Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: QFt1ks6JU4VDWLh3iFwYR33coKVzXWom52IVFi7ULls=
Subject key identifier: 78:56:08:2A:67:77:66:38:EE:03:8E:9D:59:A7:6F:89:40:39:F6:57
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019E1ED9AF65DCBEF17A0E79B121731EC1DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 040C
Signing time: Wed 13 May 2026 01:00:42 +0000
Manifest this update: Wed 13 May 2026 01:00:42 +0000
Manifest next update: Thu 14 May 2026 01:00:42 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: ZvwAcnYJGxbIKcnyvvb0RMC6iQvd1Vqydt5OVaaAEO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:af:65:dc:be:f1:7a:0e:79:b1:21:73:1e:c1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: May 13 01:00:42 2026 GMT
Not After : May 14 01:00:42 2026 GMT
Subject: CN=7856082a67776638ee038e9d59a76f894039f657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:7c:c1:fc:aa:38:d0:2b:f2:87:c1:11:db:
c5:10:26:f6:39:c8:e9:6e:61:f8:23:d2:a2:2a:f5:
45:1a:7b:4a:04:30:21:5f:2e:d0:04:12:a9:4d:ef:
cb:b0:ab:8e:af:ab:5a:28:4c:24:15:22:43:d5:24:
26:0f:b6:d9:c4:85:93:84:c3:07:24:8a:a7:f4:8f:
b0:48:64:8d:95:c0:c2:6e:cd:a1:26:ce:7e:ef:45:
68:a3:d4:93:79:ff:6d:84:31:2f:02:4b:dd:6e:7d:
63:f3:86:0e:43:ca:e6:8c:cf:bc:85:df:25:0d:e6:
08:25:a6:1c:fe:dc:19:c1:5e:e8:3b:c2:d5:9d:9c:
16:95:c0:74:de:cf:88:54:63:89:69:f9:c3:cb:27:
c4:a8:2b:de:7b:f2:f3:02:27:10:37:da:0c:94:05:
15:cd:28:64:05:8a:4e:15:92:5f:a1:5f:a4:8e:04:
3e:42:5d:b5:26:0e:57:42:fc:38:f9:ea:52:19:15:
19:ae:ad:d8:9c:ad:2b:d6:9c:2c:4c:b3:00:7b:a5:
ec:85:4c:59:49:fc:e6:5b:29:c5:7e:ce:cb:07:62:
37:06:23:85:c2:00:88:a2:26:c8:c1:8e:46:0e:39:
34:64:5e:b8:75:55:1b:ee:b0:5f:86:fa:c8:b7:a0:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:56:08:2A:67:77:66:38:EE:03:8E:9D:59:A7:6F:89:40:39:F6:57
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:8c:ea:e7:58:2b:05:ee:bf:4f:fb:c4:7b:9f:71:01:ae:e5:
89:94:d8:35:58:dc:9a:6f:b8:c0:08:6f:90:92:3c:9b:af:e0:
c6:9d:f2:0d:e8:38:71:2b:1a:69:9f:76:30:3b:8c:84:c5:80:
52:05:15:f7:22:ab:8b:5a:21:7d:a9:c1:a8:64:2a:6b:bc:ea:
84:a7:8b:ce:3c:77:db:e9:5d:0c:f2:0e:a6:00:33:4c:dc:7f:
c5:f8:43:3f:f3:4c:02:00:dc:8e:9b:d6:34:df:7d:cb:43:48:
16:58:76:87:db:1d:10:5e:3f:3d:29:1f:0f:e6:56:0f:e4:fa:
0e:a5:c6:8f:22:17:38:8e:6f:50:08:6e:5e:5c:39:10:7f:d1:
de:2e:6b:61:9e:68:d6:53:3e:12:f4:40:3a:a5:88:11:e9:0b:
5f:73:58:d7:d9:5d:6b:38:e0:57:d7:dc:e6:35:c1:4c:fc:ae:
42:9b:99:b9:18:74:2f:22:c2:e8:7a:35:db:55:ee:ba:13:cf:
7b:29:ac:9c:40:e1:5b:88:02:ec:68:8e:b2:3f:36:c7:4b:ea:
b5:a7:2e:03:98:ff:c1:2d:eb:70:ad:69:34:ea:3d:08:c9:0d:
6d:9b:e7:60:f4:59:e8:2c:be:2e:78:d8:ce:91:e9:d8:72:ed:
4a:d1:72:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2a9l3L7xeg55sSFzHsHcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2
NDRkZTQwHhcNMjYwNTEzMDEwMDQyWhcNMjYwNTE0MDEwMDQyWjAzMTEwLwYDVQQD
Eyg3ODU2MDgyYTY3Nzc2NjM4ZWUwMzhlOWQ1OWE3NmY4OTQwMzlmNjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCZ8wfyqONAr8ofBEdvFECb2Ocjp
bmH4I9KiKvVFGntKBDAhXy7QBBKpTe/LsKuOr6taKEwkFSJD1SQmD7bZxIWThMMH
JIqn9I+wSGSNlcDCbs2hJs5+70Voo9STef9thDEvAkvdbn1j84YOQ8rmjM+8hd8l
DeYIJaYc/twZwV7oO8LVnZwWlcB03s+IVGOJafnDyyfEqCvee/LzAicQN9oMlAUV
zShkBYpOFZJfoV+kjgQ+Ql21Jg5XQvw4+epSGRUZrq3YnK0r1pwsTLMAe6XshUxZ
SfzmWynFfs7LB2I3BiOFwgCIoibIwY5GDjk0ZF64dVUb7rBfhvrIt6Dj0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHhWCCpnd2Y47gOOnVmnb4lAOfZXMB8GA1UdIwQY
MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt
ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3
LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIozq51gr
Be6/T/vEe59xAa7liZTYNVjcmm+4wAhvkJI8m6/gxp3yDeg4cSsaaZ92MDuMhMWA
UgUV9yKri1ohfanBqGQqa7zqhKeLzjx32+ldDPIOpgAzTNx/xfhDP/NMAgDcjpvW
NN99y0NIFlh2h9sdEF4/PSkfD+ZWD+T6DqXGjyIXOI5vUAhuXlw5EH/R3i5rYZ5o
1lM+EvRAOqWIEekLX3NY19ldazjgV9fc5jXBTPyuQpuZuRh0LyLC6Ho121XuuhPP
eymsnEDhW4gC7GiOsj82x0vqtacuA5j/wS3rcK1pNOo9CMkNbZvnYPRZ6Cy+LnjY
zpHp2HLtStFyxQ==
-----END CERTIFICATE-----
Generated at Wed May 13 07:50:29 2026 by rpki-client