Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: CzfZPjfwuZ971DUXd1QFPn4bDyF4JLP9HpN0qe+iiSo=
Subject key identifier: 4B:56:80:BE:60:58:C3:61:65:6C:45:61:B3:AD:5D:B1:C9:D5:94:EF
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019CAC476CC09ABB8B98B1840708F4491C5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 12AE
Signing time: Mon 02 Mar 2026 02:01:27 +0000
Manifest this update: Mon 02 Mar 2026 02:01:27 +0000
Manifest next update: Tue 03 Mar 2026 02:01:27 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: eOTQCvvMr9hlY8wYrUUfilJHL0AGG4mbf2YlGIiNVXk=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:6c:c0:9a:bb:8b:98:b1:84:07:08:f4:49:1c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Mar 2 02:01:27 2026 GMT
Not After : Mar 3 02:01:27 2026 GMT
Subject: CN=4b5680be6058c361656c4561b3ad5db1c9d594ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f9:f3:77:da:7c:29:5b:18:26:7c:1d:8b:24:
15:17:2a:a2:fd:ab:21:de:ae:ad:9c:23:6e:b6:4c:
fd:1c:8a:38:28:e9:5b:4a:48:00:99:f3:c5:a2:b0:
a2:8f:68:9a:92:6f:de:a8:fa:9e:0c:d4:25:26:c7:
6a:91:c7:64:6b:80:6d:60:19:6a:1e:0d:0b:7b:b5:
7e:f3:7d:c9:ab:61:64:f4:f6:5c:e8:43:de:9a:35:
67:3a:e6:ca:b5:57:5c:ea:f9:17:e8:6f:0e:fa:61:
5c:2f:34:41:57:3c:03:9c:7c:b6:dd:a6:70:a8:81:
cf:10:b5:b6:65:7c:39:61:ee:3a:b8:99:33:64:36:
e0:ce:dc:28:44:37:40:5f:9a:56:1a:61:26:a8:0e:
22:36:4c:8d:bb:9d:d6:f1:2b:22:7b:53:77:0e:03:
f3:d4:ae:f3:5c:90:c5:d1:8a:42:03:15:4a:ff:ef:
4e:0d:08:bd:ab:9e:59:4b:78:ed:32:3f:8c:3e:db:
71:f2:3e:a2:d3:f8:33:b8:ba:55:67:92:94:5c:cd:
82:1e:f9:60:e9:37:2d:27:d9:1f:bc:31:16:3b:1b:
e5:48:3a:ed:a5:8d:5d:a0:de:52:94:6a:c1:af:5d:
59:8b:dd:c8:23:51:f0:09:13:ea:2b:43:37:85:0a:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:56:80:BE:60:58:C3:61:65:6C:45:61:B3:AD:5D:B1:C9:D5:94:EF
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:84:0d:9a:4b:49:2b:33:b3:ea:19:69:a9:5e:ef:5a:fc:5d:
26:f7:87:22:fe:80:d5:b8:ba:01:f8:4d:8d:af:d3:81:7e:e0:
2c:ee:e5:df:7d:a0:3e:db:35:9d:1b:33:e9:53:be:c7:c6:ec:
a3:89:7f:99:1d:ee:2d:87:bf:27:40:df:5b:af:f2:51:60:0b:
72:b0:8a:c5:ac:2e:03:e1:52:e5:97:7e:bd:1e:79:97:01:e7:
f7:3d:6b:28:3c:4c:79:9b:2c:03:27:4d:25:69:2b:52:2f:ca:
31:0c:cd:46:28:aa:de:2a:4f:ff:40:b5:eb:7c:88:0f:87:0c:
93:f0:37:19:b9:a5:ae:c4:b7:96:68:61:f5:7f:fe:ce:7e:d0:
7f:13:cb:95:a8:d5:cd:2e:4b:35:0e:22:90:1d:7d:ee:78:09:
54:90:7b:01:95:04:d1:9f:ed:4b:89:f6:16:6b:c1:67:c0:da:
c2:f5:11:0d:7f:cd:e1:be:60:44:b5:19:81:6c:d7:75:c6:8f:
1e:11:25:fe:df:e1:70:25:85:c9:29:37:96:88:4a:97:30:f1:
8f:f1:d8:a4:8a:21:65:e1:ad:3e:67:f5:0e:6d:03:d1:b3:a5:
b1:1d:95:52:e1:98:7d:4a:79:32:39:6d:ef:8d:fa:66:e2:3d:
aa:31:b2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:32:16 2026 by rpki-client