Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: 85xhNz+XVydeS904HdyIkYi8bxaUeXPFFFEk771rX/Q=
Subject key identifier: AB:94:15:17:1B:81:6F:BA:AD:42:71:91:0A:55:89:14:6D:F5:C7:C3
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019D98BD6A8AADD05B84906D070764C50486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0F67
Signing time: Fri 17 Apr 2026 00:00:43 +0000
Manifest this update: Fri 17 Apr 2026 00:00:43 +0000
Manifest next update: Sat 18 Apr 2026 00:00:43 +0000
Files and hashes: 1: 5EPEfFcq0_CQJyJv8NvlTXW122s.roa (hash: shP8Ed/HPJC3iktLjU3AhfJDqjBPIc4NQ5VyPIH2+gA=)
2: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=)
3: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: 4GFkIiekpPzLZlqHB+5RDIjUDK0bfaZGpnl0sHe3XNM=)
4: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=)
5: xkVE7KUdk3_Gxthu42EOBxgV05Q.roa (hash: OLCiaU+AVFxgMEa5gMdkqLSxOFCgu1RCocNrX9T3asM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:6a:8a:ad:d0:5b:84:90:6d:07:07:64:c5:04:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Apr 17 00:00:43 2026 GMT
Not After : Apr 18 00:00:43 2026 GMT
Subject: CN=ab9415171b816fbaad4271910a5589146df5c7c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c1:db:5a:c5:66:17:fc:a5:02:a9:dc:fe:0a:
3e:99:a7:0c:f7:08:80:ba:fd:f9:f2:79:b0:2c:95:
9e:d9:36:4e:ad:4b:d2:d7:17:47:68:36:b2:70:1a:
03:58:f9:b5:39:8d:ae:41:20:3c:c4:50:b9:09:60:
c1:e9:a2:cc:28:f6:a8:2a:5f:4e:6f:a3:0b:2c:79:
5b:8d:51:b2:42:3d:a8:66:5c:c7:b5:64:cf:3c:7c:
98:ba:e7:3c:c5:f2:7d:d0:e8:77:2a:1d:07:51:64:
2e:fe:47:9c:3d:c8:2e:68:c3:2f:fa:ac:c0:60:43:
d6:7d:b9:04:6b:4d:79:08:a4:25:a3:73:2b:9a:43:
68:ed:74:04:f5:94:98:4f:b0:25:7d:e8:34:12:cc:
bf:85:19:7f:af:f4:52:a5:27:e8:ea:42:c1:f9:6e:
b8:b8:6e:49:39:2d:2e:2e:e8:bf:08:bb:f0:b8:4f:
8d:87:1b:e3:2b:e0:d3:23:61:e5:c4:21:7e:c0:55:
5c:2c:66:a6:08:15:bd:1f:57:f6:f3:93:96:7e:8c:
f6:a8:21:6f:1c:a4:b3:af:e1:8f:af:18:cc:1c:77:
6c:f1:db:54:7f:1f:61:ea:e9:dd:94:48:f3:4e:61:
07:9e:21:54:35:ca:0f:5d:d4:9a:0d:b0:ac:68:8c:
56:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:94:15:17:1B:81:6F:BA:AD:42:71:91:0A:55:89:14:6D:F5:C7:C3
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:13:91:d1:cf:ac:0a:cc:95:72:23:01:ae:b3:a0:c0:ad:b6:
5c:a4:ad:d2:bd:00:25:3e:63:06:96:98:38:42:b7:f4:42:5c:
ef:63:e0:3e:ba:de:e7:69:4c:ff:ef:49:5b:92:31:07:0c:89:
20:ae:b2:be:35:b6:7b:6b:82:1f:cf:73:99:07:57:23:8f:19:
50:8f:06:4e:83:75:83:8c:10:d3:61:e1:b6:25:93:9a:ee:6b:
fd:bf:1f:d4:54:ae:c6:4e:75:01:00:90:a0:f6:0e:fa:63:ae:
56:ad:6a:67:1f:bd:a3:d5:4e:2e:ca:cd:f4:6b:9b:be:df:e1:
c4:c3:72:07:33:69:22:6b:70:f2:ba:ba:ed:91:55:a9:e9:1c:
16:4d:1e:b6:81:d2:12:db:a1:16:26:93:9b:c7:1b:41:17:6e:
28:74:e7:37:f7:e8:93:75:88:9d:b2:a8:7d:5e:56:2f:6f:1f:
da:7d:d7:40:fe:c5:6b:82:e6:e7:2f:35:75:0f:af:06:34:32:
0e:3a:c1:1d:e4:7c:2f:1f:ae:23:55:3a:81:cf:06:05:c4:40:
28:d3:1b:c4:c5:df:99:09:48:8a:1f:63:ae:3e:e3:36:26:8b:
f4:19:a7:d2:e7:a8:76:14:fb:e6:67:82:1a:ae:f7:65:a3:8d:
75:b2:b1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:48:25 2026 by rpki-client