Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: fZqJdCE9CQHdmYp78vAhFaHLBhZyOP2n85wNwymo/L0=
Subject key identifier: 44:C8:19:DC:CB:CF:24:F2:AD:A5:24:88:C6:C9:F5:04:6D:50:9C:1D
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019E1ED9B93290E479E9C2FEE64BD7152A4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0D96
Signing time: Wed 13 May 2026 01:00:45 +0000
Manifest this update: Wed 13 May 2026 01:00:45 +0000
Manifest next update: Thu 14 May 2026 01:00:45 +0000
Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=)
2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: U3h7pepdXpZO3I2arQ6/sq1GPWYbw/SBqmde4Xv0yOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:b9:32:90:e4:79:e9:c2:fe:e6:4b:d7:15:2a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: May 13 01:00:45 2026 GMT
Not After : May 14 01:00:45 2026 GMT
Subject: CN=44c819dccbcf24f2ada52488c6c9f5046d509c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:f2:4f:a8:e3:e3:4c:6d:80:c8:97:4e:80:
e3:f1:2d:92:54:76:0b:78:4a:a6:85:de:6f:cb:ba:
b8:27:a4:4b:6a:56:91:bd:a7:3c:bf:99:dd:97:c1:
15:fc:95:7a:89:02:0a:34:77:38:ab:bf:a7:bb:d0:
49:47:24:5e:a8:39:1f:33:6b:72:82:60:1c:c0:3b:
22:6b:4f:69:45:34:c9:08:e1:dc:8a:e9:86:f0:f2:
95:90:d5:83:17:25:d0:1b:02:3e:ef:35:39:1c:a5:
e8:23:f3:fa:fa:ae:78:67:ba:62:c3:d8:b4:49:51:
93:ef:8c:eb:f7:b6:5c:8e:16:81:6e:23:34:19:d4:
da:06:74:d7:7a:f3:a9:9a:cc:88:77:7b:3f:57:67:
05:6b:c2:bf:6e:aa:b8:94:78:ce:c9:60:b2:6b:bc:
7b:85:fd:07:62:42:a5:2b:3f:cf:aa:39:b9:6a:71:
2c:f4:aa:f2:92:65:2e:ca:e6:87:ba:21:d3:5d:01:
07:6e:71:48:29:40:9c:47:e6:21:02:c2:c6:78:63:
4b:fd:6c:be:c4:2b:d0:d4:cf:d0:2b:86:e0:f2:42:
87:f0:67:25:15:7a:a2:e4:82:c1:48:d7:9a:b1:e0:
13:66:d7:5f:e7:b7:88:a5:73:8f:27:c3:52:d9:40:
48:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C8:19:DC:CB:CF:24:F2:AD:A5:24:88:C6:C9:F5:04:6D:50:9C:1D
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:07:84:65:4a:e7:3c:1c:8b:71:94:f7:dd:b4:e6:08:68:af:
a8:35:38:00:8b:bd:95:cd:32:0e:a5:7c:0e:68:34:d6:61:b4:
9e:46:8f:2a:4b:e7:89:a2:62:b1:f2:3f:c5:8c:17:77:12:89:
62:d3:52:52:dc:81:a0:86:71:73:c4:65:9b:1e:1c:1a:eb:66:
cb:57:09:f9:cc:ae:30:58:67:f2:85:de:58:ae:41:59:78:df:
f9:cc:f6:01:d5:11:0f:34:dd:bb:ce:6d:3f:65:b0:f0:d3:fe:
30:39:e0:ec:5d:06:1f:d6:24:c0:c8:37:c8:aa:49:6a:15:9b:
4d:e4:16:13:19:f8:71:90:87:48:b6:56:57:d9:65:e4:33:cd:
c9:a3:49:e2:0b:5b:8a:b6:ba:82:9f:78:2b:34:36:86:88:80:
34:45:8d:3a:66:20:e1:bf:01:ff:cb:91:9d:3b:4c:52:42:97:
42:fa:83:ed:fd:c8:fb:7c:25:bc:28:51:99:d9:2b:94:4c:02:
bb:93:72:01:6e:ca:6f:c5:6c:5e:a5:a6:dd:50:16:bb:c2:76:
34:a4:dc:46:0f:bf:cc:52:66:21:d4:7e:cf:1f:bd:67:ca:21:
e9:09:ca:55:13:18:0d:40:05:3f:e0:61:7b:c6:84:15:ea:c4:
30:dc:4e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:42:55 2026 by rpki-client