Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: hix8X2T2oz7jIljLUoiy8PZdxmoQPT+/f3pg/5UNCf0=
Subject key identifier: BA:85:73:C2:85:B2:D0:BC:D4:F4:5A:13:B9:AE:F4:EF:A7:0C:1D:C5
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019D9B87E41FDADD2E5EE2F4BA863B006BEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 13D9
Signing time: Fri 17 Apr 2026 13:01:07 +0000
Manifest this update: Fri 17 Apr 2026 13:01:07 +0000
Manifest next update: Sat 18 Apr 2026 13:01:07 +0000
Files and hashes: 1: 8YjfuQgdLCvL-Jpmwk6qtizfv_I.roa (hash: brAMlNDL72wfdOjb6ddjdyt7eJo3B0Foc3PWILSQa/8=)
2: 9n4VcJdW8qnQyuWz0vME2QO1fbA.roa (hash: S37EYsMTrmOyNa0qB2TT/fhsEUbmtLIrd9epgXzmCws=)
3: GZDzHGbDx7dfkoatOEujE-QeXX0.roa (hash: rp5gMVM6d0QMtfUx8hE8lYmJBJMynSH2EW1XEZUY1fk=)
4: NzRF1KMW-RjrnCQ45Ns__CGotH0.roa (hash: vgtU60XykZYUOdD/K3o47xgLUs91d2y5R24TZ2aLcb4=)
5: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: cTC68WXfreut+1ZSXqLaQr8KlhYoHrx9kb/crIhaRdY=)
6: hHhTehEBjNf1KtA383HryRHP5GU.roa (hash: 553Jp1J+2Jv+MXIIihnE80X01/4/KUBqAe/MNZh5Kwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:e4:1f:da:dd:2e:5e:e2:f4:ba:86:3b:00:6b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Apr 17 13:01:07 2026 GMT
Not After : Apr 18 13:01:07 2026 GMT
Subject: CN=ba8573c285b2d0bcd4f45a13b9aef4efa70c1dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:42:f9:84:78:8f:94:d7:57:78:a1:e7:0e:
79:76:e7:b4:8a:c0:db:37:3e:34:fb:cd:d2:f5:d1:
ec:db:f4:b3:24:c0:7b:97:50:0f:33:b2:0f:54:56:
d4:91:0b:cf:91:a8:6c:d0:86:b8:ac:3e:1f:77:ab:
cf:52:d6:1f:de:0f:98:45:39:33:5c:5c:4c:d1:f8:
b6:29:a4:16:e0:a4:e1:ab:6f:60:56:10:9b:bf:25:
f8:73:9c:b2:db:9a:2b:db:78:e8:d0:ca:7f:90:78:
af:88:72:55:0e:81:b3:0b:7c:2e:d9:8c:64:56:09:
58:3d:45:6e:4a:49:59:53:30:28:b2:01:1d:fe:16:
30:8e:3d:0e:f2:f1:64:73:f6:42:e6:c4:85:7c:42:
5e:5d:61:3b:18:3b:6c:23:7d:a1:28:f1:13:42:54:
c3:c3:0c:14:55:7d:6f:5d:34:0f:86:5b:a3:89:fc:
c7:73:3d:7f:8b:c6:52:a8:71:08:3a:05:ee:a7:cb:
a0:8f:e3:3f:df:eb:1b:46:5c:8b:03:73:84:20:80:
45:f1:62:ca:0d:3b:45:dc:d9:bb:13:02:1b:a8:5d:
7e:f4:2e:66:75:89:35:2b:30:b6:84:26:6c:db:9b:
36:5b:07:91:04:f7:bd:35:f2:2e:03:60:ad:cd:fe:
c4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:85:73:C2:85:B2:D0:BC:D4:F4:5A:13:B9:AE:F4:EF:A7:0C:1D:C5
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:da:0e:2e:66:72:29:23:b1:f3:98:bf:91:41:4f:d1:1d:31:
69:97:53:66:08:f0:13:f7:f0:d3:82:6f:06:7c:7a:1b:6a:e6:
2b:ab:0b:bd:ed:f9:f2:97:6f:c0:ae:96:55:ff:5e:a9:a6:50:
be:53:44:e9:ae:fd:b4:58:33:2a:eb:8e:f1:dd:82:91:0f:76:
fc:50:e6:f0:8a:ea:7a:d6:97:cb:11:c6:5b:67:7b:00:4f:b0:
ba:ef:50:57:eb:95:61:91:6c:36:15:9e:39:c6:f2:e2:1a:b8:
95:c2:3f:7c:35:ba:1e:4a:2d:41:7a:f2:c0:37:77:3f:03:ce:
7e:13:bd:b6:f5:92:a1:af:b0:2b:b5:ba:0b:ad:21:e9:a1:27:
4d:6a:3a:74:ee:0a:e5:62:74:f0:a8:57:c6:3c:14:e8:de:2f:
56:98:cf:9e:45:bc:be:bb:04:ad:5d:39:2f:5e:b9:65:2a:a5:
f2:22:23:13:38:bc:68:fa:74:40:6c:81:8e:bc:f6:98:4e:d2:
75:46:79:fa:24:ee:21:50:f5:4e:fe:be:d5:bf:31:59:63:56:
35:7e:e8:df:68:a8:fa:ec:3f:b9:4e:16:c1:c7:9f:6c:b0:ef:
5b:5d:1f:23:b9:35:3a:b7:70:4d:22:6e:73:9b:71:f7:7f:e3:
28:df:92:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:40:47 2026 by rpki-client