Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: uw4CsxK3gXKWcLwEoCQXEVj6oXg8fzJOZ1m54r2tnBw=
Subject key identifier: 70:9C:94:E3:9F:0A:64:5B:36:93:85:E1:B4:04:26:8D:AB:16:CE:1F
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019D992BA3C12AC510B02A53AA084A46A922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0F45
Signing time: Fri 17 Apr 2026 02:01:07 +0000
Manifest this update: Fri 17 Apr 2026 02:01:07 +0000
Manifest next update: Sat 18 Apr 2026 02:01:07 +0000
Files and hashes: 1: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: eLRK8pX8wGCrBPTL7WYEM1F6Iy+SHPzP753KFkXS2Sg=)
2: abxz-YS2pIcWJysLZsLURj3wFjE.roa (hash: v8u8I3KyfjrBtGFxRTuhA7B6RHsn+uH/zjkzCl303+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:a3:c1:2a:c5:10:b0:2a:53:aa:08:4a:46:a9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Apr 17 02:01:07 2026 GMT
Not After : Apr 18 02:01:07 2026 GMT
Subject: CN=709c94e39f0a645b369385e1b404268dab16ce1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f7:69:89:47:2e:46:d9:3d:91:ae:bc:07:26:
33:4a:96:63:b7:98:97:1d:d7:6e:ea:ea:84:3e:ca:
fa:29:89:58:35:be:6f:ac:41:8b:30:af:ab:61:63:
13:c8:80:03:b3:88:64:a1:7f:2a:93:b9:5f:9d:29:
5a:83:30:99:d5:80:95:a3:f7:09:7d:ab:39:75:95:
8d:10:ea:3b:9d:83:01:b0:05:9c:b7:62:a1:a7:41:
88:0c:1e:b2:80:4a:f5:28:d2:fb:83:1d:ef:d5:df:
05:15:9d:e1:ed:91:f5:eb:5d:1c:1f:2d:2d:9e:90:
41:98:ae:23:bb:db:28:bd:a6:25:11:2b:c1:ae:83:
03:e5:64:56:d9:e2:4b:ee:8f:d7:38:54:67:7c:13:
94:b5:ac:09:06:2f:d8:b0:28:42:9a:5c:ab:23:73:
5a:ee:1c:5d:42:56:0d:f7:2e:64:eb:02:26:dc:89:
23:6c:08:81:7e:77:3a:b7:63:e2:5d:e5:a7:10:db:
da:d8:52:a1:2b:d7:6c:f9:70:2c:0a:36:d8:7d:5b:
8b:83:f8:3b:b9:c5:98:c0:c2:dd:f1:d8:d6:ce:d3:
89:29:7d:20:ec:52:5b:cc:c2:90:4a:5f:a1:1e:7a:
a4:8e:50:22:25:93:e6:6f:fe:27:4b:07:8a:78:9b:
fe:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9C:94:E3:9F:0A:64:5B:36:93:85:E1:B4:04:26:8D:AB:16:CE:1F
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ff:96:7b:88:31:a3:be:47:d4:d5:9a:49:04:76:8e:b5:f9:
ca:78:0b:b2:43:c5:54:90:8b:35:f5:af:e7:c0:79:42:55:0c:
87:ac:b7:50:c8:28:2b:89:55:94:d9:14:89:fd:53:1b:f4:51:
9c:fa:37:4a:b6:e4:85:b7:dd:21:48:4a:72:00:95:e5:b7:3c:
99:d9:61:64:0e:8c:60:a8:cb:ee:0c:42:24:26:fa:e4:63:57:
a4:05:12:71:70:04:86:ae:4a:c8:47:bd:53:ee:ab:51:65:8d:
d9:c6:c1:92:f3:5f:78:96:f3:91:d2:dd:be:93:ed:b7:f8:5a:
e1:ec:ed:6e:33:29:6e:d5:9e:75:03:a2:c9:13:3f:95:ff:19:
a0:88:1d:b5:a7:57:04:14:8b:cd:27:cc:7e:48:d1:b7:d7:88:
a2:78:56:11:91:21:b0:9c:94:c3:f4:03:39:ee:85:9f:6f:23:
a3:42:be:a6:28:79:81:c3:fb:2e:4d:37:8b:06:74:1b:c2:d0:
fe:3a:a9:68:d3:0b:52:75:5c:6b:7c:01:a0:5f:39:4a:59:76:
e8:59:79:b7:b0:1f:0c:98:79:b8:80:ad:d5:3e:f0:a7:3f:9e:
f2:46:dd:a9:1f:a0:87:b6:95:a1:d7:bb:7c:c9:a0:7b:07:51:
76:f6:7d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:33:49 2026 by rpki-client