Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: 1aztei/rFoVYjjUy+fuBDjy+rkzcEBbUyVyhvPvWLDk=
Subject key identifier: B0:CF:31:B7:13:CC:5C:B1:84:4A:BC:EA:B6:79:CD:FF:C7:6C:47:F5
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019EC33733B6B530D2E056634C5E3531603C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 13C3
Signing time: Sat 13 Jun 2026 23:00:35 +0000
Manifest this update: Sat 13 Jun 2026 23:00:35 +0000
Manifest next update: Sun 14 Jun 2026 23:00:35 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: 8F2YCILNbdzN3HemD1QzuRLca2G0AVTPUHE6TJRgyCY=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:33:b6:b5:30:d2:e0:56:63:4c:5e:35:31:60:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Jun 13 23:00:35 2026 GMT
Not After : Jun 14 23:00:35 2026 GMT
Subject: CN=b0cf31b713cc5cb1844abceab679cdffc76c47f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:fc:6f:08:be:5e:8f:46:05:2a:9f:e1:34:
f6:8e:16:ee:37:a8:92:d2:02:f5:f3:f5:3e:19:86:
99:7b:41:e3:35:fb:34:0d:d5:c7:4a:65:b1:75:fe:
37:5d:f8:0e:ac:29:8b:6b:b6:e3:0e:ab:27:fa:29:
d6:78:54:af:78:02:2e:e2:2b:9c:30:24:1f:18:43:
a1:87:04:b1:7d:af:eb:e7:c2:c9:d2:20:2f:21:62:
d0:91:75:8c:f5:51:d9:b9:89:8c:f9:6d:75:6b:9f:
f9:07:68:9f:98:cc:2b:51:00:a5:47:c0:7c:dd:89:
b1:6a:6e:52:e1:42:18:ec:24:2c:8a:e7:03:f1:19:
ce:18:01:85:43:ef:f8:0f:a3:c2:d7:e7:c7:4d:85:
89:5e:73:10:d6:69:05:7b:da:29:a2:5d:36:8b:93:
ba:fd:55:99:e5:1d:25:d8:ce:02:27:d4:f0:d9:c9:
89:a3:58:c6:ca:6c:83:7f:ff:39:97:cc:2c:a3:b3:
0e:a1:19:e4:c5:a8:7a:27:6a:17:63:42:bd:b7:43:
04:ed:1f:7d:0e:fe:ce:2d:82:85:ae:d2:38:7d:42:
03:6c:59:cb:b5:14:6d:87:75:a4:dc:51:13:ff:da:
30:c8:90:a0:24:02:b4:a5:06:4b:8c:99:bc:76:41:
75:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CF:31:B7:13:CC:5C:B1:84:4A:BC:EA:B6:79:CD:FF:C7:6C:47:F5
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:58:4d:d2:35:b6:e3:c9:1c:83:63:58:ea:40:ba:b1:1d:ed:
e7:02:63:da:11:82:4e:97:aa:ef:a6:f5:6c:6a:2b:78:f1:94:
e7:08:5e:f4:bb:82:4e:dc:0b:25:61:0b:15:ea:11:5f:db:a3:
c2:d9:de:46:25:fd:d2:a0:f2:2b:a7:76:01:2b:99:71:fd:7b:
0c:31:c7:88:47:8f:c2:33:22:98:27:a4:ce:d0:24:7b:45:1b:
78:7b:11:90:a1:51:5a:8d:74:93:53:dd:f8:65:84:6c:db:ce:
35:56:e5:30:7f:8f:98:7d:30:ae:33:68:23:27:01:da:1e:a6:
e2:86:a7:07:20:1d:ac:ed:3f:66:42:00:ec:58:54:b7:28:ad:
30:7e:b8:d1:96:75:45:2d:1d:27:63:6c:2f:35:66:5f:4a:fa:
6c:77:cb:2e:7c:fc:34:f9:eb:56:be:46:c6:b0:a7:41:68:03:
23:07:64:24:fb:e5:8c:12:22:39:17:ba:6d:52:6e:12:9a:b9:
fc:37:69:49:2a:ff:92:80:95:92:5c:8e:a4:a5:4f:77:09:b9:
dd:43:80:b0:f9:51:a5:97:44:b4:e5:13:c8:78:96:18:e2:c0:
bb:3c:c7:d9:2f:7c:ba:78:b5:63:44:ed:05:37:05:6b:fb:18:
54:e9:d9:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:34:28 2026 by rpki-client