Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: lwcrenJehckkOfROewWp1Fi0Thz0doj5DmJXUftzOfQ=
Subject key identifier: 22:F7:F2:96:88:2F:DE:75:A0:CF:D9:1D:22:A8:61:AD:02:A2:35:4D
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019D9BBE215B338209B605E10814CF30DB2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 132A
Signing time: Fri 17 Apr 2026 14:00:21 +0000
Manifest this update: Fri 17 Apr 2026 14:00:21 +0000
Manifest next update: Sat 18 Apr 2026 14:00:21 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: xQNHUrwTlGi6u+F0f4Gtrf/KsNCoc7yvpRxqDP/4efk=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:21:5b:33:82:09:b6:05:e1:08:14:cf:30:db:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Apr 17 14:00:21 2026 GMT
Not After : Apr 18 14:00:21 2026 GMT
Subject: CN=22f7f296882fde75a0cfd91d22a861ad02a2354d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5d:fa:a8:f5:26:ca:11:57:58:ce:b5:79:7c:
e0:6a:90:cf:1c:4c:d2:11:4c:9a:d5:38:fc:44:7e:
ba:5c:b6:0c:72:0b:9c:7e:f5:bc:f0:98:68:e1:d0:
42:a6:10:28:c3:5a:8b:0a:5b:e0:23:04:f2:7c:c6:
6c:9a:a3:bc:4c:5f:e8:15:be:47:81:ca:99:51:40:
60:51:af:f6:03:03:a3:01:5b:21:35:a6:a2:d2:56:
a6:07:e9:38:64:08:15:6c:40:f3:5b:82:f1:8d:07:
7e:50:db:69:40:03:35:a0:8f:74:05:bc:e3:c2:cb:
80:9e:83:d5:1a:d4:29:48:75:a8:b1:00:58:6c:c4:
df:68:29:18:4c:2b:80:19:cd:50:61:5b:5e:49:fe:
67:cc:f4:e6:39:85:de:b2:d6:38:47:f9:3f:b4:ef:
fc:3d:fe:c5:9b:83:72:87:4f:12:77:4b:bf:61:8c:
b9:24:a2:14:11:4d:c7:98:06:29:81:d5:f7:f7:79:
08:ad:9c:8d:e7:8a:2c:79:77:f8:38:12:a4:83:a9:
72:14:69:39:9d:44:7d:61:9f:c2:1a:b3:c3:8b:e8:
29:85:78:5a:21:60:98:10:84:88:cd:3e:1e:d7:1f:
10:2d:b7:4d:1a:13:1b:16:9f:2e:55:bd:d0:b3:f2:
3c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F7:F2:96:88:2F:DE:75:A0:CF:D9:1D:22:A8:61:AD:02:A2:35:4D
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d1:07:46:86:d4:b5:87:b5:46:cf:bb:28:14:d7:24:ad:4d:
06:cd:4f:e0:7e:02:fc:98:ef:bf:e0:fb:e9:c2:25:b6:fd:df:
25:ce:71:36:e8:8a:21:64:29:7c:2b:40:6c:b7:60:8f:97:7e:
6d:93:53:7e:da:ec:c5:bb:68:49:ac:61:7d:24:4b:27:04:c9:
05:93:35:57:d4:14:41:ea:ec:31:67:ff:22:06:82:80:47:81:
b6:22:87:95:2c:a5:3b:67:7d:66:51:c7:49:f0:5a:5b:e1:78:
e2:72:6d:be:18:bc:eb:61:a7:22:53:e4:f0:fd:c9:86:07:ea:
bc:23:b3:c3:8e:97:5f:ed:b7:b6:55:4c:b8:df:15:df:36:fd:
72:a1:3f:71:6f:51:1a:5a:3d:84:e4:17:c4:f8:03:69:cf:98:
d7:cc:d6:18:d9:c9:06:5e:47:4f:05:2b:08:ff:ea:70:30:4b:
1a:6a:6c:9d:7b:64:9d:ba:b8:4f:56:3e:39:b6:d9:61:cf:45:
e9:84:90:fc:14:4f:4b:41:2f:fe:ad:1e:dd:65:36:0a:cf:f6:
be:3f:ab:5c:36:06:f9:0c:0e:d7:f2:94:f0:52:57:a6:99:33:
c2:39:88:cb:27:0c:ae:a1:8c:36:62:ee:a3:26:80:de:3d:14:
6f:d1:75:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:04:39 2026 by rpki-client