Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: m8T3aLHen5Px1aEdnomUDjmBrWtEhnWX/kV+lYqm840=
Subject key identifier: 49:CA:3E:29:F1:FC:1B:7D:05:C0:25:90:E6:B8:CC:4A:D9:42:91:AC
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019E1F7F4D4630F91FC9EFC2F67D4D75A015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 13C5
Signing time: Wed 13 May 2026 04:01:36 +0000
Manifest this update: Wed 13 May 2026 04:01:36 +0000
Manifest next update: Thu 14 May 2026 04:01:36 +0000
Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: pmRbwhrjexU8r1d8CLKkV+31KnZKdWokvC19tDyjog0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:4d:46:30:f9:1f:c9:ef:c2:f6:7d:4d:75:a0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: May 13 04:01:36 2026 GMT
Not After : May 14 04:01:36 2026 GMT
Subject: CN=49ca3e29f1fc1b7d05c02590e6b8cc4ad94291ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:88:45:cd:4c:30:ff:ad:63:ce:46:2b:bd:ce:
44:cd:28:55:6f:3c:c0:d4:92:05:5b:f7:e7:6b:b2:
88:3f:61:d4:8d:46:15:56:0e:f2:5b:7d:ec:04:16:
71:53:f7:a0:51:81:4e:08:3e:93:bf:64:e4:fe:02:
19:2e:80:6d:36:2b:97:fe:cc:72:2d:39:b8:de:9e:
a5:25:6e:82:7d:f3:26:0d:3d:4d:6d:fa:d6:1d:41:
e8:f2:e8:17:7c:d6:9e:a3:f7:f8:44:51:bb:74:02:
15:77:c7:63:c4:2c:31:aa:44:8a:94:4e:ca:cf:55:
00:67:35:ad:c3:02:c7:61:c3:48:56:0f:2e:ec:1d:
dd:d4:7c:f5:1c:dd:3e:cb:82:9e:50:3a:e5:a6:10:
41:f1:a9:4d:fb:16:af:b8:00:ef:78:83:d9:c8:41:
73:87:84:9d:ce:60:03:63:94:b5:ea:e7:52:1b:5a:
85:aa:e7:d0:f8:85:0b:c5:0c:e5:ff:3b:f2:d3:10:
99:7a:c9:d9:7c:70:fe:f0:b1:0d:33:6c:01:14:62:
87:3b:69:9f:55:a0:2c:ef:e0:0f:2f:d9:a9:ae:dd:
eb:3c:eb:4b:3e:bb:fc:1b:e8:d5:9d:15:6d:9c:02:
40:93:14:46:2e:23:a0:7a:a8:8e:bb:d3:a6:07:4a:
6a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CA:3E:29:F1:FC:1B:7D:05:C0:25:90:E6:B8:CC:4A:D9:42:91:AC
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:77:e6:e6:ec:47:3a:3b:46:53:92:fe:7b:a9:f1:b0:86:62:
3d:3a:6b:c0:94:39:9d:73:67:ba:09:2f:78:f7:78:36:41:31:
0d:11:04:32:02:e6:1a:53:92:17:87:52:5e:02:75:fe:1f:32:
2b:fd:64:13:9f:a5:67:3f:9a:28:be:1a:51:65:72:29:1d:de:
e0:b3:26:20:34:83:1b:78:e6:11:dc:94:03:11:15:09:fa:05:
13:13:60:61:5d:d6:7a:0d:da:78:00:e6:76:24:89:cf:8e:5b:
dd:44:5d:8a:7d:f6:76:58:92:c1:66:ba:dd:7b:49:98:0a:0a:
5d:7e:2d:cf:8c:e8:17:1a:b3:20:ff:eb:a3:2d:7d:f7:64:35:
65:7d:e3:c6:7a:29:76:e4:12:85:a7:6e:51:9e:31:5f:5f:68:
df:99:17:e5:fe:ea:f6:c9:9d:07:89:b7:40:f4:7e:39:b3:d4:
b6:25:99:24:94:9d:f7:fc:b7:18:67:be:55:c4:6d:c7:7c:29:
4f:06:6a:5d:c7:01:fb:4f:ba:4d:ad:dd:65:fa:45:d7:82:ef:
4d:1a:48:ef:62:07:ea:d9:cd:45:6a:bd:27:cc:6d:f7:51:ce:
25:28:02:37:9f:91:2c:7e:ab:3b:69:6b:3d:bb:98:99:ed:80:
f2:dc:c6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:52:10 2026 by rpki-client