Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: shOlp2fDsmlRzvte2Xs0nzW+lq6wWYcdNK231Bwatko=
Subject key identifier: 3F:C3:20:09:23:85:03:9D:90:B3:0F:5F:91:40:75:BF:56:85:38:9F
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019D98BD4A37186E3405A0C87D4C30693C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0DAA
Signing time: Fri 17 Apr 2026 00:00:35 +0000
Manifest this update: Fri 17 Apr 2026 00:00:35 +0000
Manifest next update: Sat 18 Apr 2026 00:00:35 +0000
Files and hashes: 1: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (hash: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk=)
2: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: /2WTFcEmzy8z6uw/hipPiHExxDFSGgwuL3zxidP6Cy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:4a:37:18:6e:34:05:a0:c8:7d:4c:30:69:3c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Apr 17 00:00:35 2026 GMT
Not After : Apr 18 00:00:35 2026 GMT
Subject: CN=3fc320092385039d90b30f5f914075bf5685389f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:13:cb:b9:b0:ce:da:8d:d9:73:7d:39:7c:
38:43:1e:28:2b:d5:0b:dc:71:19:73:be:ab:97:c9:
09:81:58:33:e2:1e:f9:69:51:6c:ec:7f:a1:a5:c4:
25:3e:a2:a9:f4:de:bc:c2:f6:00:a4:37:e9:16:88:
a0:1c:09:dc:af:8e:ff:aa:49:f4:d4:71:b7:80:e3:
f0:b3:52:3c:a6:c9:03:96:9e:e2:ac:7c:6e:80:10:
1c:a0:9f:04:ce:9d:b8:d2:94:db:99:65:27:c5:45:
69:d8:94:2b:03:e9:9b:80:c3:51:35:67:04:1e:02:
2b:a4:f1:90:54:fd:ea:62:97:f9:5e:d0:50:f0:87:
a6:c5:51:2d:67:d4:83:04:34:8b:55:86:47:6d:77:
3b:87:77:e8:5f:a5:ec:b1:40:44:f2:e0:be:cd:b5:
41:2d:3e:ce:0d:2d:73:0b:76:59:fd:fc:2e:15:50:
eb:86:89:b7:1b:34:3a:ee:7d:6d:9f:c3:40:1a:9d:
c8:29:4f:94:16:4c:d5:9a:74:f4:f5:67:b2:c8:2e:
d6:5c:50:73:60:b4:01:2c:f9:f0:3b:34:58:1e:2a:
5b:7e:f5:45:a6:a1:8b:d1:fa:f4:95:18:af:0f:37:
5a:06:b0:3f:4c:ed:be:7a:4a:45:49:c7:08:4b:a7:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C3:20:09:23:85:03:9D:90:B3:0F:5F:91:40:75:BF:56:85:38:9F
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:5c:b0:5d:0d:12:ee:c0:59:ef:6b:5b:af:0d:56:71:c2:f1:
a2:e3:89:97:01:2f:30:f4:99:8e:a5:a0:b4:b5:7a:e4:3c:36:
73:29:33:87:ac:60:42:89:ae:61:08:43:8f:d8:7a:40:e4:4b:
7d:67:b3:f4:5c:b9:39:76:9c:d4:6c:ab:ef:d9:3b:7d:07:b7:
4e:aa:3b:02:bc:eb:96:e9:61:84:8a:3b:6e:da:98:7e:9a:e6:
60:ca:77:bb:a1:70:87:8f:22:0d:d9:a0:26:11:ca:31:2a:d0:
30:88:4e:ad:69:f5:0d:1c:f2:4f:1b:fd:4c:41:b1:9a:71:93:
58:16:f5:24:4e:9e:7b:59:89:c0:d1:29:27:af:af:b7:80:72:
0a:96:3e:5a:d9:18:c0:05:67:dc:a3:75:33:56:98:ab:bd:25:
94:53:d8:f4:e2:1e:b0:3f:99:5e:c0:d0:88:2a:3c:f7:7c:34:
62:65:3c:85:a6:0c:b7:26:7c:c2:f9:2a:b3:3f:07:ba:df:bb:
59:51:65:7c:c0:aa:5e:7a:53:82:bf:1e:75:e0:d2:40:32:3c:
2d:44:2e:32:59:af:a8:57:10:a8:20:0b:0f:49:f4:5c:a9:80:
a3:fd:5c:a6:d0:94:15:10:3f:45:9e:0a:54:7a:24:86:57:59:
e8:72:99:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:23:16 2026 by rpki-client