
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: ag/6Azp51Mt4z2gafkQ++kXxUqhEpQXYkWDmbN1agVI=
Subject key identifier: 2F:FF:58:ED:A0:7F:D7:4B:AA:32:3A:32:99:48:9A:1E:17:4A:60:3A
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019CAE34EE5B7CA62DCD59133E813C8A9456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 12AF
Signing time: Mon 02 Mar 2026 11:00:30 +0000
Manifest this update: Mon 02 Mar 2026 11:00:30 +0000
Manifest next update: Tue 03 Mar 2026 11:00:30 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: Uc9hopsYNF9GAkfQCxijN9PThA6ivvYvVXnq+D+nLTo=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:34:ee:5b:7c:a6:2d:cd:59:13:3e:81:3c:8a:94:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Mar 2 11:00:30 2026 GMT
Not After : Mar 3 11:00:30 2026 GMT
Subject: CN=2fff58eda07fd74baa323a3299489a1e174a603a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0e:62:87:de:68:a1:2f:9b:d9:80:e6:72:51:
bb:bd:0c:d7:e2:46:6a:bd:f5:a0:e2:fb:87:2f:95:
55:e0:94:8b:5e:3a:5e:74:46:7b:0e:8c:8c:61:7e:
45:fb:f8:fb:e4:c9:eb:79:27:64:98:ef:0d:8b:a3:
c6:ab:69:ae:b5:95:11:d6:35:14:7c:7b:fd:d0:a1:
46:a4:f8:57:73:de:1c:01:6d:38:d8:71:e4:84:bb:
d5:54:6f:74:7f:be:82:dc:d8:4c:ce:0d:d1:0d:a3:
6b:45:ef:a8:47:40:2b:51:a6:b7:bf:cb:3c:ac:ad:
82:f8:28:d2:d2:2e:3e:25:55:db:66:d3:07:7d:a0:
cb:47:e3:23:d2:8a:e3:df:0d:c1:c5:69:57:49:c0:
4f:02:82:45:0f:d2:3e:73:b4:13:9c:42:86:e4:da:
26:7f:96:54:ef:1e:4b:c8:b0:a1:fe:80:ae:4e:48:
dc:7a:4d:a5:7d:9d:7d:7f:af:33:d9:1e:a3:63:fa:
8b:6f:d5:10:3d:85:a8:5b:66:35:a3:aa:ab:77:5f:
57:8d:2e:b7:9b:b6:82:91:cf:58:49:94:01:da:43:
3b:26:70:2b:57:dd:f6:4f:13:ee:48:c9:c0:c4:bf:
4d:79:d6:37:ce:1f:32:ae:10:2f:75:9c:24:72:dd:
79:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FF:58:ED:A0:7F:D7:4B:AA:32:3A:32:99:48:9A:1E:17:4A:60:3A
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a5:21:75:1a:3a:0e:dc:76:d2:1e:d9:a9:1b:fc:7e:c5:f7:
9a:3f:ce:4c:de:1f:45:fa:6c:04:01:3e:8c:4a:cc:e3:03:02:
7b:5d:80:d5:8e:4d:67:da:a0:68:96:3d:c8:e4:b9:1c:63:7d:
8e:04:3b:ad:d8:f4:c2:75:02:9e:26:19:e9:e4:9d:27:99:11:
02:29:12:b7:ec:03:5f:b4:4b:7d:e1:a5:44:b1:ca:c6:fe:30:
29:54:b2:6b:83:d9:1a:af:41:d6:e6:35:98:6c:3c:15:8b:13:
69:12:68:98:3a:be:d0:d0:48:7b:38:92:34:45:25:c2:f9:6b:
e4:87:52:32:09:ca:cd:01:49:c3:b1:4f:5e:4d:f8:dc:ce:32:
2f:8e:a2:6f:f5:e7:ef:a3:bf:60:dc:58:c1:91:17:a5:5f:cf:
11:d2:6c:19:88:31:dc:e9:88:1b:d6:db:30:8c:2b:0e:ca:04:
94:dc:82:71:b6:74:fc:e5:52:cf:e1:25:eb:e8:bb:72:4a:26:
e9:9e:90:85:c5:4c:62:66:24:3a:3b:5b:1f:7a:c7:0e:b1:88:
5b:62:5f:a8:40:15:51:8c:e2:f4:3e:23:9a:5a:13:29:5e:06:
71:82:34:06:76:eb:d8:43:2c:89:e7:30:e8:e2:0a:6a:3a:36:
87:d6:0a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:45:00 2026 by rpki-client