Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
File: O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft (raw, json)
Hash identifier: VtqbXXjbo4rutyt98UnOLcZLNmXS2DLE1VEgFJxoZW8=
Subject key identifier: 12:9B:B4:35:CD:68:27:15:50:51:25:26:90:E3:ED:E9:06:B7:E3:E5
Authority key identifier: 3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
Certificate issuer: /CN=3bee6066bb652c648c7a87099d0d9354546060d3
Certificate serial: 019D9AAC0CF8C8FC6256EC07CA98D4EE0557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 09:00:59 +0000
Manifest this update: Fri 17 Apr 2026 09:00:59 +0000
Manifest next update: Sat 18 Apr 2026 09:00:59 +0000
Files and hashes: 1: O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl (hash: t3h6N0hbvmTPAgJ0b8/N2yGMfxCu7iRYfIJ7dyyA7V0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:0c:f8:c8:fc:62:56:ec:07:ca:98:d4:ee:05:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bee6066bb652c648c7a87099d0d9354546060d3
Validity
Not Before: Apr 17 09:00:59 2026 GMT
Not After : Apr 18 09:00:59 2026 GMT
Subject: CN=129bb435cd6827155051252690e3ede906b7e3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d3:55:7b:ac:e8:05:cc:d1:0a:7c:37:d2:09:
55:8d:94:f7:f6:9b:5a:78:fb:54:97:c6:4c:23:62:
40:a7:99:d6:ca:3f:06:10:ab:62:df:ee:10:fd:53:
2e:b0:c9:b2:5e:c2:c4:0f:5c:67:a7:a8:af:0e:cf:
e5:66:3d:9e:b0:7f:64:64:b4:51:b2:d9:60:cf:30:
cb:c8:12:cf:1d:87:4f:a7:c1:1e:3c:c7:57:db:0d:
be:9e:fb:3e:5e:70:c0:00:c6:06:85:80:5f:f9:8d:
a7:8c:20:2d:4e:37:eb:ca:36:77:87:69:af:7f:ee:
f2:8b:3b:b4:a5:43:29:6e:f8:7d:94:08:d4:b5:63:
9e:ae:4e:eb:56:5f:4f:c5:30:c0:46:86:4b:20:d2:
6a:03:a7:06:f6:17:43:25:d8:41:f2:e3:19:ff:0b:
08:e5:04:d5:54:c0:5a:a8:d9:c5:42:b4:12:3c:30:
44:5d:30:da:f3:f1:7a:5c:2e:bd:6b:2d:32:d1:4f:
07:0d:7e:14:10:d8:1c:4f:97:e0:ef:d8:5c:00:e0:
2e:0e:21:66:0a:86:83:5f:54:b3:5d:47:61:61:b6:
53:44:18:67:62:33:79:d8:b9:49:64:59:06:7c:cf:
2b:9e:c1:ad:00:50:f2:4c:10:1c:1a:58:8f:96:03:
53:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:9B:B4:35:CD:68:27:15:50:51:25:26:90:E3:ED:E9:06:B7:E3:E5
X509v3 Authority Key Identifier:
keyid:3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:cf:c0:6f:5a:1b:51:50:95:06:76:77:00:68:7c:ed:44:b0:
60:1f:32:46:9e:9e:5a:42:20:ab:41:02:0c:3f:4b:5a:6b:54:
fc:1b:48:29:e1:2f:b7:48:ce:63:c4:48:f4:d1:d6:47:27:d2:
6c:39:be:04:ef:ed:86:3b:15:56:83:bc:7d:e7:0f:d5:3d:dd:
79:4e:b6:ac:19:ba:9a:28:2e:ed:f6:4a:99:64:0b:77:7b:25:
a8:83:f6:3a:77:ce:0e:53:87:bf:f2:c9:f3:e4:f9:dc:13:2b:
9a:59:8f:ad:32:db:a8:dd:81:28:5e:19:86:51:40:6b:fc:11:
ab:f1:00:b1:e7:64:70:da:9b:af:1a:a6:96:63:a9:b1:4a:1e:
e0:bd:23:f8:72:54:93:7c:4e:11:1a:3f:55:7e:85:ea:72:27:
2d:1a:1a:d9:36:d7:bd:5f:85:2a:a7:00:43:be:52:76:9e:15:
0e:cc:31:3b:69:e6:6f:57:cc:61:64:41:72:00:4a:b5:5a:56:
77:e5:e9:dd:8f:fe:57:09:ed:5a:a4:ce:45:0e:62:ea:a4:b9:
1f:8c:21:84:b9:ea:ac:3a:98:46:03:36:1b:5e:86:a2:b4:c1:
5d:1e:c7:92:06:13:e2:30:74:f7:2c:3e:66:17:ce:ce:6f:2c:
ab:b7:a3:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arAz4yPxiVuwHypjU7gVXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZWU2MDY2YmI2NTJjNjQ4YzdhODcwOTlkMGQ5MzU0NTQ2
MDYwZDMwHhcNMjYwNDE3MDkwMDU5WhcNMjYwNDE4MDkwMDU5WjAzMTEwLwYDVQQD
EygxMjliYjQzNWNkNjgyNzE1NTA1MTI1MjY5MGUzZWRlOTA2YjdlM2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNNVe6zoBczRCnw30glVjZT39pta
ePtUl8ZMI2JAp5nWyj8GEKti3+4Q/VMusMmyXsLED1xnp6ivDs/lZj2esH9kZLRR
stlgzzDLyBLPHYdPp8EePMdX2w2+nvs+XnDAAMYGhYBf+Y2njCAtTjfryjZ3h2mv
f+7yizu0pUMpbvh9lAjUtWOerk7rVl9PxTDARoZLINJqA6cG9hdDJdhB8uMZ/wsI
5QTVVMBaqNnFQrQSPDBEXTDa8/F6XC69ay0y0U8HDX4UENgcT5fg79hcAOAuDiFm
CoaDX1SzXUdhYbZTRBhnYjN52LlJZFkGfM8rnsGtAFDyTBAcGliPlgNTHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBKbtDXNaCcVUFElJpDj7ekGt+PlMB8GA1UdIwQY
MBaAFDvuYGa7ZSxkjHqHCZ0Nk1RUYGDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTy01Z1pydGxMR1NNZW9jSm5RMlRWRlJnWU5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9kMjljZjAtNDA2NC00OThhLThkZTMt
MTE2NDZiZTE2NzIzLzEvTy01Z1pydGxMR1NNZW9jSm5RMlRWRlJnWU5NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9kMjljZjAtNDA2NC00OThhLThkZTMtMTE2NDZiZTE2NzIz
LzEvTy01Z1pydGxMR1NNZW9jSm5RMlRWRlJnWU5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8/Ab1ob
UVCVBnZ3AGh87USwYB8yRp6eWkIgq0ECDD9LWmtU/BtIKeEvt0jOY8RI9NHWRyfS
bDm+BO/thjsVVoO8fecP1T3deU62rBm6migu7fZKmWQLd3slqIP2OnfODlOHv/LJ
8+T53BMrmlmPrTLbqN2BKF4ZhlFAa/wRq/EAsedkcNqbrxqmlmOpsUoe4L0j+HJU
k3xOERo/VX6F6nInLRoa2TbXvV+FKqcAQ75Sdp4VDswxO2nmb1fMYWRBcgBKtVpW
d+Xp3Y/+VwntWqTORQ5i6qS5H4whhLnqrDqYRgM2G16GorTBXR7HkgYT4jB09yw+
ZhfOzm8sq7ej/Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:06:28 2026 by rpki-client