Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: Rcm/7MR39/fbZkcFhwCNw2tQnD/fZjqfYx8m3T5Z19c=
Subject key identifier: 77:42:3B:3A:5E:F1:07:79:27:36:4C:6D:16:E4:C2:50:4A:B4:4F:7E
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 019D9962A19B6D6CCE4AEA38A5C6989CA785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 1315
Signing time: Fri 17 Apr 2026 03:01:11 +0000
Manifest this update: Fri 17 Apr 2026 03:01:11 +0000
Manifest next update: Sat 18 Apr 2026 03:01:11 +0000
Files and hashes: 1: 0U-cjSx-vbFV-NT594PYA8nArLg.roa (hash: HUb+G3KOFlBU9/9PngolZEI4Hx103lYxj0RKTkVEA0w=)
2: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: HXkrlRQEfwlcbZn8tsT77E4Dr3KKpt8xDSib9Tydv3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:a1:9b:6d:6c:ce:4a:ea:38:a5:c6:98:9c:a7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Apr 17 03:01:11 2026 GMT
Not After : Apr 18 03:01:11 2026 GMT
Subject: CN=77423b3a5ef1077927364c6d16e4c2504ab44f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3f:59:d5:59:bd:e7:b8:c4:7e:36:6a:0c:43:
4e:cc:ac:a6:c4:be:ff:c3:84:b4:8d:40:53:9a:82:
f3:85:f0:41:0d:ed:0e:79:22:ac:2d:f3:54:2b:12:
f9:49:f8:32:fe:c1:69:77:18:ad:ca:a7:f7:8b:39:
3a:06:eb:f7:bd:0a:45:3f:8e:3a:f2:d2:b6:8f:34:
61:a3:bd:da:d4:54:75:b1:50:79:ce:c1:84:89:1a:
f1:27:5e:2b:6b:1e:9c:03:6a:cb:91:8c:36:62:44:
d2:6f:20:0f:40:b3:b9:15:b2:ac:1b:3b:f9:4c:3c:
34:1a:7e:47:fd:90:a9:d5:dc:0b:c4:82:cd:de:b3:
e9:77:f6:7d:88:75:6c:9c:a7:8d:fc:85:41:36:cc:
54:31:c5:31:d1:90:d0:b3:ef:8b:92:82:f4:e9:ef:
e4:d0:9d:4c:0f:7e:ac:d4:17:13:a8:70:47:da:68:
55:d5:24:28:8e:d6:2d:6a:ff:c8:14:89:b5:2e:a6:
ae:7b:fa:1a:ce:48:01:c0:08:2a:7f:5b:b3:2e:f8:
e0:4e:4b:95:a1:f6:ec:a6:98:c6:e8:1e:df:32:6a:
a6:bf:b6:eb:51:0c:bf:1b:ea:40:58:51:6f:77:db:
45:7b:28:fb:17:e0:8a:66:26:43:1d:63:60:79:ce:
cc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:42:3B:3A:5E:F1:07:79:27:36:4C:6D:16:E4:C2:50:4A:B4:4F:7E
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:59:d6:91:09:57:55:86:2c:9e:06:8f:d6:6d:d1:c9:49:81:
52:b1:b5:b5:17:86:02:00:19:da:a7:ac:f2:63:f3:26:2b:e8:
7f:b7:31:ea:ac:30:aa:1f:d7:3e:da:80:15:20:30:9b:fb:42:
ce:3a:5a:77:ef:65:22:dc:77:01:d9:41:a9:7f:2a:ca:0e:9f:
cf:d2:d6:68:c4:d7:2f:13:8f:c7:12:d8:41:d8:04:a4:f8:1e:
b3:40:85:70:1e:38:c5:17:e2:06:f9:73:1b:f3:bd:3a:0f:dd:
d1:52:78:49:77:b2:9a:d7:46:dd:5a:ec:af:6c:23:52:bc:dd:
d4:4c:27:6d:86:6e:1a:6c:54:3c:b9:24:2a:d5:45:9d:4b:22:
11:10:fd:fb:2c:80:52:9b:8c:81:a3:57:4c:fc:20:82:b2:ed:
4a:e1:25:d5:92:fc:e5:14:3e:8b:06:ec:40:a3:08:6d:05:ca:
1d:46:6b:19:1f:05:50:52:7a:db:84:dd:af:bc:93:20:78:cc:
28:c0:25:bc:dc:a1:3a:67:af:ff:51:c8:b7:26:66:0c:87:3a:
a1:f0:bf:be:1c:09:c7:af:81:5e:25:74:aa:66:e5:7e:9b:93:
f7:27:6a:a6:a3:73:2c:09:a6:52:c0:2b:be:69:e8:86:a6:1b:
83:bd:74:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:16:38 2026 by rpki-client