Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json)
Hash identifier: wS7nzW6mfdrkelUEzfhOeE7DFdS2Jhi8qkw2qGqnrUU=
Subject key identifier: 5D:64:66:7D:11:DD:EE:A1:E6:E6:E5:46:2F:3D:18:FB:DE:FE:DD:D1
Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Certificate serial: 019D2703BEF1FFA326A787C2BC9903ABBA69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
Manifest number: 0CA3
Signing time: Wed 25 Mar 2026 22:00:49 +0000
Manifest this update: Wed 25 Mar 2026 22:00:49 +0000
Manifest next update: Thu 26 Mar 2026 22:00:49 +0000
Files and hashes: 1: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: qTVDGxcy/U8uE2agxYUxkhpJXzl3tNuL68clurE8c9M=)
2: C5-n76GjDGgTo3St4TOPzsa8ErE.roa (hash: wL0KAphUIwIQECc1NQQKJ/DAF+DOTBb5tCVgPHb/KS0=)
3: dMiPF5hRDsmVGyczjp5h0yMXvNA.roa (hash: 3OGMUms6N3Q+YmbW4ivKKL6p/UH/QnXPY3TzgOYxtkk=)
4: yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa (hash: qLNfF2ctfPtKdPk/SFwkzQElr0ANhZieliEEgaCLo18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:be:f1:ff:a3:26:a7:87:c2:bc:99:03:ab:ba:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Validity
Not Before: Mar 25 22:00:49 2026 GMT
Not After : Mar 26 22:00:49 2026 GMT
Subject: CN=5d64667d11ddeea1e6e6e5462f3d18fbdefeddd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8a:27:02:a3:35:a6:6c:19:01:2b:c4:d6:2e:
ff:cc:2c:9a:bf:bc:4b:9a:2a:82:da:29:f8:4e:23:
26:60:fd:62:72:76:c6:47:33:36:23:65:69:b4:b2:
5a:c2:14:aa:02:93:f7:23:79:41:13:00:17:9e:3a:
27:6e:7d:8d:48:42:7e:1f:5a:39:ad:e4:a7:5d:87:
65:31:6d:14:b0:22:39:06:05:71:b0:be:c1:97:ab:
45:cd:6c:2c:8b:ff:41:1c:46:c1:b9:7e:4e:83:91:
5f:d8:e1:88:b6:14:68:33:a7:c2:ec:20:a3:33:69:
42:3f:58:0b:84:1b:f3:c2:b1:28:6c:b3:a2:35:dd:
b5:37:e3:b5:5b:3c:21:c2:7e:2d:34:01:f9:dc:25:
6d:2d:96:4a:02:e4:fe:60:25:25:77:6e:40:9a:2f:
d5:83:35:cf:f1:97:5d:b7:04:6e:76:4f:27:2d:55:
ef:4a:62:00:b4:7b:60:9b:96:d8:8a:9e:97:0c:e9:
13:28:d8:6d:a4:09:c2:cf:51:e2:33:01:0f:d9:05:
ef:72:09:37:a8:5d:af:2e:18:25:42:64:ed:e4:e6:
87:50:e0:98:ed:6b:ab:b0:e2:66:18:0e:9a:b7:50:
6c:81:8b:0e:8b:6e:76:ee:15:6b:75:c4:95:e3:c4:
4b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:64:66:7D:11:DD:EE:A1:E6:E6:E5:46:2F:3D:18:FB:DE:FE:DD:D1
X509v3 Authority Key Identifier:
keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:cc:d0:16:44:b5:23:fc:b9:b8:b8:cc:51:a0:1d:34:42:a9:
1f:04:44:f8:96:e1:1b:c0:88:0d:ea:7a:a6:69:12:cc:9d:ea:
02:1b:41:62:81:77:e9:4e:a5:17:b0:23:60:b3:fa:4b:b6:82:
b8:b8:dd:1a:10:8b:63:d1:93:17:f6:26:f4:c9:73:77:01:64:
fb:6b:b6:49:1f:59:ee:64:c5:7e:90:f3:62:16:22:21:63:90:
58:d1:cc:80:a4:24:e3:43:ab:8d:c1:69:37:b3:8a:ed:63:9f:
00:a5:e9:eb:ef:7f:66:59:a4:d3:f2:03:8c:d1:27:79:f0:7a:
37:f0:6e:4c:23:ca:07:21:ac:bb:f7:db:68:ec:f0:e9:70:ee:
81:77:13:47:af:84:56:bb:a8:e0:54:f3:fc:22:5e:3e:dd:48:
c8:bd:06:a8:b1:1f:0c:e0:c6:f8:d8:6a:22:0d:39:2f:fa:8c:
f9:f8:74:b3:d0:50:19:ee:9e:1b:27:48:ba:bd:f8:4b:43:c7:
13:43:17:a8:49:9e:9d:29:f8:41:d7:d0:3f:d1:71:f6:58:24:
fd:77:22:0c:59:77:76:4f:80:ed:d3:d3:f5:d2:d2:2b:7b:83:
e8:cf:30:79:2c:b1:17:96:24:ac:7a:08:9d:e3:c6:8e:15:b7:
0d:05:1f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:31 2026 by rpki-client