Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
File: oFa0I4Othizmo3StLKbTbCVNx7E.mft (raw, json)
Hash identifier: d+2clYd1Rs3ewdz8WGVwIbSgIXFtF8kFT6WNbYgwYAg=
Subject key identifier: 2D:0D:8A:2A:11:26:10:FC:84:E6:A7:33:7B:67:DA:0C:F4:DA:CA:7D
Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Certificate serial: 019E1D22BF27DE4CBB1AF7F1840377FC90A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
Manifest number: 182A
Signing time: Tue 12 May 2026 17:01:16 +0000
Manifest this update: Tue 12 May 2026 17:01:16 +0000
Manifest next update: Wed 13 May 2026 17:01:16 +0000
Files and hashes: 1: PGTd-Arp7Vz3rSSs0l8FiGHSz58.roa (hash: ClKyMhw4ls8O+22d3zwyr4Of9HO2Cqaa8e0NaPqWqxo=)
2: oFa0I4Othizmo3StLKbTbCVNx7E.crl (hash: 8xdB7aLUawXcUmUXcIJs3FGoQxsK8mLUxv2lKTQcsLM=)
3: pteb03Zrz-92mfGhlVuUAxWiO1c.roa (hash: Tlsfv5MPyjgb+Ws3wZ+t04Extj+nRQ2rvjb3jvw/n0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:bf:27:de:4c:bb:1a:f7:f1:84:03:77:fc:90:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Validity
Not Before: May 12 17:01:16 2026 GMT
Not After : May 13 17:01:16 2026 GMT
Subject: CN=2d0d8a2a112610fc84e6a7337b67da0cf4daca7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:5f:5e:31:a9:82:f9:ae:01:f3:07:35:b1:
46:81:e9:ee:7b:72:56:4d:02:ef:7c:7f:33:46:36:
2f:31:3b:d1:f3:ea:99:ba:c5:23:e7:87:3f:05:f6:
64:bd:e2:50:00:07:d2:6b:b8:90:ce:38:2e:0c:b8:
57:48:1a:20:b5:db:f7:73:17:c6:b9:44:c0:aa:cb:
b7:12:00:bd:05:52:75:a1:e9:79:13:e5:3c:c5:f1:
6c:56:ab:32:d5:e8:e0:eb:24:4d:5f:a5:b4:e7:08:
a7:a8:d3:12:d2:3a:c0:76:12:b8:72:35:d3:9a:72:
c0:bd:9e:47:1e:b9:4a:ee:04:b9:3e:6c:18:d3:58:
fc:bf:fa:81:9b:6c:ea:2e:e4:45:ea:ef:ef:40:ab:
d6:71:15:36:e6:00:f8:55:30:ce:39:49:60:72:f6:
fa:7e:bc:2d:86:b7:cc:de:1d:f5:0c:6e:76:bd:af:
74:0e:35:33:0e:f6:61:b7:40:d8:ef:47:bc:55:82:
50:e4:54:91:f1:c4:81:e4:0a:f1:7f:90:00:dc:a0:
14:49:cd:ad:76:f3:75:fc:11:0f:03:b0:ab:4e:59:
f0:7c:26:44:27:b8:a3:7f:ba:cb:42:6e:4e:89:99:
89:d2:33:93:14:da:7d:b8:a6:20:e8:95:5b:c5:25:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0D:8A:2A:11:26:10:FC:84:E6:A7:33:7B:67:DA:0C:F4:DA:CA:7D
X509v3 Authority Key Identifier:
keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:d5:5f:58:0d:a1:67:29:ba:d3:b3:90:12:8b:7d:3f:14:7f:
b6:7d:9d:50:d1:f0:3d:11:a5:c1:06:91:4c:ac:cb:02:a5:ca:
e8:2c:02:3d:6a:66:0f:7d:de:12:92:bf:e4:bd:87:cd:1f:f4:
5a:47:02:64:68:c5:9d:c4:a9:61:d4:7a:0a:f4:b6:31:5d:39:
af:68:af:06:07:98:9c:14:c1:d5:7d:f0:91:a6:70:3d:ef:81:
1f:e6:27:2e:44:cf:c6:94:d2:af:fb:5c:8b:cb:42:26:e7:2c:
84:b0:68:6f:52:94:b1:fc:2b:8c:9e:98:37:1b:da:7a:fd:e7:
1d:82:f3:7d:09:d8:90:c4:1a:77:b4:1e:13:85:d8:60:a8:86:
5a:87:20:3f:ef:2b:c0:fa:a0:35:41:94:72:14:1a:36:a9:09:
d2:df:ca:b3:6f:50:73:10:e1:16:dc:6d:eb:31:1e:6c:bf:b9:
04:e7:75:a1:31:dc:26:6d:0e:51:ad:e5:ed:69:35:81:1c:a8:
ed:0a:71:5f:12:19:25:34:ad:4c:65:e2:f5:5e:47:30:54:16:
8a:9d:8d:46:0f:e0:a6:99:e0:10:87:07:41:23:e3:82:8c:37:
66:de:e5:3e:89:04:0e:79:10:fb:00:14:00:82:74:a3:7c:5d:
52:b8:3c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:11:29 2026 by rpki-client