Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
File: O9VD0EZeovb-uCjxhQSwP0A6xmk.mft (raw, json)
Hash identifier: 9eNPIyNyFQHwJJHuK0Qid7Lep/s+Coa044+svbcQX6w=
Subject key identifier: 12:D2:AD:F2:E3:E0:8E:9A:6B:E8:88:4E:75:33:01:37:10:84:D6:4F
Authority key identifier: 3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
Certificate issuer: /CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Certificate serial: 019D9A74AF6FE38A41349D74BD713139CBEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
Manifest number: 12FD
Signing time: Fri 17 Apr 2026 08:00:31 +0000
Manifest this update: Fri 17 Apr 2026 08:00:31 +0000
Manifest next update: Sat 18 Apr 2026 08:00:31 +0000
Files and hashes: 1: GPPevbImSvGjVqWAzYGvcpc3FOs.roa (hash: MHorAz/UCfb7aKgx7pKoBAkAFlLncJNyaH/wm4EHMOY=)
2: O9VD0EZeovb-uCjxhQSwP0A6xmk.crl (hash: S83Csgsw1hSukkAOrZHWo6fmB9kBfMfotUe8lA8fjX0=)
3: XD7uuC6NUKDza7PfKtc_jHz7EnA.roa (hash: RPYu/+kKueNaM8YfpMGx6Mxi+JGMI3A7i1eBXpiVPd4=)
4: ntt8oBWCvDCUpNDHjPuie_5MUck.roa (hash: Yy1s4qDW987rNxjvZEbp1rZR84GXQU0RB/faIrx/grE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:af:6f:e3:8a:41:34:9d:74:bd:71:31:39:cb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Validity
Not Before: Apr 17 08:00:31 2026 GMT
Not After : Apr 18 08:00:31 2026 GMT
Subject: CN=12d2adf2e3e08e9a6be8884e753301371084d64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:7b:b6:81:92:78:42:40:cc:b6:11:2f:d5:
a2:6f:88:82:a4:d2:6b:21:6f:88:1a:5f:70:1f:a4:
5b:5d:c6:f7:9d:72:00:be:2b:c9:af:07:51:b1:35:
4c:5e:80:b0:76:c3:9a:c4:32:13:73:ae:14:a1:0b:
cd:5c:06:5e:75:14:77:e6:9b:4d:cf:9b:43:e3:ec:
a7:8d:c1:f0:66:f6:8a:89:4f:33:07:aa:86:50:58:
ff:34:5b:c7:24:94:d3:94:01:df:ee:dd:b0:22:48:
5e:8d:52:e1:a4:7a:e2:18:04:46:59:66:e3:56:d4:
4a:8d:d7:29:5e:6c:d0:9a:8b:7b:6f:93:5f:6d:69:
a9:d2:d5:86:5a:97:3a:08:bd:c1:f3:2f:79:0d:5e:
cf:6c:23:4d:0f:c0:4f:92:b4:db:1d:2b:87:b3:6b:
ea:f8:29:9c:df:3d:72:1a:71:77:e4:94:dd:d0:3f:
ed:52:67:a2:45:90:92:2b:24:9b:06:de:73:8a:32:
ba:cf:de:35:ea:82:72:22:81:00:fa:e7:35:2b:e2:
46:23:a3:c2:a3:b8:17:42:e0:1d:d4:aa:b5:fc:f5:
3c:af:09:dc:ea:77:d3:e0:34:36:2a:21:61:fe:97:
d6:ba:04:54:6e:0c:b3:5b:0d:c5:80:25:b5:3b:24:
db:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D2:AD:F2:E3:E0:8E:9A:6B:E8:88:4E:75:33:01:37:10:84:D6:4F
X509v3 Authority Key Identifier:
keyid:3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:e2:cf:d1:1f:25:c7:b9:e7:19:e5:be:19:7c:fd:aa:77:fd:
2e:06:c8:45:36:69:ea:21:4e:93:e6:10:75:48:a2:e1:c1:9a:
30:34:50:8a:13:e6:27:c6:ee:04:12:bb:19:47:d8:39:ae:f1:
5e:1d:14:90:cb:8d:98:cf:26:9c:f4:b6:81:2e:7f:f8:c0:53:
07:50:3c:6b:00:58:a9:26:c0:99:69:78:6f:e6:20:9c:fe:ce:
b1:66:5c:b2:93:6a:8e:18:3d:4d:3d:13:e7:76:02:96:5b:07:
c8:82:75:b9:88:e2:45:ce:75:fa:02:f0:02:63:8b:61:d3:e7:
96:b6:5a:c0:66:e5:11:aa:60:be:c7:ac:34:b7:14:55:32:e0:
96:0c:99:cc:5f:41:f8:cf:14:2f:63:cd:69:92:77:68:5a:eb:
38:69:07:c4:32:7e:df:14:62:1b:cd:51:dd:5a:a1:ab:4e:d4:
7c:25:bc:74:8a:46:fb:ab:76:3f:9c:69:e6:f2:b9:61:06:29:
88:8e:5c:1c:7a:ce:5e:98:6b:7a:ed:33:b2:8e:13:32:87:3f:
53:60:32:e0:55:7d:b6:93:a2:63:da:3c:f8:23:b7:c7:7e:17:
19:ea:71:7c:95:49:4c:2f:81:8c:85:64:b1:f9:80:dd:fe:34:
2c:9e:7d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:18:40 2026 by rpki-client