Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json)
Hash identifier: nmfzIXiQ+I3bb1edZ9DkALFLCvrQ2ZuE7xXv5K+oHdA=
Subject key identifier: D4:C3:39:48:BD:12:C8:5C:A1:AC:26:2A:96:09:F9:7E:52:77:84:26
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 019D9A74EBB099711CC12B8F2338C8480882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
Manifest number: 10B4
Signing time: Fri 17 Apr 2026 08:00:46 +0000
Manifest this update: Fri 17 Apr 2026 08:00:46 +0000
Manifest next update: Sat 18 Apr 2026 08:00:46 +0000
Files and hashes: 1: dvdR9JcJ1adEKhDQHP6JqbDnN2Y.roa (hash: VM5iSA8uwKH8wYL20uR8+pC8sXRM47ndx6laWeDwxAU=)
2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: MxkQ1z/0u9ZJWZpz95SQtZbIV9WHyn6Ooo8UpvKVTZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:eb:b0:99:71:1c:c1:2b:8f:23:38:c8:48:08:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Apr 17 08:00:46 2026 GMT
Not After : Apr 18 08:00:46 2026 GMT
Subject: CN=d4c33948bd12c85ca1ac262a9609f97e52778426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:89:58:77:4a:0d:f7:3b:44:a2:bf:bf:ca:32:
b7:28:70:16:62:74:cd:9d:03:81:09:11:01:ec:58:
50:0e:9e:55:cb:1c:09:31:7d:86:40:da:82:e2:13:
04:e1:0d:d7:37:dc:db:38:26:6f:b1:f5:df:0b:eb:
78:fd:4d:b1:03:86:78:6e:cb:c7:d7:86:dd:87:ec:
10:42:8b:e1:16:44:ff:24:22:63:f5:67:08:aa:eb:
11:dd:2f:98:a8:a3:38:51:5d:62:62:9e:51:dc:7b:
df:6c:e4:26:b6:72:74:04:99:8c:3e:3c:ce:e5:db:
00:7e:62:1f:aa:d9:ac:5c:c9:ba:df:2e:93:a6:9b:
51:0e:de:2d:f2:10:08:3d:c7:ef:4b:d4:c8:f1:2f:
12:d1:9e:ec:de:19:01:53:6c:dc:a3:6b:14:45:09:
1f:b4:27:19:68:46:0c:51:25:e7:93:41:57:4f:66:
9b:db:e2:83:97:69:0c:3b:73:21:0b:ca:18:cc:12:
d1:35:ec:9f:13:da:82:d1:4e:db:99:07:5d:f2:7f:
70:a7:d6:dd:33:56:7b:ee:02:bc:2e:0d:a5:37:55:
64:f7:64:65:80:63:98:ef:89:46:7b:95:e9:ea:15:
27:b9:d5:34:ab:29:9c:a0:87:bd:71:85:1a:16:38:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C3:39:48:BD:12:C8:5C:A1:AC:26:2A:96:09:F9:7E:52:77:84:26
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c9:04:b5:3f:4b:72:2c:2e:ec:13:66:3b:21:03:83:4a:d9:
4e:d0:41:a5:ac:f2:14:86:ed:a6:cc:e6:e2:7f:03:96:9b:f2:
29:7d:b1:65:22:ff:32:b9:f3:27:a2:26:0b:6a:3b:0e:c3:3a:
61:93:30:34:2e:c0:87:f8:c9:79:b5:39:d8:da:fa:b4:b5:d0:
c0:2c:51:ec:b3:84:48:1a:a8:91:39:21:9f:0d:e9:f7:36:59:
55:50:bc:e0:dc:a7:5d:54:4b:47:8f:87:1e:b4:e0:f6:2d:6f:
d1:1e:e0:e8:87:66:77:50:4d:45:ab:1d:5f:9b:36:2a:5c:99:
8d:72:2a:6e:72:d6:c0:ea:cd:c0:61:40:d4:3f:1a:51:5a:56:
21:2d:5f:28:90:f8:e9:3e:6a:45:9f:23:5b:8f:27:f0:c7:e0:
b0:22:24:d9:2b:ab:c9:da:89:f7:86:f5:5b:ad:8d:71:0d:54:
0e:91:88:6e:ac:91:6a:5c:a8:49:7a:2b:d6:b7:95:79:0d:ca:
39:ac:3a:22:a9:05:b8:03:1e:bd:19:72:f3:1b:74:4f:61:3b:
f1:65:bc:93:64:e2:07:b1:55:22:2c:09:69:ce:21:e4:88:31:
96:85:0b:7f:72:03:87:3b:5d:6f:b9:8b:9f:ef:9c:9d:fb:b1:
3b:e8:05:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:46:13 2026 by rpki-client