
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: 33EW2kJBaoVEJThfrP/18rW8/Z4dRX8DgyOrwKOT8y8=
Subject key identifier: 5E:5D:7C:7C:07:55:67:B5:14:71:E6:1A:77:3B:74:4B:53:31:FC:6F
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019EC148D87A7E63393D5CF3CF6FC7C020C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 13C2
Signing time: Sat 13 Jun 2026 14:00:37 +0000
Manifest this update: Sat 13 Jun 2026 14:00:37 +0000
Manifest next update: Sun 14 Jun 2026 14:00:37 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: J0c1FAPhZfVMduL7rdubZbattoLCW3+sz2aOO2ccAlc=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:d8:7a:7e:63:39:3d:5c:f3:cf:6f:c7:c0:20:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Jun 13 14:00:37 2026 GMT
Not After : Jun 14 14:00:37 2026 GMT
Subject: CN=5e5d7c7c075567b51471e61a773b744b5331fc6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a4:cf:e6:1e:16:bd:ab:7f:c4:c7:da:0d:7d:
05:13:da:17:c0:ba:a4:ca:b5:b3:3f:10:1e:dc:c3:
db:cb:b9:80:50:b0:d3:5e:10:0c:b4:5f:24:90:97:
70:c6:06:b8:37:bd:6b:a0:74:d6:73:64:c8:34:f4:
7d:5d:57:e7:70:91:bb:7f:e3:7b:15:49:87:f6:75:
ce:f1:8f:4c:51:45:e3:d6:b9:f9:94:90:c3:ed:b9:
dc:cc:ba:29:05:c8:11:c9:33:43:67:bd:fa:2e:d8:
43:fc:ad:18:05:4c:c6:3d:5a:07:f8:ef:33:a0:ff:
fe:e9:36:12:49:b0:ae:15:8f:32:60:1e:b2:4a:1b:
c4:21:43:87:a8:fd:62:8b:58:50:d9:7d:6b:b3:fd:
c1:dd:62:df:88:da:15:24:17:02:dd:db:d8:f6:90:
b3:1e:b5:db:8c:0a:f0:e8:b2:36:f2:13:62:29:1c:
c3:57:28:d4:7d:83:a4:8e:85:8b:e3:03:4b:c8:45:
37:9a:ed:16:27:92:34:1d:c9:dd:75:c1:b8:42:d9:
71:e3:dc:7b:03:52:b8:d4:08:3b:4b:50:29:80:59:
e9:e8:89:17:b7:9e:1c:69:21:a3:94:ed:0c:fd:c5:
33:f5:15:5a:65:c5:1d:a1:e5:38:1d:50:b0:a5:e9:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5D:7C:7C:07:55:67:B5:14:71:E6:1A:77:3B:74:4B:53:31:FC:6F
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a1:1a:80:7d:f2:07:ef:9e:d8:85:95:0c:af:31:2e:6b:ce:
67:1b:2a:a4:74:c8:90:6c:04:36:63:75:0a:92:e7:33:5d:57:
4e:5d:eb:1a:6c:53:3d:56:80:0a:ca:a0:21:01:94:f6:6e:8e:
88:56:23:d5:ca:a7:29:e6:40:95:a5:c1:0f:74:95:a0:f8:eb:
ff:51:73:fd:85:49:9c:9a:12:bb:df:00:e1:f1:76:47:67:a8:
24:55:3c:02:3b:c9:58:85:fe:09:f3:a0:c7:85:6d:02:a6:b6:
92:ca:76:03:d7:68:9e:fd:f0:53:83:9e:1a:0a:06:8b:c3:96:
a1:89:f4:12:21:0f:00:da:26:08:07:43:54:60:6c:16:db:7f:
24:e4:4b:ae:43:1a:a9:ef:a0:cd:84:67:ca:08:8d:d2:ba:15:
38:57:4b:c3:a4:46:d0:e9:1d:4c:3f:6f:40:5b:e8:61:d6:69:
a0:2e:58:c8:1a:0d:29:6d:60:bc:ac:54:c7:74:72:2a:14:2f:
77:d4:17:f8:be:29:92:75:49:e0:3b:61:c1:5c:9f:21:e6:0f:
b3:10:0e:7b:5b:5e:12:cd:20:8d:76:72:91:52:b3:88:04:5d:
bd:13:e4:4b:8d:0e:de:e1:65:70:49:14:3a:ba:95:4d:ac:f1:
27:ac:10:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:07:00 2026 by rpki-client