Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: 0gGr5iyUEG6Bj6Vei/cE2I6QZz5wGcZg+k7ICDwxkfA=
Subject key identifier: 6B:2A:AD:79:B5:D1:69:0C:F2:4B:7D:3D:3B:1A:67:BA:98:13:30:E0
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019D99998727A53E0B9ABF485B94E95D8376
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0D51
Signing time: Fri 17 Apr 2026 04:01:08 +0000
Manifest this update: Fri 17 Apr 2026 04:01:08 +0000
Manifest next update: Sat 18 Apr 2026 04:01:08 +0000
Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=)
2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: fhGE09OLVYmdSTDs1H37LHqBFHBkktEdRxo20FslTTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:87:27:a5:3e:0b:9a:bf:48:5b:94:e9:5d:83:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Apr 17 04:01:08 2026 GMT
Not After : Apr 18 04:01:08 2026 GMT
Subject: CN=6b2aad79b5d1690cf24b7d3d3b1a67ba981330e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b2:3a:80:a8:4f:e4:ba:5d:a5:1b:c8:cd:54:
a8:65:da:e8:eb:a4:a7:ab:ed:ff:85:f5:2f:2e:49:
6f:7d:2f:ba:05:10:e5:06:20:4f:9a:62:8f:61:20:
08:e3:69:be:91:a1:65:8c:66:57:6f:3f:d7:f7:21:
08:75:b5:7a:2a:f7:37:53:c2:0c:54:6c:91:0c:38:
35:e5:6a:1b:51:e1:98:37:b8:91:b2:ae:d7:ab:d1:
c9:77:c1:a2:a5:e7:ae:ad:69:e6:86:ba:64:0b:6c:
3d:01:b0:4f:29:98:3f:67:5a:95:19:a5:86:ae:fa:
c4:69:27:6d:fc:f0:28:1e:85:08:5c:f1:d6:be:ac:
25:78:c0:09:52:ec:86:09:6a:8e:36:6f:37:64:4b:
b4:0c:ad:21:13:18:b7:c3:d4:15:6d:45:0a:86:0f:
0c:ec:5c:63:cb:7d:61:52:92:9e:e0:2d:3c:43:e3:
4a:02:09:06:27:ba:0b:ad:0a:f3:ce:98:9b:7b:2d:
eb:79:cc:14:a8:0b:bc:9b:8e:58:2e:22:d6:8a:42:
33:68:fe:8a:ec:10:73:33:24:b5:06:67:98:72:5f:
16:ad:bd:85:aa:f9:d1:96:60:99:67:b4:4b:a5:70:
86:a2:a3:d6:a4:c2:33:93:b1:12:76:9e:53:f0:a7:
ec:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2A:AD:79:B5:D1:69:0C:F2:4B:7D:3D:3B:1A:67:BA:98:13:30:E0
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:14:68:0c:fd:a3:8a:de:6e:77:5a:ce:21:9a:2b:2c:4b:ea:
ab:0f:92:f3:7d:02:d7:5c:8b:dc:e4:af:50:a0:96:b1:e7:e7:
23:89:f7:66:84:0a:b1:9e:9c:30:b2:2c:99:5d:73:f8:46:3b:
32:91:15:ea:11:b6:cc:99:18:65:44:cc:24:2a:6f:62:96:30:
82:9b:76:45:68:06:e3:b9:83:02:8d:82:ac:be:13:a0:0f:6c:
90:46:29:dd:4f:9b:2a:78:6a:d0:c3:47:23:71:db:9e:3e:cc:
75:04:94:a2:12:c6:9f:0a:73:93:95:fd:c3:3b:f7:9a:94:91:
a6:24:58:0c:21:f9:05:61:4c:64:f6:22:2d:ee:23:a2:bc:ce:
13:97:53:4a:22:e6:a5:5e:2c:82:6e:c8:a0:a8:f6:a8:ae:02:
70:97:01:ff:fa:83:b0:16:cc:56:df:41:3a:2a:d6:b6:7c:81:
e9:b1:5f:74:81:2f:9a:22:00:91:5c:00:51:3d:e0:8b:20:70:
15:2a:0f:91:f6:5f:11:f5:d4:10:b8:fc:0a:96:2b:8e:d5:71:
24:32:bc:cb:13:89:6e:cb:cc:1e:20:60:40:79:90:84:f4:0e:
2e:03:0b:1b:17:d4:14:86:f2:88:53:e3:54:e9:f4:dc:a2:51:
e2:e1:b2:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZmYcnpT4Lmr9IW5TpXYN2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiODBlZGQ0MjUwNTA4NjVlYWZiYTgwODlkYjlkYTNmMzUx
OWIzMzQwHhcNMjYwNDE3MDQwMTA4WhcNMjYwNDE4MDQwMTA4WjAzMTEwLwYDVQQD
Eyg2YjJhYWQ3OWI1ZDE2OTBjZjI0YjdkM2QzYjFhNjdiYTk4MTMzMGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbI6gKhP5LpdpRvIzVSoZdro66Sn
q+3/hfUvLklvfS+6BRDlBiBPmmKPYSAI42m+kaFljGZXbz/X9yEIdbV6Kvc3U8IM
VGyRDDg15WobUeGYN7iRsq7Xq9HJd8GipeeurWnmhrpkC2w9AbBPKZg/Z1qVGaWG
rvrEaSdt/PAoHoUIXPHWvqwleMAJUuyGCWqONm83ZEu0DK0hExi3w9QVbUUKhg8M
7Fxjy31hUpKe4C08Q+NKAgkGJ7oLrQrzzpibey3recwUqAu8m45YLiLWikIzaP6K
7BBzMyS1BmeYcl8Wrb2FqvnRlmCZZ7RLpXCGoqPWpMIzk7ESdp5T8Kfs6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsqrXm10WkM8kt9PTsaZ7qYEzDgMB8GA1UdIwQY
MBaAFDuA7dQlBQhl6vuoCJ252j81GbM0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMt
YzcxNjFkYzVjMDg3LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMtYzcxNjFkYzVjMDg3
LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoBRoDP2j
it5ud1rOIZorLEvqqw+S830C11yL3OSvUKCWsefnI4n3ZoQKsZ6cMLIsmV1z+EY7
MpEV6hG2zJkYZUTMJCpvYpYwgpt2RWgG47mDAo2CrL4ToA9skEYp3U+bKnhq0MNH
I3Hbnj7MdQSUohLGnwpzk5X9wzv3mpSRpiRYDCH5BWFMZPYiLe4jorzOE5dTSiLm
pV4sgm7IoKj2qK4CcJcB//qDsBbMVt9BOirWtnyB6bFfdIEvmiIAkVwAUT3giyBw
FSoPkfZfEfXUELj8CpYrjtVxJDK8yxOJbsvMHiBgQHmQhPQOLgMLGxfUFIbyiFPj
VOn03KJR4uGy0Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:27:16 2026 by rpki-client