Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
File: O2HIth_0q5daL2xn0LzmN5Ni4v4.mft (raw, json)
Hash identifier: 3DduSyuQRtW+aVAn4N0mPpJ+uYZerk099vDwU+HFGLw=
Subject key identifier: BF:DA:8B:52:39:59:96:E2:57:1B:51:51:9F:FD:64:C2:94:0C:5C:21
Authority key identifier: 3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
Certificate issuer: /CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Certificate serial: 019ED42BCCD6BDB88F0A7E73D1BB69EEA46D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
Manifest number: 0C7A
Signing time: Wed 17 Jun 2026 06:01:40 +0000
Manifest this update: Wed 17 Jun 2026 06:01:40 +0000
Manifest next update: Thu 18 Jun 2026 06:01:40 +0000
Files and hashes: 1: GbMgngzItY4uIndF-XcuFLKJhR4.roa (hash: wGyJex/ofBYcPy2R1/ePo/0rQqidiA5P6cvt53DFaE4=)
2: O2HIth_0q5daL2xn0LzmN5Ni4v4.crl (hash: alZ8Ks2JXXSaeghahDLjHu/FBEA5jP1+fZ3yVYfR/kw=)
3: ez4u_1j0_ojM3jorhMhPc8LRXyY.roa (hash: iklDjhEm/+o8jK0OCBuLkTDvKYqHZMgst24iVNDdcek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 06:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:2b:cc:d6:bd:b8:8f:0a:7e:73:d1:bb:69:ee:a4:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Validity
Not Before: Jun 17 06:01:40 2026 GMT
Not After : Jun 18 06:01:40 2026 GMT
Subject: CN=bfda8b52395996e2571b51519ffd64c2940c5c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cd:c0:ff:76:d4:f2:83:c2:fb:c2:4f:30:62:
09:4d:6b:98:18:da:1a:41:4a:eb:c3:33:c7:79:16:
81:c0:d2:4b:88:a2:b5:e2:d6:b8:d8:fd:b8:d8:05:
f3:96:e1:5e:32:5a:d7:b8:69:b6:d9:81:bc:99:cd:
1e:89:ab:db:c3:51:37:31:15:b0:03:cc:e5:9a:07:
51:de:38:60:85:f4:af:6f:5a:23:14:28:c8:67:e1:
52:f3:1a:47:81:16:cf:cb:ee:69:c7:1d:95:69:91:
e0:b1:2a:f5:24:f1:38:8d:69:ff:e1:7d:04:ba:85:
08:9a:d1:36:a7:1f:33:e7:7c:15:05:c2:cf:2c:e0:
7a:ec:5c:9b:06:19:09:fd:93:69:01:40:49:84:50:
db:ee:91:6f:70:bd:2e:c3:a4:42:e8:2e:6b:5e:e3:
b2:be:cd:fc:07:a7:96:2a:1b:fe:5d:d9:35:e1:77:
0a:9a:f8:a2:11:f3:17:4a:c8:c1:32:3d:4e:26:fb:
ab:39:dc:6c:55:ff:ab:8e:9b:80:04:62:c6:39:0b:
87:7d:3e:40:25:bc:30:85:49:d1:9c:51:ba:df:a5:
f4:9f:e0:f0:e2:4a:65:5f:ad:c3:61:8a:e3:38:8e:
b3:b5:e7:2b:78:d8:9e:ad:13:83:33:26:92:1c:2d:
ab:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DA:8B:52:39:59:96:E2:57:1B:51:51:9F:FD:64:C2:94:0C:5C:21
X509v3 Authority Key Identifier:
keyid:3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:46:e7:71:33:77:e8:3d:51:de:40:81:8f:26:50:f7:a4:bc:
95:9b:c3:ea:ea:80:57:41:ed:8f:b3:f7:98:d4:38:d9:9e:cf:
ee:72:bb:24:23:dd:17:5f:50:e1:0e:87:fd:15:ad:1d:b3:d6:
9e:bc:7c:52:4f:66:d6:bb:33:4d:97:89:d3:de:d9:78:ce:23:
96:27:32:9c:7e:4a:6b:71:e3:8d:06:95:5b:d7:cd:24:eb:b4:
29:20:3b:fd:27:40:73:3f:42:5c:89:c4:ac:b9:3f:6e:2d:97:
4b:b7:94:72:44:2c:4e:75:7f:d8:bd:ad:8a:bd:e0:e6:16:06:
21:05:c3:86:0a:7d:47:e4:03:b7:63:1d:e2:17:c4:fb:3e:6c:
b4:95:71:82:fb:40:4b:29:78:b2:a8:dd:43:87:e4:4e:4a:c7:
b8:23:39:da:e2:68:80:4f:fe:ad:e7:30:4a:69:c5:69:90:7e:
da:96:22:68:e7:d5:b0:32:27:77:2c:a2:e6:20:78:62:e9:25:
98:ae:7b:f5:81:e3:be:1c:a1:dd:0a:1c:f0:6e:fc:d0:f1:53:
60:4d:db:db:44:7f:79:02:56:4a:19:c0:30:21:f1:bb:08:86:
2e:f7:c0:bd:46:1f:4b:fe:89:af:f0:ae:e8:d0:d2:17:e2:4f:
46:b8:be:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 11:17:48 2026 by rpki-client