Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
File: Or-t4neb0SyuiYiSakZi11cIawE.mft (raw, json)
Hash identifier: nS3QLUP0Fl8yOETeXRKLApZ67jR+A0+ICS9ZjY3lP/4=
Subject key identifier: 86:FB:4D:82:58:ED:D9:16:33:BE:47:5C:EC:2A:6C:F4:7B:4C:AD:9C
Authority key identifier: 3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
Certificate issuer: /CN=3abfade2779bd12cae8988926a4662d757086b01
Certificate serial: 019CAA218BB37B726CB5F325C162E8CB7B88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
Manifest number: 0D69
Signing time: Sun 01 Mar 2026 16:00:50 +0000
Manifest this update: Sun 01 Mar 2026 16:00:50 +0000
Manifest next update: Mon 02 Mar 2026 16:00:50 +0000
Files and hashes: 1: Or-t4neb0SyuiYiSakZi11cIawE.crl (hash: X+XoSEvyD6s/X+UFCa8wJ04JH49d7aGorSj+5tkfNfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:8b:b3:7b:72:6c:b5:f3:25:c1:62:e8:cb:7b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abfade2779bd12cae8988926a4662d757086b01
Validity
Not Before: Mar 1 16:00:50 2026 GMT
Not After : Mar 2 16:00:50 2026 GMT
Subject: CN=86fb4d8258edd91633be475cec2a6cf47b4cad9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:aa:f1:58:80:7f:cb:7e:83:32:c2:80:7e:91:
ac:34:7d:fa:dd:74:3d:d2:fe:7d:c6:26:a8:f2:28:
55:c8:46:63:21:06:51:be:13:b2:9d:22:3f:19:15:
97:78:3b:21:7f:4f:57:86:a8:c1:d8:6b:a0:56:02:
9d:23:db:87:be:21:ce:a4:42:e7:05:fa:bc:b2:a5:
75:c2:8c:9a:6c:07:b4:72:62:53:26:0a:1e:04:f8:
bf:ec:2b:43:b1:1e:78:0b:42:a8:25:09:46:93:ab:
bc:f4:9c:57:e9:96:94:80:aa:7d:08:d4:80:79:3c:
e8:d6:41:aa:3e:95:d8:cb:ce:78:79:71:51:4e:f3:
b5:a0:b8:f1:76:52:d4:72:d6:01:b5:66:59:76:4f:
09:8d:46:ff:a4:ff:cf:d2:a8:04:e1:ce:0b:f6:9d:
b0:ea:d6:1f:cd:75:17:0c:98:8f:a7:39:19:d6:01:
a9:d0:2c:52:a8:c1:48:b1:e5:b3:33:c0:4b:3f:81:
b9:11:ec:0e:42:52:22:e8:ac:09:5e:e4:15:af:c7:
14:f1:d4:ed:ed:5d:e8:10:cc:e8:0a:84:0f:d3:76:
f3:3e:d6:be:0a:6c:e3:df:b2:e6:9b:dd:f1:0a:68:
2d:a9:de:c7:2f:70:c6:fa:26:32:05:23:99:63:d8:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FB:4D:82:58:ED:D9:16:33:BE:47:5C:EC:2A:6C:F4:7B:4C:AD:9C
X509v3 Authority Key Identifier:
keyid:3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:06:98:58:04:da:4e:27:0f:05:d2:5e:a3:ec:f1:45:a5:21:
f7:b5:c7:96:82:1f:0c:e2:8e:83:18:f0:ba:80:99:79:eb:ba:
2a:5d:cc:3a:71:49:4b:89:43:a1:f3:b2:fb:14:43:30:1c:69:
dd:c7:05:a7:04:c0:40:ec:44:88:01:6c:1a:83:6f:ed:3c:ee:
e0:1f:47:d2:f0:67:81:54:ed:28:3d:26:74:2e:54:33:e0:14:
4f:b6:19:51:0b:3e:f9:8a:ec:eb:50:d4:f0:27:13:ae:fb:84:
a0:40:4b:1c:e1:ec:17:bb:2e:48:17:9a:b7:5f:1c:56:e7:96:
96:e7:da:bc:19:87:17:76:34:fe:f0:e4:e4:46:38:00:18:e3:
65:9f:5c:04:7a:2c:f0:c2:c8:37:e9:10:78:c0:c4:0d:cd:a5:
ae:e9:46:d2:18:44:7b:c4:01:72:84:8c:07:5f:20:35:17:76:
ca:19:d1:1b:3e:12:7d:76:63:72:b2:96:f2:f5:2a:e2:b3:e9:
ac:08:6e:d5:10:aa:50:f8:39:8f:ca:54:b9:c3:d0:de:8d:53:
11:fc:67:1b:7e:f3:9c:b1:56:b1:3f:06:bb:de:4c:fc:98:b0:
4d:db:b2:09:71:50:16:38:d8:05:14:5e:db:69:ba:d7:d8:87:
4c:e9:7e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:34:08 2026 by rpki-client