Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json)
Hash identifier: ORxO+yJTP1ARPmIrxW/3bv4eBIoHnmdaQr3WejFirQo=
Subject key identifier: 9C:CD:66:1B:75:1C:CF:46:81:30:C0:EB:E8:74:E2:FF:4C:64:80:DF
Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Certificate serial: 019D277225C0D140E246E16D6528CC68D8AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
Manifest number: 064F
Signing time: Thu 26 Mar 2026 00:01:25 +0000
Manifest this update: Thu 26 Mar 2026 00:01:25 +0000
Manifest next update: Fri 27 Mar 2026 00:01:25 +0000
Files and hashes: 1: DsjnP70xJrDmj0g_UlKJTaTYlrE.roa (hash: dQTLlCPrfnfLcZWl7wxf8pl/h6tKSJhaHDIpDeYdmfQ=)
2: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: VV4+M2Ek3avRwNyA5OK5X8Qm7DpCVteLobk68fIWTUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:25:c0:d1:40:e2:46:e1:6d:65:28:cc:68:d8:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Validity
Not Before: Mar 26 00:01:25 2026 GMT
Not After : Mar 27 00:01:25 2026 GMT
Subject: CN=9ccd661b751ccf468130c0ebe874e2ff4c6480df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:12:0e:b3:0d:09:e6:1c:f5:74:ac:fd:1a:76:
df:e3:c9:da:c2:cf:33:dd:f6:12:b1:c5:9f:1b:ca:
7b:7f:33:d4:db:b1:8f:0d:9d:07:18:20:06:6d:4b:
ef:a5:d0:0e:26:69:a9:b9:e5:dd:7e:21:62:bd:66:
e9:1d:c2:25:56:68:f4:ae:ae:4a:59:aa:28:61:82:
74:50:9e:43:c7:4d:1c:61:11:fb:c1:0a:4c:21:2a:
49:43:69:db:07:4a:b9:0a:0e:8c:5f:a6:38:75:68:
f3:05:3b:fa:3b:53:9d:48:ee:06:0d:e1:d1:aa:9f:
a6:b7:cb:1c:4a:72:6f:f9:df:8f:bc:c1:8b:d7:62:
42:8e:cd:ca:c2:6d:88:e3:61:ff:5b:a1:54:c9:48:
23:df:99:f3:46:d5:65:bb:9c:bd:9d:9a:76:d9:1d:
0c:62:38:ce:78:4b:62:7e:5a:96:d5:9a:48:30:aa:
b3:4c:8a:9e:6d:f8:fd:4a:5c:24:e5:da:29:05:e2:
c5:d2:da:bd:6d:ce:fb:63:0c:1c:e9:a9:02:69:f9:
26:6d:c1:c8:8d:69:f4:04:0f:b0:b3:b8:92:42:77:
0f:2f:c2:67:c4:35:86:a8:a7:f4:32:14:d4:52:38:
23:3d:a6:ea:27:b7:77:eb:ed:93:08:b9:b5:66:2f:
e6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CD:66:1B:75:1C:CF:46:81:30:C0:EB:E8:74:E2:FF:4C:64:80:DF
X509v3 Authority Key Identifier:
keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ad:43:bb:84:48:c0:9e:ff:fb:c7:86:c6:5a:77:dc:11:7b:
8a:a4:c1:aa:93:09:65:38:58:d9:cb:96:eb:3a:e3:7f:9c:12:
4a:62:00:7b:ac:77:66:38:6a:cf:15:9b:0d:54:40:9d:b9:ad:
21:d5:a5:28:30:71:8c:5a:b5:a7:95:85:fb:2e:fb:bb:53:77:
66:c7:2c:ea:34:93:06:7e:b8:6c:25:47:ca:f8:d7:96:2a:af:
c2:c1:a7:4d:97:bc:9d:2c:3f:5f:20:6c:6f:af:c6:a8:5e:16:
b1:83:bd:bb:69:79:17:38:12:d4:7b:ab:2e:2a:80:23:ca:cb:
5d:a2:85:72:13:90:f5:e5:75:ee:0c:5a:7e:4b:26:dd:02:bd:
8e:ee:62:50:77:57:50:9a:b7:88:f7:6c:06:20:e0:6e:21:1e:
7b:7b:8e:5b:7d:e0:dd:2e:f8:4a:e9:f1:31:d8:86:be:bc:87:
f3:5d:30:e9:f1:bc:d3:bc:b0:1b:c0:24:6f:a0:f5:40:9b:54:
cd:e0:c9:11:dc:13:7e:98:bb:3c:88:86:8b:a6:b9:3f:dd:6e:
be:ae:88:c7:3f:d3:44:fa:ca:d6:30:84:65:08:97:3d:70:e8:
9e:50:ec:70:51:3a:d7:c7:16:aa:2e:9d:da:67:34:0a:4f:be:
af:ac:58:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:35:09 2026 by rpki-client