Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft
File: o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft (raw, json)
Hash identifier: WitA7CwxWCLxhfN8uP2yWdhtNkMn1G0PjUto/DH7j3o=
Subject key identifier: 24:84:EE:E2:46:0B:1B:8E:62:F6:52:68:F2:21:87:DA:0B:3E:C8:A0
Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4
Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4
Certificate serial: 019D98BD3390EF8C51474C5E1342E58550B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft
Manifest number: 17F3
Signing time: Fri 17 Apr 2026 00:00:29 +0000
Manifest this update: Fri 17 Apr 2026 00:00:29 +0000
Manifest next update: Sat 18 Apr 2026 00:00:29 +0000
Files and hashes: 1: 2zvlLx0eZAbOYhxgIyqrlDoVC1g.roa (hash: KQYOWqTXbXwvtekOLsVc2rxud/hR8A87QDGRubzzTXw=)
2: 4Ry_mlzBaUQ6UP1sVtEjuUsTD1M.roa (hash: Cbb+P8Z0r4y6AjDJgLqHTENuD/Go8wmcnnMVwTktU/4=)
3: D757pdeWdoida8GHOUdKTXVzQLA.roa (hash: 9oAemx2TPMquAep4lORrFPAoBV6BakfDEYxe+lt7IJE=)
4: o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl (hash: 79GIxFJEn6jy76L8y2CQaDjKNUjqzFWKDBu2Mj2KtrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:33:90:ef:8c:51:47:4c:5e:13:42:e5:85:50:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4
Validity
Not Before: Apr 17 00:00:29 2026 GMT
Not After : Apr 18 00:00:29 2026 GMT
Subject: CN=2484eee2460b1b8e62f65268f22187da0b3ec8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dd:e8:3d:90:fc:62:19:5d:65:12:91:df:c9:
fc:4d:16:b6:f8:90:41:8c:f3:ff:30:9b:ef:07:53:
73:22:47:69:e1:e9:0e:0d:69:8d:0f:20:7d:c9:07:
bc:c9:3f:c9:da:f5:65:8e:84:9d:79:16:6a:e0:5a:
3b:03:36:ec:6b:3b:eb:2e:50:f8:d0:49:19:0a:3c:
de:57:59:7e:ad:e4:4c:1c:6c:4d:9b:a0:d6:23:aa:
08:78:82:d7:c0:dd:00:ec:ba:15:8a:96:bb:32:ca:
47:6e:b5:fe:2a:98:c8:6e:4f:78:6f:e8:81:4b:3c:
75:06:1e:91:5d:ac:cb:a7:24:22:59:e1:33:d7:6c:
18:8d:f9:09:0e:b5:62:e9:12:2a:9a:6c:0a:3b:db:
b4:cf:2e:24:5b:8e:01:fd:e7:4a:48:56:4d:06:36:
9e:e3:9e:1f:de:ab:12:e0:10:66:25:61:8c:35:2e:
86:17:b7:dc:24:07:78:2b:af:59:79:7e:63:b8:ff:
ce:b4:5a:ec:af:50:3c:8c:da:bd:ff:30:43:54:58:
5f:7f:8b:57:74:89:18:75:ac:8d:8e:3f:2a:44:66:
b9:49:ea:ed:cc:b6:80:36:ef:44:5f:51:37:6e:94:
77:84:2a:5d:e3:1b:67:57:ec:7a:e2:55:55:fc:63:
17:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:84:EE:E2:46:0B:1B:8E:62:F6:52:68:F2:21:87:DA:0B:3E:C8:A0
X509v3 Authority Key Identifier:
keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b4:09:9c:4c:dd:d5:e1:25:2f:48:21:98:4f:f5:05:65:01:
d4:03:96:6c:dc:17:89:6e:5c:29:b0:c4:a9:fc:f7:67:32:3b:
14:53:bb:c7:7f:9c:f4:03:45:ca:b9:b6:57:4c:7b:dd:c1:d0:
e1:61:f3:c9:cb:c1:44:9a:69:9d:93:0f:12:9d:40:49:ea:c7:
09:96:4b:64:72:1e:dc:9a:17:30:f8:f7:8a:ad:ee:6e:6c:45:
09:34:db:a4:53:33:1b:43:3c:3f:c0:33:2b:ba:54:f4:0d:75:
bd:ca:b9:df:91:b2:4d:ae:e0:9b:7d:9b:87:0f:ab:2d:e1:aa:
0d:de:1a:89:d3:37:a6:e8:2c:6c:55:46:61:88:59:99:63:bb:
ef:54:46:68:79:bf:b2:fe:62:b0:9a:74:eb:c6:ab:2d:53:70:
53:00:dd:fd:c3:0b:03:fa:54:3e:b1:18:e5:8b:c6:b8:76:10:
8f:b5:05:75:7b:f8:bb:d8:a7:ae:f1:5c:62:44:de:aa:5b:65:
e4:9e:f4:cf:7f:a9:d8:4e:88:45:73:7a:9c:77:c8:a1:0c:31:
7b:a0:ea:ea:90:64:12:51:d0:4c:5d:61:cf:0b:18:8e:1a:dd:
ef:e2:a4:52:9a:c2:87:f2:c0:29:4d:7d:17:59:1b:1c:3e:15:
0e:80:bd:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:20:11 2026 by rpki-client