Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: LGr5lJRlqM6oHWlHjQ7CagWezPWMGTzWgXsSpSD37v4=
Subject key identifier: 03:E6:14:2B:42:B7:C4:D5:9F:FE:ED:0E:BC:00:41:D9:A8:96:73:45
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 019D9A751B82A574B6CAC8F2DE854B10B27A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 18B4
Signing time: Fri 17 Apr 2026 08:00:59 +0000
Manifest this update: Fri 17 Apr 2026 08:00:59 +0000
Manifest next update: Sat 18 Apr 2026 08:00:59 +0000
Files and hashes: 1: IXapM66e7MdcAVdK5ZgSYj804cY.roa (hash: Zge2mwt6CQnb9dk3bDCs3Oo7c63bsf/jL0cP3knXpFI=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: nZpTWDa1Zg+gH3zGx+mdaMWvliOjYAMKAmfxN9tjku4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:1b:82:a5:74:b6:ca:c8:f2:de:85:4b:10:b2:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Apr 17 08:00:59 2026 GMT
Not After : Apr 18 08:00:59 2026 GMT
Subject: CN=03e6142b42b7c4d59ffeed0ebc0041d9a8967345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:65:22:0d:16:1f:d0:a5:33:a7:37:e5:a7:21:
00:a4:19:ab:ca:98:bc:25:1d:d6:53:0c:62:af:af:
33:48:b0:57:10:ab:11:14:38:ea:3d:ba:a9:2c:50:
58:67:5f:82:d5:96:95:a5:eb:ae:6b:91:de:6d:68:
71:e3:9f:e5:6a:8a:14:40:2c:01:d8:5f:b4:e9:d6:
94:c8:f4:54:78:88:1f:ff:e8:32:7a:70:62:bb:2a:
d2:e0:b4:ee:50:09:74:bf:9b:e5:be:74:6f:be:33:
ef:44:4f:8b:79:34:14:56:a7:7b:2d:3d:3e:83:72:
40:53:ce:bd:ec:cf:95:04:b9:c6:8c:27:90:64:be:
e2:3b:a8:60:b9:f8:e3:14:8e:0c:dc:aa:9d:ff:78:
64:cd:4f:13:b0:35:7f:a7:cc:7a:b6:e3:41:a2:33:
6c:81:80:0b:0b:f9:05:bc:4d:c5:df:97:02:b0:27:
63:6d:70:04:da:7c:b6:81:59:9f:c7:47:c2:82:ad:
ea:10:7f:a4:11:36:c2:58:7b:a6:ee:8e:ed:7d:7c:
c1:6b:39:63:a8:ee:93:dc:ec:f8:f9:12:37:4d:4b:
1c:04:87:1b:0a:a9:a1:50:42:6f:6b:96:27:07:8c:
77:b3:29:dc:f2:10:63:4c:fa:71:ef:28:62:b7:74:
1c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E6:14:2B:42:B7:C4:D5:9F:FE:ED:0E:BC:00:41:D9:A8:96:73:45
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:04:bd:70:0c:e4:bd:e4:6e:e2:99:c3:99:99:26:52:77:b3:
73:f5:89:aa:3c:04:c8:a2:1a:e5:60:48:ac:8a:88:32:46:f6:
7c:36:36:fe:05:92:11:ed:d1:1a:68:c2:70:2a:2d:05:b7:b2:
00:40:a3:26:bf:f9:32:6b:f2:e1:4e:90:7b:32:68:e0:a9:e4:
9e:4c:f2:c5:07:7d:b9:64:e7:b9:d8:c3:53:0e:3e:8d:f4:c0:
18:e0:a8:1e:f7:e5:82:b0:ce:cd:5e:b5:5f:62:fc:90:40:18:
9f:5a:5c:71:01:a5:bf:f2:a0:4a:d6:4b:74:18:35:3e:ca:ce:
49:1f:16:3e:15:4f:a2:99:da:ef:3d:47:5d:15:7b:7c:4c:d2:
4a:b3:9a:7d:30:fc:29:02:1a:b9:75:9c:5c:86:9c:e7:7c:a6:
10:65:51:1c:fd:68:fb:ac:7f:0c:ce:35:58:ab:6e:2b:81:5e:
5e:80:96:c9:10:38:ec:56:af:7b:87:90:cc:ab:1d:c6:38:88:
8f:a0:69:c7:38:b5:ea:1e:81:16:80:91:77:bf:d2:f9:9e:67:
db:4c:17:e3:0e:42:99:06:c3:42:5f:19:fa:4e:00:10:53:4c:
7f:cc:7b:03:16:cf:ce:b9:0a:d3:04:43:09:6c:38:fa:ef:19:
0e:74:fe:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:29:33 2026 by rpki-client