Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: W2y+fuGkqGEvx30G6K30m+Wsphy0x8XGpVntdNLE1Dk=
Subject key identifier: 78:9C:A3:E4:2D:D5:1E:F1:74:DA:E9:7C:9B:E2:16:35:B3:5B:08:9D
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 019E1F1097F39B3953C4486D8FCB4E43C347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0DD4
Signing time: Wed 13 May 2026 02:00:41 +0000
Manifest this update: Wed 13 May 2026 02:00:41 +0000
Manifest next update: Thu 14 May 2026 02:00:41 +0000
Files and hashes: 1: IH423EjGhjGEYUhA9Vkl_n9zB8E.roa (hash: JSP/u1wkfocZw2cQtJFX46pxKJk7V7jUMeaOiY9+bXo=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: NK0w8rM+BTHxKSPLk4Oh9fh45eogfggr3ItZFLcUTJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:97:f3:9b:39:53:c4:48:6d:8f:cb:4e:43:c3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: May 13 02:00:41 2026 GMT
Not After : May 14 02:00:41 2026 GMT
Subject: CN=789ca3e42dd51ef174dae97c9be21635b35b089d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ef:59:4d:9a:6f:0d:b7:17:bb:09:81:6a:0c:
93:40:2e:65:19:af:53:2c:b6:d9:27:cd:9e:64:4d:
66:9c:c1:3a:a9:33:de:13:e4:97:89:78:e7:9b:a7:
fc:6c:93:77:d4:52:0e:33:65:f2:e0:3c:b3:b9:b6:
b8:73:b5:04:4d:9d:c2:a0:30:3c:b8:d1:c9:07:ff:
76:37:ed:98:cd:e3:e7:dd:f1:d4:1e:73:0b:7d:21:
82:84:7f:f1:a2:48:cf:b9:3b:ff:a9:82:92:77:ac:
23:05:6c:de:96:1e:e4:f7:f9:59:6c:25:46:83:f1:
a7:49:ac:0e:8d:51:33:7d:e7:7b:35:0c:16:37:50:
ba:b3:f1:2b:fb:04:21:02:5b:c4:7d:81:6e:17:63:
fc:f8:8f:89:6f:d5:f9:18:85:b3:dc:2e:35:6e:94:
15:20:d2:0f:30:89:a9:a0:be:a5:3f:e7:50:cd:84:
56:b9:36:15:29:21:15:1e:fe:49:1c:84:98:1b:d4:
a3:fc:a3:98:78:18:f5:62:ae:62:1f:3d:db:40:a4:
6c:18:b8:a3:6a:c2:df:84:84:b9:3a:62:b0:93:ee:
93:ae:a9:ca:2f:89:6d:bc:0c:a1:b4:9a:0c:f2:ad:
19:4c:50:bc:3e:3f:14:22:ce:24:aa:b0:13:61:fc:
55:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9C:A3:E4:2D:D5:1E:F1:74:DA:E9:7C:9B:E2:16:35:B3:5B:08:9D
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ef:4f:13:57:22:d6:72:4f:6d:bf:7b:0e:6c:8e:c5:7e:7a:
e8:69:a1:8b:a0:a1:d9:57:5a:1b:cc:af:49:5d:94:45:25:7d:
2f:bc:d8:c6:f5:5c:5d:83:47:d0:38:6b:46:3a:b1:71:5a:d7:
b2:1b:37:6f:59:7a:bf:c3:b1:99:5b:73:95:48:06:dd:5d:7f:
8b:c9:e9:81:b7:7d:00:80:c8:4f:46:b6:9d:ed:39:46:5b:53:
12:a5:83:ef:c2:46:7d:3e:ce:6c:cd:f1:83:80:ae:b0:bd:5c:
2c:dd:46:8e:0c:4b:f4:5d:83:4f:4e:09:75:13:10:e4:8c:e2:
78:0d:c5:4f:5a:8a:18:dc:d8:05:fb:51:0b:94:40:dd:1b:f9:
f1:29:51:46:5f:3f:3c:f5:a7:5f:58:85:76:0d:81:ca:3c:75:
f6:b2:9b:e0:50:85:b7:7e:18:08:7b:f3:5a:01:18:6f:04:20:
0d:47:f0:05:51:5c:24:b3:ac:b8:bc:27:7f:33:9a:ed:63:89:
fa:6b:85:81:df:e3:b7:f1:ab:26:72:a3:8e:dd:c5:ac:56:9e:
12:ee:4e:57:93:b3:7f:a6:a1:a4:c8:e7:5e:e4:46:69:09:9c:
22:5b:26:5b:95:c9:bc:20:d7:c8:f5:58:02:0d:20:8a:6a:7e:
f1:36:35:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:49:53 2026 by rpki-client