Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: EqEw9I+g+6tQ4Kt/f6DW/2KA3ChdMEgkuj2syCC/L8Y=
Subject key identifier: 09:78:D4:66:6C:91:7E:A6:B6:2D:D8:7A:2F:E1:BD:00:97:11:D6:78
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019DA52FF37AC2B21439FDAD57A6407AF77B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 03CD
Signing time: Sun 19 Apr 2026 10:01:16 +0000
Manifest this update: Sun 19 Apr 2026 10:01:16 +0000
Manifest next update: Mon 20 Apr 2026 10:01:16 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: Vx9JvKEqzDeZ+tUU1F8aSfw3IFrLbBtahTe4oCZ1ZJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:f3:7a:c2:b2:14:39:fd:ad:57:a6:40:7a:f7:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Apr 19 10:01:16 2026 GMT
Not After : Apr 20 10:01:16 2026 GMT
Subject: CN=0978d4666c917ea6b62dd87a2fe1bd009711d678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:37:20:52:2e:79:30:64:e0:3b:ef:9b:db:
27:18:0c:9b:39:f2:e4:44:c4:b1:96:1f:91:a6:ff:
90:a5:51:f6:77:1e:bb:08:61:44:8a:dc:e3:de:c6:
22:de:e7:1d:e3:24:b7:52:23:94:7b:55:de:7f:1c:
6c:25:b0:73:5a:e3:74:25:b5:98:a0:c4:90:c9:b4:
a3:c4:ec:d4:c3:b7:a4:c6:d4:bd:0f:94:a0:fb:05:
6e:4c:4e:3a:4a:ba:26:c0:e9:91:c6:ad:c4:53:50:
b4:a5:95:b4:5a:c5:11:8d:5f:2a:14:d5:e1:ca:d0:
78:96:2f:71:de:22:d2:8f:a9:a4:67:e1:0b:2e:01:
9e:f9:6d:b2:c5:56:55:c0:8c:45:de:ff:47:b1:ff:
21:9f:96:28:96:53:34:32:2d:3e:99:12:5e:98:02:
ec:8b:47:7d:43:9e:fa:3e:64:a6:fb:a0:8d:5c:85:
51:6b:8e:7f:37:22:97:ef:cc:19:6e:e1:b8:96:56:
a9:d7:f7:85:49:64:fb:72:89:82:5a:89:42:23:2f:
b8:02:0c:63:fc:24:75:3f:57:6f:c0:4a:16:67:9d:
83:f0:7a:a2:08:a0:5e:3f:57:5d:58:b5:a6:99:ad:
da:0b:a9:cd:e2:cf:af:ae:16:56:b3:99:99:36:13:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:D4:66:6C:91:7E:A6:B6:2D:D8:7A:2F:E1:BD:00:97:11:D6:78
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:6e:bc:87:54:10:4b:96:e0:6d:f7:b9:10:c0:92:ed:99:dd:
29:9a:84:74:eb:93:10:34:ed:18:b5:1d:2e:1f:a5:0b:40:b9:
7a:98:1b:88:0b:d0:2c:9e:48:1a:4d:c2:67:17:70:b7:19:37:
15:15:46:9c:fc:65:3a:a3:dc:3a:33:80:35:51:8c:1c:92:22:
f4:2a:61:2c:be:af:c2:cc:0a:df:15:36:c3:b1:24:66:d1:57:
7c:e2:20:17:b7:e1:ce:a7:1b:0d:31:e6:75:7b:d2:4c:29:75:
1a:31:84:66:be:e6:e9:16:8c:10:12:36:3f:ca:db:70:f3:26:
3b:24:e3:3e:15:34:f5:23:61:e6:e8:10:63:13:a1:87:8b:17:
fc:4c:d8:ff:22:7b:79:40:89:8d:7b:49:d4:68:b8:2d:e0:e4:
d5:6d:5c:be:3d:b4:0f:b0:38:4c:40:e0:0c:2c:51:0a:9c:c3:
e7:27:0e:66:0b:d1:b7:00:da:bc:95:21:aa:58:09:ae:c2:f2:
e6:35:96:c1:ff:13:11:a8:1d:da:1d:a2:c9:c0:b3:26:1c:9f:
14:9e:88:96:6b:2c:ae:ec:d2:84:94:73:70:73:49:22:74:62:
41:ac:48:ad:95:41:ff:b9:6c:ae:3d:bb:6b:6b:d2:10:df:3e:
cc:67:d9:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2lL/N6wrIUOf2tV6ZAevd7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2
NDRkZTQwHhcNMjYwNDE5MTAwMTE2WhcNMjYwNDIwMTAwMTE2WjAzMTEwLwYDVQQD
EygwOTc4ZDQ2NjZjOTE3ZWE2YjYyZGQ4N2EyZmUxYmQwMDk3MTFkNjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxY3IFIueTBk4Dvvm9snGAybOfLk
RMSxlh+Rpv+QpVH2dx67CGFEitzj3sYi3ucd4yS3UiOUe1XefxxsJbBzWuN0JbWY
oMSQybSjxOzUw7ekxtS9D5Sg+wVuTE46SromwOmRxq3EU1C0pZW0WsURjV8qFNXh
ytB4li9x3iLSj6mkZ+ELLgGe+W2yxVZVwIxF3v9Hsf8hn5YollM0Mi0+mRJemALs
i0d9Q576PmSm+6CNXIVRa45/NyKX78wZbuG4llap1/eFSWT7comCWolCIy+4Agxj
/CR1P1dvwEoWZ52D8HqiCKBeP1ddWLWmma3aC6nN4s+vrhZWs5mZNhNTwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAl41GZskX6mti3Yei/hvQCXEdZ4MB8GA1UdIwQY
MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt
ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3
LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU268h1QQ
S5bgbfe5EMCS7ZndKZqEdOuTEDTtGLUdLh+lC0C5epgbiAvQLJ5IGk3CZxdwtxk3
FRVGnPxlOqPcOjOANVGMHJIi9CphLL6vwswK3xU2w7EkZtFXfOIgF7fhzqcbDTHm
dXvSTCl1GjGEZr7m6RaMEBI2P8rbcPMmOyTjPhU09SNh5ugQYxOhh4sX/EzY/yJ7
eUCJjXtJ1Gi4LeDk1W1cvj20D7A4TEDgDCxRCpzD5ycOZgvRtwDavJUhqlgJrsLy
5jWWwf8TEagd2h2iycCzJhyfFJ6IlmssruzShJRzcHNJInRiQaxIrZVB/7lsrj27
a2vSEN8+zGfZWQ==
-----END CERTIFICATE-----
Generated at Sun Apr 19 12:56:57 2026 by rpki-client