Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
File: O9mhd7td-26r5MrXne-PiwBd9lY.mft (raw, json)
Hash identifier: 54GqU2fmBRL1aQOAhZOU/jzX2XMDs40NwJok6SA59Y8=
Subject key identifier: 23:74:0D:BC:91:10:9E:C9:70:B4:33:2B:09:1A:20:72:FC:A9:A7:41
Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
Certificate issuer: /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Certificate serial: 019CAD90773209223F1593D09A3F661E6C63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
Manifest number: 1391
Signing time: Mon 02 Mar 2026 08:00:51 +0000
Manifest this update: Mon 02 Mar 2026 08:00:51 +0000
Manifest next update: Tue 03 Mar 2026 08:00:51 +0000
Files and hashes: 1: 1-XNUwWKzbev3eBkOpcFm2xBkpoQ.roa (hash: /XJqAINdnXXDOWVdvq7kHAw4+acFhC/fD2KcJxKL5nQ=)
2: Bi5LXJXtXaqWu85feTd5MY6-MmU.roa (hash: j5lYG+Y4b77KtRu85Ljxo9pZvkjx9vw5hisZYWyAQ2I=)
3: O9mhd7td-26r5MrXne-PiwBd9lY.crl (hash: oYwAFhJeyZ4duOoJXHSbkXQVY08y6G7gpmNR7lOzAAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:77:32:09:22:3f:15:93:d0:9a:3f:66:1e:6c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Validity
Not Before: Mar 2 08:00:51 2026 GMT
Not After : Mar 3 08:00:51 2026 GMT
Subject: CN=23740dbc91109ec970b4332b091a2072fca9a741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:47:a4:2e:04:38:3f:70:11:b9:ee:94:77:d0:
8e:ca:e0:5c:4d:a1:14:9e:9c:63:d6:22:e7:ba:16:
ec:a7:55:80:26:a5:18:0a:b7:5c:3f:a5:52:6b:ad:
57:3b:da:b8:7e:18:f4:cd:06:31:e1:4e:ff:b7:3f:
53:5c:77:26:12:98:65:a0:58:45:03:8e:c3:3f:8b:
2b:88:9f:6f:b5:1f:cc:cf:9c:dd:38:87:ba:7c:71:
00:b6:5a:fe:8f:7e:9c:d1:91:20:7c:cc:ae:cc:0b:
27:b3:00:8f:21:b8:25:ca:dc:32:44:f3:20:e8:6d:
74:fb:98:e3:2d:73:c6:6d:e4:8e:26:e2:ab:92:ca:
0f:17:7e:65:fb:ef:16:c6:88:4b:c1:95:fa:ad:4f:
e3:f8:34:8a:5f:f4:8c:d6:2b:1f:05:c1:d6:6f:3b:
5f:98:64:45:7e:c8:d0:fa:4e:41:9d:59:98:92:7a:
eb:ea:8d:5b:90:68:06:a5:f4:f3:79:9c:26:53:b6:
b2:4e:41:54:85:ae:31:1d:c6:01:dc:f4:d7:6a:df:
db:f1:a7:70:ed:2c:38:88:96:c5:91:f8:13:fb:d2:
23:c8:a7:50:d7:01:3d:fb:0a:6f:dc:9d:c6:58:06:
4d:b4:06:1d:a9:85:e2:61:32:4a:5c:41:eb:03:33:
b4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:74:0D:BC:91:10:9E:C9:70:B4:33:2B:09:1A:20:72:FC:A9:A7:41
X509v3 Authority Key Identifier:
keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:01:2b:85:e4:a5:fe:f0:cd:1c:c4:43:f8:eb:9a:38:8d:f1:
c8:72:a2:02:4d:a4:0e:d0:6e:e9:5e:a3:5d:86:02:c0:1b:ce:
cd:79:80:ef:71:df:8e:6f:2a:74:c9:3a:b6:98:8d:78:e9:92:
af:4d:41:fd:8d:1e:01:13:f8:4f:be:9e:40:42:40:6e:86:d9:
31:e7:a7:c3:06:e8:93:50:93:61:0e:a4:66:05:05:28:41:46:
e7:bf:4b:2b:2a:57:ea:a2:b6:b3:d7:b6:e8:8a:3f:6d:33:8b:
d1:75:d4:d6:f1:63:93:77:07:b3:46:7f:e2:1e:98:89:34:74:
27:3a:de:74:f4:18:3d:23:60:3b:c0:c4:86:5e:8a:10:0e:28:
d5:a7:d0:b3:b8:ac:97:84:5e:c9:4b:a4:dc:44:79:81:e5:81:
8f:55:6b:26:80:f1:73:f7:5b:1b:ce:b5:a8:29:77:c3:f5:0a:
dd:13:c5:f9:c4:ed:d0:72:96:5c:39:d4:2a:d1:8e:bc:84:f3:
64:36:6e:92:1d:8c:c7:e5:7f:b2:f9:e1:67:76:70:40:b6:ae:
e0:57:5c:c2:cb:17:53:fd:df:cd:b4:b4:e0:e2:8e:ee:fd:fd:
0c:e0:4e:eb:38:5a:29:b2:f7:b5:55:fa:c9:a6:33:54:40:58:
b3:f3:7c:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytkHcyCSI/FZPQmj9mHmxjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZDlhMTc3YmI1ZGZiNmVhYmU0Y2FkNzlkZWY4ZjhiMDA1
ZGY2NTYwHhcNMjYwMzAyMDgwMDUxWhcNMjYwMzAzMDgwMDUxWjAzMTEwLwYDVQQD
EygyMzc0MGRiYzkxMTA5ZWM5NzBiNDMzMmIwOTFhMjA3MmZjYTlhNzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEekLgQ4P3ARue6Ud9COyuBcTaEU
npxj1iLnuhbsp1WAJqUYCrdcP6VSa61XO9q4fhj0zQYx4U7/tz9TXHcmEphloFhF
A47DP4sriJ9vtR/Mz5zdOIe6fHEAtlr+j36c0ZEgfMyuzAsnswCPIbglytwyRPMg
6G10+5jjLXPGbeSOJuKrksoPF35l++8WxohLwZX6rU/j+DSKX/SM1isfBcHWbztf
mGRFfsjQ+k5BnVmYknrr6o1bkGgGpfTzeZwmU7ayTkFUha4xHcYB3PTXat/b8adw
7Sw4iJbFkfgT+9IjyKdQ1wE9+wpv3J3GWAZNtAYdqYXiYTJKXEHrAzO0VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCN0DbyREJ7JcLQzKwkaIHL8qadBMB8GA1UdIwQY
MBaAFDvZoXe7Xftuq+TK153vj4sAXfZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUt
ZTM4MDMwYjY5ZDVhLzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUtZTM4MDMwYjY5ZDVh
LzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhgErheSl
/vDNHMRD+OuaOI3xyHKiAk2kDtBu6V6jXYYCwBvOzXmA73Hfjm8qdMk6tpiNeOmS
r01B/Y0eARP4T76eQEJAbobZMeenwwbok1CTYQ6kZgUFKEFG579LKypX6qK2s9e2
6Io/bTOL0XXU1vFjk3cHs0Z/4h6YiTR0JzredPQYPSNgO8DEhl6KEA4o1afQs7is
l4ReyUuk3ER5geWBj1VrJoDxc/dbG861qCl3w/UK3RPF+cTt0HKWXDnUKtGOvITz
ZDZukh2Mx+V/svnhZ3ZwQLau4FdcwssXU/3fzbS04OKO7v39DOBO6zhaKbL3tVX6
yaYzVEBYs/N8cg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:08:45 2026 by rpki-client