c:af:8f:c1:94:6f:db:b7:c0:d9:ee:18:8c:70:cc:
b8:7d:3d:35:29:ca:15:e0:fb:81:6f:fa:87:e9:a6:
87:78:08:0b:fc:d8:b0:04:06:9e:90:78:5c:6a:16:
1a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:38:74:19:5F:48:11:55:DA:50:30:92:BC:69:6D:BC:35:9E:0D:23
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a6:57:0b:04:77:20:0a:0b:ab:24:e8:1c:7d:64:7b:2f:0b:
0c:d1:88:2e:61:f1:75:79:b1:65:1a:bf:8a:2b:7c:a2:e8:87:
58:3a:7e:94:52:24:03:95:d6:2c:08:ef:0b:f0:f1:7b:d7:5f:
59:6e:b1:d2:26:5e:54:f5:e6:c9:f8:15:75:40:e6:72:a4:fb:
7e:f5:64:97:87:8b:1e:5f:df:10:1f:fe:bd:82:44:85:54:40:
fb:83:c3:46:07:bf:dd:af:7d:ea:2d:05:23:7e:ee:49:fa:85:
d7:9f:ee:10:20:39:7a:08:a4:7c:20:03:85:8d:3b:46:e9:19:
de:94:01:47:8d:2f:49:41:e4:81:fa:41:fb:f2:23:f6:9d:12:
c1:4b:75:06:22:2e:5c:50:1e:73:66:16:bf:02:c1:d1:11:73:
76:85:48:9d:56:da:6b:5d:2c:fb:7a:28:42:95:4d:23:67:5f:
5a:58:59:dd:c2:cf:87:21:4c:65:50:b6:7c:4e:71:eb:de:f3:
24:fa:64:8e:b8:ba:6c:8a:76:08:95:3f:f6:d4:b3:e8:55:18:
d8:d5:63:d6:d6:43:19:83:29:c8:62:01:a5:db:d8:94:89:f8:
d6:9c:18:aa:ce:79:7a:43:68:59:94:c4:ec:50:4b:46:8b:fe:
e4:22:64:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:50:11 2026 by rpki-client