Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
File: Or-t4neb0SyuiYiSakZi11cIawE.mft (raw, json)
Hash identifier: j5m3/ByCmEMlcU2KC04X5+mg323dQJHSjioUFc5V64E=
Subject key identifier: B6:4C:49:47:E1:2A:A4:B3:FE:C8:47:9C:DF:0C:F4:1B:B5:4E:F5:B9
Authority key identifier: 3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
Certificate issuer: /CN=3abfade2779bd12cae8988926a4662d757086b01
Certificate serial: 019D999929CEAC31CD2367ECEEE45797CB2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
Manifest number: 0DE5
Signing time: Fri 17 Apr 2026 04:00:44 +0000
Manifest this update: Fri 17 Apr 2026 04:00:44 +0000
Manifest next update: Sat 18 Apr 2026 04:00:44 +0000
Files and hashes: 1: Or-t4neb0SyuiYiSakZi11cIawE.crl (hash: tC5gj0HlrvVfqlw0UiEGIt75YOBTqZqAk62t7mHiG9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:29:ce:ac:31:cd:23:67:ec:ee:e4:57:97:cb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abfade2779bd12cae8988926a4662d757086b01
Validity
Not Before: Apr 17 04:00:44 2026 GMT
Not After : Apr 18 04:00:44 2026 GMT
Subject: CN=b64c4947e12aa4b3fec8479cdf0cf41bb54ef5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:97:1c:35:bd:96:42:33:0f:b4:90:7f:6f:
08:fd:bd:68:69:95:53:60:26:1b:e4:4f:b4:d6:78:
31:01:5e:92:02:f7:1e:4a:da:f4:75:19:02:fa:06:
a7:e2:e2:8f:64:6a:bc:ef:cd:9c:60:f3:66:18:70:
3b:9f:3b:ed:06:67:5d:7a:d0:f3:29:0c:61:c9:2d:
41:83:c1:0c:28:68:75:cd:38:ee:9b:7f:7c:6e:e5:
3c:da:94:0e:b0:9e:41:3d:cf:43:ad:30:be:9f:f8:
62:37:0e:8b:5b:2c:52:3f:a3:33:c9:df:f3:34:3b:
e8:57:d9:dd:97:f7:b4:02:3e:4d:35:56:0d:8b:14:
5f:49:60:e4:00:4a:c9:01:09:50:cf:c4:ea:2e:49:
23:e7:66:02:39:ac:3c:aa:51:eb:b5:6c:ec:03:cb:
b7:0e:bb:3a:c9:8d:6a:be:ec:0c:03:1a:61:24:a0:
c4:44:4c:fd:f1:c3:1d:39:1e:d5:97:28:06:f0:58:
1e:d2:2e:c2:49:fa:9a:ee:09:05:35:fc:41:71:a5:
ce:c9:0b:b6:5f:12:f4:32:18:61:02:06:54:cc:ff:
c1:72:6f:7b:78:f2:b2:c0:9a:83:d0:c2:00:6e:a7:
e3:10:ad:ab:90:82:d8:ce:76:f6:6d:df:4e:2f:0a:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4C:49:47:E1:2A:A4:B3:FE:C8:47:9C:DF:0C:F4:1B:B5:4E:F5:B9
X509v3 Authority Key Identifier:
keyid:3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:2d:ab:d7:01:cc:17:31:f1:b7:ad:8a:14:b1:7b:d2:22:96:
54:3f:b5:48:de:5a:44:2c:7f:a2:6f:07:a0:67:5c:08:66:2a:
f3:56:a4:ec:87:59:66:6c:75:fb:a2:50:96:d9:d4:0e:c5:47:
97:17:88:b3:fe:b2:18:77:f0:50:b4:d1:5d:81:5c:01:cd:3f:
ce:86:11:e6:47:e5:c5:02:35:3e:dc:be:34:cf:6c:31:ca:c6:
c6:06:a9:7b:2d:3b:51:1e:cb:c8:2f:f5:06:8a:9b:a1:a7:10:
10:16:eb:a2:9e:20:fc:94:d9:60:11:76:ca:51:e7:8b:60:02:
7c:4a:7e:36:7f:04:c8:01:4e:6a:74:50:a2:de:26:8d:5c:d5:
fb:4d:4c:04:29:90:cd:ef:8a:27:90:f8:3b:ea:ee:c4:46:6f:
23:22:c4:05:3c:d5:e4:6d:92:75:c2:d7:1d:ba:5c:6e:a4:13:
38:71:7d:ab:69:4e:ea:fa:9b:c5:48:b0:c6:24:01:42:f9:3e:
24:29:83:a0:75:23:99:24:03:9c:5b:d7:e5:47:fc:a6:da:bc:
60:f7:c4:6f:f8:50:11:6f:7f:35:e1:89:7d:93:9d:9c:4c:a2:
cf:39:0e:e2:7a:38:d9:42:d7:8f:8d:f7:d9:5d:08:47:bf:cd:
6a:eb:d2:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:31:23 2026 by rpki-client