Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
File: O2HIth_0q5daL2xn0LzmN5Ni4v4.mft (raw, json)
Hash identifier: uVD0nkWMYJ0sSJ0uY9b/hb2g38WIJJoINUDCNGJZzBc=
Subject key identifier: 26:82:0D:D4:FA:22:56:B1:07:94:66:11:7C:03:FF:26:A5:7C:39:64
Authority key identifier: 3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
Certificate issuer: /CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Certificate serial: 019D99CFFCB2D520692085C854007DD7B6AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
Manifest number: 0BD6
Signing time: Fri 17 Apr 2026 05:00:37 +0000
Manifest this update: Fri 17 Apr 2026 05:00:37 +0000
Manifest next update: Sat 18 Apr 2026 05:00:37 +0000
Files and hashes: 1: GbMgngzItY4uIndF-XcuFLKJhR4.roa (hash: wGyJex/ofBYcPy2R1/ePo/0rQqidiA5P6cvt53DFaE4=)
2: O2HIth_0q5daL2xn0LzmN5Ni4v4.crl (hash: e2qkDx8TVkqbGSjMBKF2VKlN/3VFGAiJN/qNf/RW31g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:fc:b2:d5:20:69:20:85:c8:54:00:7d:d7:b6:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Validity
Not Before: Apr 17 05:00:37 2026 GMT
Not After : Apr 18 05:00:37 2026 GMT
Subject: CN=26820dd4fa2256b1079466117c03ff26a57c3964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8d:fd:ef:99:ff:d1:3e:1f:7f:ca:6b:d5:df:
4f:66:45:e1:3d:d4:5d:11:38:6b:73:3e:ad:a4:5d:
d4:39:92:8c:ff:2b:35:8d:59:f0:df:1c:fd:ed:5d:
83:7d:e7:9c:49:16:92:05:87:47:c2:03:24:33:eb:
8b:72:fa:28:46:77:d2:db:0c:f1:f8:ff:6d:45:ac:
c4:92:1b:31:6a:ed:0a:6a:a8:22:dc:0c:2f:80:95:
c3:ca:f3:ca:4c:01:55:ad:b9:ea:4b:9c:dc:92:38:
16:91:48:4b:19:e1:78:82:93:a8:51:12:b7:7a:aa:
3b:9d:df:60:3b:88:4f:ea:13:9a:fc:06:14:35:5d:
b8:61:d9:30:0c:6a:84:90:20:41:05:85:d6:1d:56:
ce:bc:2f:01:7c:cb:c4:70:6d:f4:c3:a6:53:76:bd:
45:ff:42:59:43:8e:d5:a5:75:c0:0b:f4:c5:95:46:
21:c4:b2:91:87:de:97:b5:72:73:21:c9:0a:ca:6e:
74:36:25:82:26:46:60:9f:fc:60:ec:de:c2:2a:0d:
d9:21:ee:eb:af:3e:69:6f:47:dc:dd:19:48:d5:42:
8a:16:60:e3:88:59:1a:e0:51:ba:3b:8d:dd:73:9b:
62:26:95:a6:08:9d:f2:9e:37:4f:dd:79:f0:f2:67:
39:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:82:0D:D4:FA:22:56:B1:07:94:66:11:7C:03:FF:26:A5:7C:39:64
X509v3 Authority Key Identifier:
keyid:3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:67:07:75:b9:88:cb:a8:3a:4b:7b:12:4c:85:27:45:66:94:
51:bb:5d:06:a2:f8:e4:43:ef:64:4c:6e:0e:27:9e:16:af:a3:
06:b7:07:35:e2:e7:c7:71:56:de:63:04:7e:92:45:82:81:a2:
f0:9c:bd:a3:f8:3f:d2:44:bd:44:ec:a2:9a:18:bc:27:5b:50:
c1:d4:41:39:25:eb:36:a3:b6:1d:87:8d:4f:de:4f:44:6b:31:
a2:5d:38:19:f3:51:e3:61:7a:16:17:83:23:cd:66:d0:5a:ec:
83:c3:c6:3f:5c:9e:f7:5f:1e:d0:9e:43:6d:1e:08:0c:85:3a:
4f:4e:15:41:a9:85:f0:f1:9a:9a:48:d5:17:e9:79:c7:26:2f:
a9:11:76:d1:0b:33:08:55:95:ea:72:34:1e:d3:d2:3d:b7:df:
a2:86:e2:e2:22:15:09:fe:10:c2:f0:42:e7:c8:61:3c:59:d9:
81:48:96:a8:90:6f:a4:99:ac:c8:ec:d3:46:0b:78:9a:2d:60:
9b:09:84:16:ce:e8:9f:72:cb:13:4d:6b:7e:47:12:bd:6b:c5:
28:23:63:b8:da:53:15:63:82:c9:00:d1:71:1f:f1:e0:78:fb:
0f:5f:cf:c5:83:17:4a:bf:86:ae:d1:ec:d5:7c:3a:1c:f3:58:
22:10:5e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:53:17 2026 by rpki-client