Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json)
Hash identifier: eW3fe6s+NFYWFxxMrL3O/tVrYHk0/yn8DIqSW3uy+0U=
Subject key identifier: 5E:66:5F:C0:78:3E:EB:1F:58:01:B9:F4:72:B6:18:2A:11:34:E2:93
Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Certificate serial: 019D98500A8237B459228844E3324A9C1AD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
Manifest number: 0D42
Signing time: Thu 16 Apr 2026 22:01:15 +0000
Manifest this update: Thu 16 Apr 2026 22:01:15 +0000
Manifest next update: Fri 17 Apr 2026 22:01:15 +0000
Files and hashes: 1: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: D4sLDZf84gqP88/u6lIjtkZ/f657hLNu5vraolS5+xA=)
2: sn3WdCt5cOff3eRSoyZ6m4C8YHk.roa (hash: cE5dlzPj8uIWRQ0h42WBrGLO+X2WE9nV3RUnSZAY1yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:0a:82:37:b4:59:22:88:44:e3:32:4a:9c:1a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Validity
Not Before: Apr 16 22:01:15 2026 GMT
Not After : Apr 17 22:01:15 2026 GMT
Subject: CN=5e665fc0783eeb1f5801b9f472b6182a1134e293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:07:6c:16:88:a2:c8:52:30:7a:2d:58:c7:21:
96:0b:e2:e7:98:1c:74:7e:6e:db:7a:7b:8c:26:c3:
aa:35:fc:a7:01:a4:34:f6:8b:76:4b:1e:d8:50:af:
fb:4c:8b:6f:b3:26:01:78:96:8c:93:60:14:26:ab:
8f:d6:42:da:4b:8f:e9:47:a1:ac:d9:e1:2c:e7:cb:
7d:75:95:ba:57:19:63:86:53:aa:e2:5d:d0:e9:89:
87:b4:62:7a:1d:ef:8e:14:93:03:88:b6:5f:5e:e5:
5b:8f:d2:fd:5a:4c:ab:93:a3:33:31:14:ea:7c:ba:
12:f4:48:89:2c:65:1e:d7:b9:d2:82:87:87:02:61:
61:00:c4:87:17:a6:db:34:aa:75:ed:40:da:31:a4:
31:14:ea:c2:ec:5b:f7:7e:29:50:5f:50:30:5e:50:
c7:7f:57:c2:48:37:a3:e5:eb:f4:a9:d3:fa:0b:9d:
d2:33:93:14:e7:da:1a:18:52:01:bb:86:b3:8e:c8:
ac:48:a2:81:93:9c:a7:99:8c:8e:cc:61:26:b2:f7:
04:34:e3:68:ba:48:94:e4:1c:17:bc:0b:07:af:ad:
c8:60:87:88:a1:32:16:28:a2:ea:15:ea:b3:93:4f:
3d:95:3a:9e:10:91:d2:dc:e9:6b:e5:72:4f:c6:5c:
2f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:66:5F:C0:78:3E:EB:1F:58:01:B9:F4:72:B6:18:2A:11:34:E2:93
X509v3 Authority Key Identifier:
keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:48:f6:a3:be:d9:64:54:b3:85:ad:58:78:05:3a:f7:82:e9:
dc:2a:c3:6e:82:0e:95:3f:5c:f3:fe:e0:77:3a:41:50:b5:27:
51:cd:69:7f:c4:65:5a:34:30:61:e1:7b:bc:f0:f9:71:e4:80:
84:d1:ad:d4:96:52:18:4c:36:33:59:2c:14:54:c7:f0:af:3f:
9d:5a:57:5f:be:6f:e6:83:dc:44:92:b5:de:74:bf:44:7b:e0:
6f:5c:80:a1:5e:cd:00:24:b0:9e:b0:a6:eb:05:0f:c0:cb:73:
dc:5d:30:51:84:58:03:0c:bf:5b:fc:39:81:ff:f1:07:b9:10:
a7:b7:7d:f6:13:ed:98:4e:78:3f:b2:74:5b:c5:7b:f4:9e:03:
95:58:63:12:fc:3e:1e:3a:38:92:48:1c:89:de:82:ce:d0:0c:
f0:22:3c:e5:72:29:a9:06:2b:94:b5:8e:1e:89:f0:c2:bd:11:
4e:0b:94:9a:59:2a:cd:83:9d:9c:c8:f0:63:f8:4f:f9:af:6e:
82:ce:b0:6b:15:d4:db:d2:a9:30:c4:66:7b:9a:89:30:12:af:
4a:d8:7a:c4:e9:d1:88:a8:c5:ab:85:2a:10:71:f5:05:bb:65:
89:62:cf:25:42:76:52:a5:fe:14:3c:29:77:3f:ec:23:39:e2:
ff:a7:a0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:11:59 2026 by rpki-client