Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: IZVjzdlSAynbWQqImT0IJ+C0ars4D2ouNVXJtfCco50=
Subject key identifier: 9E:91:CA:BF:71:C0:92:A1:2B:86:EF:17:73:A1:2F:03:8C:8C:93:F9
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019EC112250BA70D8E35C8F0344321A67B0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0DEA
Signing time: Sat 13 Jun 2026 13:00:52 +0000
Manifest this update: Sat 13 Jun 2026 13:00:52 +0000
Manifest next update: Sun 14 Jun 2026 13:00:52 +0000
Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=)
2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: y3KMDnCEfcwNksXW7KWIn6KPszmEqcOEHhaZp8f+up0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:25:0b:a7:0d:8e:35:c8:f0:34:43:21:a6:7b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Jun 13 13:00:52 2026 GMT
Not After : Jun 14 13:00:52 2026 GMT
Subject: CN=9e91cabf71c092a12b86ef1773a12f038c8c93f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1e:74:cb:1d:2e:43:ed:33:5b:b8:e0:95:27:
69:85:cf:a6:45:07:c5:29:18:71:2e:7f:d1:2e:18:
0d:7f:a1:2f:ff:6f:e6:84:77:af:f3:23:57:2d:3b:
e0:d3:43:b9:13:12:0c:d6:dc:22:29:54:13:dd:1d:
07:0b:4c:3f:9b:9e:3d:a6:a3:8d:14:f7:a8:74:34:
d1:4d:75:11:99:48:1c:3c:bb:0c:9f:01:41:a0:3b:
20:21:e2:71:9f:0b:7a:52:7a:b0:48:1c:2f:1d:fa:
6a:95:19:47:62:e3:7d:ff:24:1d:87:38:5b:8a:e0:
cb:8e:8e:6c:98:b6:df:7a:b1:9d:8a:c2:9a:e9:39:
a3:f2:94:3d:01:87:83:7f:dd:83:ab:11:b4:fd:5b:
aa:d5:fc:b6:d8:95:e4:d0:75:aa:ea:7f:e3:da:bd:
e4:cd:c4:c9:a8:71:c9:ee:8d:c8:fb:1f:e2:a4:9b:
1b:e4:95:d3:aa:8d:09:91:0a:7b:1a:0b:7a:ea:88:
b8:8c:f9:cd:e9:2e:3f:69:07:8b:6d:7a:91:e6:de:
c4:f3:2d:ca:73:6c:ce:fe:4d:0e:91:30:d6:7b:1e:
b2:1a:c3:a1:49:56:58:5f:13:1c:51:e4:e8:fb:00:
65:16:bb:f7:a3:f2:8a:be:27:53:8c:de:64:7d:b0:
01:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:91:CA:BF:71:C0:92:A1:2B:86:EF:17:73:A1:2F:03:8C:8C:93:F9
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:b4:5d:1b:35:0e:77:ee:f5:dd:d0:dc:d3:68:57:b8:c5:5a:
07:56:91:f9:81:ce:96:ca:5c:4f:56:a7:7d:11:2a:4b:4d:df:
87:18:22:03:a9:fc:fa:59:45:3f:fd:c8:ca:08:76:0c:44:f4:
56:50:c1:0a:8e:6b:17:30:3c:10:cc:e4:cb:83:e0:b8:4a:97:
23:42:5a:bf:cd:76:9b:66:71:86:dd:b0:73:2f:90:92:28:86:
ca:8e:e7:ed:b8:db:76:d4:71:b0:a5:70:e7:bd:05:26:e5:2f:
f7:f2:b1:83:dd:e6:98:1a:a6:1d:cf:a7:cc:b9:6e:a6:a6:86:
bc:8b:8d:39:f0:0f:ab:bf:d9:95:d9:9a:1e:9a:1f:ac:fd:63:
63:ea:5f:8c:48:98:ce:41:b3:2f:0d:ed:69:c4:ac:e2:2a:b9:
d0:1b:75:8c:dc:f3:b3:b4:08:25:10:fa:5a:0b:f8:2c:63:e6:
79:72:46:c3:8d:1b:66:19:d1:54:be:cd:4b:11:c3:3e:87:54:
59:14:53:be:89:45:8f:ce:0c:f2:be:c5:89:f5:e8:52:42:75:
cd:c9:76:68:bd:57:ab:ab:9c:7d:24:9c:0b:f8:01:5d:12:da:
8e:7b:6c:8b:12:68:0b:ea:af:20:8b:33:39:80:5e:8a:0a:1b:
96:ae:ad:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:15:55 2026 by rpki-client