Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: 9dI03gfJFiu/HwGRIOfyUIhwAHy8VwLgR8Gyj63k8UA=
Subject key identifier: 7D:22:A9:05:CB:F0:28:0C:31:2C:8A:2F:E3:EC:23:27:81:0E:76:B6
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 019E20235A753ABD3C7D7A6E8FC7D5F39D72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 05A2
Signing time: Wed 13 May 2026 07:00:48 +0000
Manifest this update: Wed 13 May 2026 07:00:48 +0000
Manifest next update: Thu 14 May 2026 07:00:48 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: Gl3jqL/jKKPDYbsuCZelM85ua0cVAiyRPpIiSHkRzLI=)
2: VbL2QWZ9Kg8L1pE36SvfZYyr8Ts.roa (hash: sfB+nZS7Puz64duDQmVXVvH/Ydql31OyVDJAMGHxmwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:5a:75:3a:bd:3c:7d:7a:6e:8f:c7:d5:f3:9d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: May 13 07:00:48 2026 GMT
Not After : May 14 07:00:48 2026 GMT
Subject: CN=7d22a905cbf0280c312c8a2fe3ec2327810e76b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:38:4a:78:7e:a9:62:14:aa:09:eb:bd:01:d1:
a9:89:18:ae:47:cb:79:47:d4:a8:b8:5c:a3:fb:07:
d1:ce:7d:52:4f:4a:34:b9:52:d3:b7:ff:a3:10:06:
3b:0f:96:24:59:1f:ad:6e:63:1b:b8:15:2c:5a:03:
23:e1:3d:24:3b:5b:da:7d:30:b4:fb:a5:e9:6d:29:
d2:af:ce:98:50:76:bf:a0:b9:aa:32:8f:b5:d8:8f:
77:f6:a9:f4:9f:bb:57:22:ce:90:ef:3e:47:a7:fd:
63:e3:a0:d5:10:86:a6:4c:47:08:7e:0b:6a:15:0e:
98:90:9a:6d:01:0f:e8:3c:a3:4f:3c:83:2e:90:5e:
d9:2d:cc:bd:c2:3d:73:a8:d6:a7:9e:f3:5f:0a:6d:
f3:0e:36:f1:2c:47:b6:be:ad:59:d6:b5:e2:cc:6a:
65:c0:66:82:3b:97:fd:95:81:2f:3f:ce:b3:68:89:
9a:30:45:62:7f:ae:01:88:06:67:98:42:38:c6:3c:
cc:49:fc:09:d6:74:ee:a5:d0:45:98:7e:fb:bf:f1:
f0:4f:a5:7e:83:95:c5:24:b7:4e:c4:23:cf:73:f2:
e5:1a:59:0a:29:38:67:51:ce:49:8d:4b:a3:af:db:
1c:cc:a1:4a:f3:06:c3:f7:e1:a9:e7:4d:74:cd:d0:
1d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:22:A9:05:CB:F0:28:0C:31:2C:8A:2F:E3:EC:23:27:81:0E:76:B6
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f3:49:a2:ff:9e:64:98:98:22:3b:b5:92:f1:76:86:22:d3:94:
a0:33:b2:95:8f:5f:e9:c1:d9:49:2c:3a:58:dd:03:6a:88:d5:
63:63:31:cd:56:14:be:67:0f:f5:c2:60:34:0f:ee:2b:c7:0d:
78:16:fe:88:d7:6d:de:4d:12:3a:3d:3b:d9:f2:06:6a:05:55:
f1:28:8c:42:4d:f9:91:79:54:46:81:bb:33:ca:9d:e2:a1:fa:
da:96:d7:8c:91:30:29:cb:07:50:a3:1a:3f:8f:58:cc:89:bf:
4c:ec:b3:a0:07:85:fc:81:a0:d6:64:bd:30:4c:b0:ec:74:d4:
cb:e6:a9:a1:26:0a:e6:fe:d3:23:5d:91:02:a9:bb:bb:d9:d9:
c6:a1:e4:d3:be:15:bf:d1:18:6b:a9:de:18:a7:af:b1:6b:25:
81:99:a4:57:4d:0f:5d:9e:f7:ee:0d:91:4e:0c:f9:22:5e:84:
51:5b:57:ce:95:8f:8a:8c:cb:51:a6:9d:cb:c0:e0:af:69:b9:
31:37:fe:1a:0d:31:51:7d:6f:aa:18:1b:61:1e:7b:38:29:60:
09:f0:34:9f:55:3a:16:b4:2c:25:61:1b:df:ca:0c:a0:20:c8:
b8:fc:68:fe:75:20:25:be:7d:40:cd:49:86:30:a0:9e:f0:a8:
d2:8c:92:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:16:47 2026 by rpki-client