Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: LtMegeN5V4Wjf4t7hksd76NgmSI65eeHbKfX9RfL8fs=
Subject key identifier: 16:27:E0:F0:04:A3:FF:90:43:65:A3:39:45:A5:F8:77:E5:36:EC:41
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019D25BA3F95E4418AEFE9DFC1D20CBF6381
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0D15
Signing time: Wed 25 Mar 2026 16:00:56 +0000
Manifest this update: Wed 25 Mar 2026 16:00:56 +0000
Manifest next update: Thu 26 Mar 2026 16:00:56 +0000
Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=)
2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: DbkESZwcE0+xg7V1CRG3ZZwzvShKdpPIXNax4GNcs88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:3f:95:e4:41:8a:ef:e9:df:c1:d2:0c:bf:63:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Mar 25 16:00:56 2026 GMT
Not After : Mar 26 16:00:56 2026 GMT
Subject: CN=1627e0f004a3ff904365a33945a5f877e536ec41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a2:88:e8:56:fd:05:ca:c6:05:31:77:96:1b:
68:2e:a8:ec:df:18:d5:e7:98:a7:0b:34:35:5b:8f:
ca:9d:92:95:ae:ed:6f:ab:45:3b:4b:b6:ac:53:ef:
9b:14:69:65:04:fa:12:31:84:2f:86:2b:f5:80:f8:
fc:29:3e:5f:d8:d8:d9:0a:ac:9a:dc:e8:5b:4c:b4:
5b:63:7d:d2:b0:ee:3b:b5:5a:9e:9e:c7:33:0d:d9:
df:60:05:5a:63:7f:c4:55:74:66:9c:ab:d0:73:7e:
c8:f8:db:f9:20:c5:8a:61:f8:e0:20:ff:36:83:07:
29:4c:83:6d:cb:7f:56:c3:4a:02:dc:b2:4f:6a:b3:
69:a7:ab:36:00:22:ae:6f:ec:4a:0d:b9:ac:21:b2:
1b:f7:97:54:a6:ff:90:50:86:02:51:85:50:3b:1c:
a3:b5:69:ff:9d:2d:53:6b:c3:66:2f:0a:97:65:08:
4a:5c:bf:4a:c9:1e:2b:73:3b:28:26:67:9e:b0:e7:
2c:54:e9:d6:95:2c:f9:01:a8:64:c4:88:a2:24:d0:
7e:d6:89:38:48:13:5b:b3:fa:19:86:e8:ba:a6:57:
d5:1b:e0:86:5a:4e:0d:a8:14:d8:a2:e2:26:d2:8b:
7a:c0:19:a2:c8:3c:67:a5:3d:30:2d:cd:63:5c:e1:
82:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:27:E0:F0:04:A3:FF:90:43:65:A3:39:45:A5:F8:77:E5:36:EC:41
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f3:a3:1a:7a:91:6c:e1:3a:41:b9:4a:51:fb:95:b8:0e:15:
41:95:78:37:64:5d:c6:9f:3c:93:cf:87:d1:17:e3:4b:76:eb:
dc:39:f1:2b:e0:d7:d5:4b:09:aa:e5:e1:2c:bc:2d:18:55:18:
d6:bc:20:a5:84:f0:01:fe:18:e0:e0:ef:75:bb:b1:06:27:a4:
45:41:99:d1:e4:bd:68:7e:d5:71:72:7b:5a:1f:14:9b:53:b4:
cd:e9:34:b1:6f:31:4d:f4:07:98:38:b3:45:58:f0:bb:56:f7:
e9:bd:7f:1d:98:00:c7:5a:d2:50:49:7e:9c:11:db:e2:91:c4:
06:17:fb:14:ce:1b:42:8c:d0:b3:33:ac:1e:5a:71:fd:25:d0:
e4:0f:f0:29:86:88:40:75:53:3d:42:fa:11:78:f8:9c:0d:78:
dd:b3:5e:aa:f7:58:6a:4e:53:c6:b2:aa:27:4b:b8:60:89:a0:
32:1e:a6:30:79:00:8a:48:ed:ea:ce:82:36:8c:46:84:32:ac:
bc:cf:3b:cb:ec:58:20:45:0a:65:c6:b9:db:1b:0d:f3:07:95:
57:ba:5c:f8:b2:fe:07:7f:6b:ac:ae:97:30:3c:84:d7:c9:41:
aa:3d:4a:71:74:ca:70:5a:46:60:44:ea:cc:5c:78:e2:3c:2e:
18:0e:9a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:03 2026 by rpki-client