Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: /YeGQ6W+zqIcO0h2RA5UqMUSQgCxfJJ6IbCoAb/vSqI=
Subject key identifier: F8:79:8F:AC:26:9E:91:63:C2:DE:36:9F:3B:0C:35:37:21:3B:13:E0
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019CAA21D81E2AFFFEAA02BD20408A949BC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0CD5
Signing time: Sun 01 Mar 2026 16:01:10 +0000
Manifest this update: Sun 01 Mar 2026 16:01:10 +0000
Manifest next update: Mon 02 Mar 2026 16:01:10 +0000
Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=)
2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: s+M6Nbi/UfuJhWd8WOoEZ8afg9hOf8uEdwkoG1n4hTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:d8:1e:2a:ff:fe:aa:02:bd:20:40:8a:94:9b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Mar 1 16:01:10 2026 GMT
Not After : Mar 2 16:01:10 2026 GMT
Subject: CN=f8798fac269e9163c2de369f3b0c3537213b13e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f4:a7:0a:99:34:9a:54:19:b9:09:56:63:2b:
1e:8e:53:40:22:74:0f:c8:37:bc:18:f2:6d:fe:6d:
37:2a:99:42:0e:be:22:46:42:af:ab:90:9a:7e:71:
db:57:3f:3d:0f:d4:89:8b:e3:89:ee:a0:a9:12:f5:
26:74:8e:b4:e5:49:78:18:23:f5:2e:6d:78:fb:20:
21:06:1b:01:f2:81:2b:b3:78:e9:4d:cd:e6:a6:f5:
4b:4b:03:1e:00:3f:eb:2d:92:6e:ce:7a:f7:3d:00:
a4:bb:13:ab:a7:71:34:5f:1c:ac:dc:b6:20:ec:db:
63:d9:15:c7:89:20:ac:56:fa:f7:6b:2b:2a:64:44:
32:47:09:cd:5a:b2:a0:7d:e4:72:a7:8b:07:06:00:
0c:2a:b2:bb:81:15:81:48:80:0d:39:62:8e:05:9e:
2d:65:3c:f9:ed:68:fd:60:c1:65:54:8f:a2:db:74:
eb:69:8e:d6:73:84:99:cc:cf:57:90:b2:47:24:96:
cd:1e:57:51:d0:c4:2e:e9:e7:d0:0e:cb:83:6c:d8:
d7:01:d3:6e:19:e8:93:ed:98:95:85:c3:b7:38:c4:
e1:6a:53:ab:3e:07:ca:35:f1:e4:3a:b0:74:2f:75:
7d:bb:28:35:13:23:cd:de:92:df:6e:6d:f8:0f:6b:
81:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:79:8F:AC:26:9E:91:63:C2:DE:36:9F:3B:0C:35:37:21:3B:13:E0
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:4d:86:c4:9b:47:b2:5c:5b:ae:64:4c:b2:ad:48:ef:86:60:
8b:8c:a7:97:5b:cf:15:31:6b:c5:57:e4:b6:d7:58:16:d2:1a:
00:e2:1c:3c:15:d4:b6:e6:9b:05:2c:8b:a6:c8:51:bc:76:d7:
e4:2e:89:6f:5e:1f:6d:3d:92:9d:9e:d0:85:22:17:36:84:72:
32:65:56:34:53:13:3b:73:06:d2:d7:11:e9:de:67:d1:ac:f2:
d1:2d:33:36:49:00:7d:be:bd:d6:12:b9:2e:ef:35:f1:4f:59:
6e:d1:8e:df:91:50:bd:0b:b9:6e:56:cb:b1:ad:cc:bf:34:ce:
c5:3b:47:9d:71:46:e7:74:9a:14:a9:b9:a6:fa:be:ae:62:6e:
ba:e1:bc:15:1e:e6:05:30:3a:4b:9c:87:2c:0a:94:20:9a:cd:
2e:b0:74:91:7f:ff:ac:b3:16:f7:82:67:ef:34:ad:79:52:3c:
20:67:7d:42:b4:7e:d0:bf:50:9f:60:62:b2:25:ca:5b:14:ca:
9c:7f:6d:ac:85:3e:5e:ec:f0:ad:e7:0b:c9:aa:a8:9c:79:df:
7d:13:b9:67:6e:a8:11:dc:00:6d:d9:60:9c:04:79:ae:5c:f2:
b6:e9:f6:a1:93:c6:57:0c:76:72:6f:c3:da:ee:74:14:8c:0f:
c5:08:7c:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIdgeKv/+qgK9IECKlJvAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiODBlZGQ0MjUwNTA4NjVlYWZiYTgwODlkYjlkYTNmMzUx
OWIzMzQwHhcNMjYwMzAxMTYwMTEwWhcNMjYwMzAyMTYwMTEwWjAzMTEwLwYDVQQD
EyhmODc5OGZhYzI2OWU5MTYzYzJkZTM2OWYzYjBjMzUzNzIxM2IxM2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5fSnCpk0mlQZuQlWYysejlNAInQP
yDe8GPJt/m03KplCDr4iRkKvq5CafnHbVz89D9SJi+OJ7qCpEvUmdI605Ul4GCP1
Lm14+yAhBhsB8oErs3jpTc3mpvVLSwMeAD/rLZJuznr3PQCkuxOrp3E0Xxys3LYg
7Ntj2RXHiSCsVvr3aysqZEQyRwnNWrKgfeRyp4sHBgAMKrK7gRWBSIANOWKOBZ4t
ZTz57Wj9YMFlVI+i23TraY7Wc4SZzM9XkLJHJJbNHldR0MQu6efQDsuDbNjXAdNu
GeiT7ZiVhcO3OMThalOrPgfKNfHkOrB0L3V9uyg1EyPN3pLfbm34D2uB7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPh5j6wmnpFjwt42nzsMNTchOxPgMB8GA1UdIwQY
MBaAFDuA7dQlBQhl6vuoCJ252j81GbM0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMt
YzcxNjFkYzVjMDg3LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMtYzcxNjFkYzVjMDg3
LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQU2GxJtH
slxbrmRMsq1I74Zgi4ynl1vPFTFrxVfkttdYFtIaAOIcPBXUtuabBSyLpshRvHbX
5C6Jb14fbT2SnZ7QhSIXNoRyMmVWNFMTO3MG0tcR6d5n0azy0S0zNkkAfb691hK5
Lu818U9ZbtGO35FQvQu5blbLsa3MvzTOxTtHnXFG53SaFKm5pvq+rmJuuuG8FR7m
BTA6S5yHLAqUIJrNLrB0kX//rLMW94Jn7zSteVI8IGd9QrR+0L9Qn2BisiXKWxTK
nH9trIU+XuzwrecLyaqonHnffRO5Z26oEdwAbdlgnAR5rlzytun2oZPGVwx2cm/D
2u50FIwPxQh8aw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:00:06 2026 by rpki-client