Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: bvVmZoUUyb16mjsWcl7MSTntj8PgXU1Y3FLo6O6B4a0=
Subject key identifier: 04:F7:76:2C:E0:4B:1E:82:85:3B:C7:35:E0:A4:25:39:B2:B7:9F:D6
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 019D9B8790D49B44C3B9EE3ABBDAFD706F79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0CB5
Signing time: Fri 17 Apr 2026 13:00:46 +0000
Manifest this update: Fri 17 Apr 2026 13:00:46 +0000
Manifest next update: Sat 18 Apr 2026 13:00:46 +0000
Files and hashes: 1: OG9V497FCoHNGnPc_DbNqTEvF0Q.roa (hash: KoQeTtNBbhDRzvLnCdWBbN4ahOwIByARYlxscPU0UV4=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: 5GVi56cjtsXoAk3XkMSyp81PV+VUuAJMcGv/DTLBXng=)
3: wA59sXSCzQX_lnDI9OMnkp5P6yQ.roa (hash: 3unU8/VgG8FeuLF+n9dZ02OE5LTcBxSZEPgG5bjCfR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:90:d4:9b:44:c3:b9:ee:3a:bb:da:fd:70:6f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Apr 17 13:00:46 2026 GMT
Not After : Apr 18 13:00:46 2026 GMT
Subject: CN=04f7762ce04b1e82853bc735e0a42539b2b79fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:52:03:e9:cf:28:06:65:2d:24:73:03:46:c5:
0d:d8:61:e2:da:97:48:95:6c:a1:f6:96:7a:68:f3:
a1:6b:aa:97:d1:e8:25:8f:9d:ab:bc:14:b9:31:4c:
77:a9:c2:5a:3a:4d:a6:bd:e2:fd:5f:9e:38:06:58:
1f:b1:5b:52:a4:ec:c5:94:b9:eb:9c:90:a8:0a:db:
8b:5c:d3:06:80:ff:2e:bf:71:7e:f7:8b:80:09:a3:
b0:2e:1b:be:a0:5b:42:62:e6:c4:ab:5b:fe:b2:b4:
b1:08:3b:2c:18:38:a4:b1:e6:33:d2:44:18:ab:86:
5e:66:d7:3b:ea:f8:c4:ea:4d:2a:0d:9d:96:ec:c3:
f7:9b:38:e8:37:55:83:93:52:ce:2a:39:3f:ed:8a:
8d:2f:26:43:64:30:20:59:6a:43:94:a4:06:72:c9:
c6:9b:ba:9d:a2:0e:8e:ac:a1:22:a8:df:6b:c3:91:
f7:88:e3:8e:66:0b:c7:50:b3:c5:54:7e:1c:46:e4:
7d:d5:b8:48:92:f1:d0:11:d1:3b:cf:af:27:c9:43:
de:9d:6f:ea:5f:7c:6d:44:8b:5f:ba:d8:dd:66:a6:
62:30:86:57:35:ab:a4:e7:93:34:8e:fc:23:bd:14:
45:c3:51:b3:ce:fa:29:fb:c1:c3:f8:e0:16:75:f4:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F7:76:2C:E0:4B:1E:82:85:3B:C7:35:E0:A4:25:39:B2:B7:9F:D6
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:84:5b:5d:a6:40:e9:ce:65:d4:13:b7:8f:49:b7:e4:79:83:
75:41:54:12:02:c7:fd:07:98:35:24:b6:60:47:21:d4:7b:10:
e6:92:8d:22:79:d7:8b:0c:66:56:81:4e:cf:8a:2d:89:13:70:
72:52:f5:61:23:b8:7b:e2:1a:f4:e0:be:fc:bc:88:df:67:1b:
ce:14:54:3a:21:a9:34:cf:74:b9:df:b8:92:96:f8:d9:6c:ae:
af:a7:a9:46:6d:32:ed:35:5e:42:cd:4b:4d:7e:91:f0:5f:6e:
69:1f:a8:98:dd:67:db:24:e4:39:c1:dc:ec:03:dc:87:90:aa:
41:ee:87:cb:77:72:a9:17:e2:b9:e4:4c:92:76:3c:a5:d4:3f:
80:1c:00:2c:5e:72:fd:d6:58:31:e4:44:d7:f8:10:1a:a9:f9:
ff:99:4f:86:f1:4b:e4:f4:94:26:79:35:a3:3e:ea:7c:12:9d:
f3:53:09:e7:1c:23:28:2c:7e:32:35:d4:cd:f9:a4:89:43:0f:
46:10:cd:85:d2:62:58:49:68:2f:62:62:12:71:f9:b4:f8:82:
23:72:05:c4:2f:21:b5:05:a7:89:b1:9f:b6:8c:6b:03:be:9b:
09:57:0e:76:55:72:b1:35:8f:cc:db:d6:75:1d:ba:8e:f3:5d:
fa:e3:58:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:58:28 2026 by rpki-client