Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
File: O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft (raw, json)
Hash identifier: kHyirJ15zHHl6J+Hn6c4dRXpbbDfq8xWIRAbUqlaAA0=
Subject key identifier: D9:6E:B0:23:34:C9:1D:2E:69:03:5B:06:9E:7B:14:DA:7B:1C:73:BD
Authority key identifier: 3B:55:E7:FE:B9:07:13:72:99:F5:79:2C:36:39:5E:FB:A9:B3:4B:62
Certificate issuer: /CN=3b55e7feb907137299f5792c36395efba9b34b62
Certificate serial: 019D9B87886503678FC04B8041A97381CAF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
Manifest number: 1169
Signing time: Fri 17 Apr 2026 13:00:43 +0000
Manifest this update: Fri 17 Apr 2026 13:00:43 +0000
Manifest next update: Sat 18 Apr 2026 13:00:43 +0000
Files and hashes: 1: O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl (hash: oX+tfoZ5r+JEz0O5euu3z3CyJRYyn57Jju+ou83ly4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:88:65:03:67:8f:c0:4b:80:41:a9:73:81:ca:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b55e7feb907137299f5792c36395efba9b34b62
Validity
Not Before: Apr 17 13:00:43 2026 GMT
Not After : Apr 18 13:00:43 2026 GMT
Subject: CN=d96eb02334c91d2e69035b069e7b14da7b1c73bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:28:e2:ba:74:82:2f:d0:5a:6b:3c:07:9e:3d:
b4:7f:0f:4e:7f:86:21:23:77:0b:87:43:9e:f5:df:
da:8e:82:e0:11:9b:fa:0e:e9:e9:87:f1:06:f6:86:
6a:7d:3e:ce:f1:3e:6a:45:18:f6:39:ba:db:f4:41:
a0:ca:d9:5c:f3:9c:94:3b:9f:90:1c:9e:fc:65:5c:
42:a8:3a:a8:0c:16:17:a4:b5:2b:f5:e1:47:ed:79:
a1:49:c2:87:b8:4c:2c:70:43:61:51:1f:c8:7f:72:
8c:59:9c:e3:5b:15:14:56:36:c2:30:ea:a9:0d:f7:
5b:6e:d8:cd:bc:ad:ad:53:ca:a2:f9:72:83:38:24:
28:5d:9f:2f:06:02:b9:f8:96:10:2d:eb:0c:b7:60:
49:28:fc:39:04:3c:0f:93:fc:01:b8:54:98:e8:08:
bd:76:ad:0f:b9:05:f1:60:f7:82:80:1e:c7:3d:db:
9e:66:ac:c3:e2:bc:07:43:eb:b3:ed:35:7f:34:d8:
0d:4e:d0:93:06:82:3e:9b:76:e0:e7:56:e3:aa:34:
1c:09:63:56:ea:cb:b7:a2:af:20:cc:92:73:8d:aa:
8c:e3:4e:f6:ed:5a:07:f2:42:62:e1:d9:31:28:96:
91:b6:63:58:7c:ce:41:8b:4b:f3:93:9e:04:ab:ea:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6E:B0:23:34:C9:1D:2E:69:03:5B:06:9E:7B:14:DA:7B:1C:73:BD
X509v3 Authority Key Identifier:
keyid:3B:55:E7:FE:B9:07:13:72:99:F5:79:2C:36:39:5E:FB:A9:B3:4B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:bb:34:6c:2c:56:86:a2:e2:a2:74:28:7a:af:9f:9b:2e:c6:
c9:ac:e2:dd:a8:f2:c3:69:a7:66:d5:53:6f:fe:24:6b:be:f7:
e1:66:41:f1:6b:95:5e:9b:ee:de:a2:97:06:bf:cf:d8:7e:60:
8d:64:8b:84:ef:45:41:dc:c1:70:0b:59:c9:24:12:ef:00:98:
28:3b:e1:64:84:0a:10:06:7a:08:1f:c9:59:df:a5:55:f3:b2:
f7:83:49:82:4b:3c:cd:4c:03:c9:5b:ba:af:75:6f:35:32:0d:
d7:f3:61:06:d2:92:ad:e4:c6:07:98:43:78:11:9b:7f:5a:cd:
62:df:71:b5:01:75:d4:60:4f:6e:c7:6d:d7:5b:5a:dd:86:87:
da:f0:82:a5:92:96:99:f7:ad:c8:1b:79:1c:da:bc:07:89:2f:
a9:48:ee:60:d9:c9:26:f5:08:b1:73:61:ae:a4:f5:6c:01:da:
0b:84:dd:59:cf:d2:ca:a9:30:1a:5a:11:9e:8d:4d:02:5f:9e:
f0:ec:e4:96:a7:c2:96:78:b8:4b:b5:25:bb:60:e9:72:47:40:
14:ba:e9:73:e6:f8:a3:57:2d:b5:73:98:b7:7f:16:47:88:86:
40:af:9c:79:34:a8:a4:2d:42:d9:5b:99:bd:e3:f1:5c:dc:65:
c7:17:cb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:19:51 2026 by rpki-client