Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
File: o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft (raw, json)
Hash identifier: 3ZoyoYApajvWaoK/xRODiQNZrvyS19OnriJc1kwo+mU=
Subject key identifier: 40:13:2C:D9:24:7F:AC:43:21:56:52:F3:92:F3:C1:86:14:BB:42:78
Authority key identifier: A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
Certificate issuer: /CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Certificate serial: 019D9A7494D94D9B4FB4E30C7982E7BD1311
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
Manifest number: 13C2
Signing time: Fri 17 Apr 2026 08:00:24 +0000
Manifest this update: Fri 17 Apr 2026 08:00:24 +0000
Manifest next update: Sat 18 Apr 2026 08:00:24 +0000
Files and hashes: 1: TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa (hash: 8hOHuxX3j27ZIrYwIouhG6F7KAUYojmRWpf6OzaimAU=)
2: o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl (hash: ydCuWGrDytOZEzTRWhI8Uv20h1V4wZ3HN0Nuybmd5Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:94:d9:4d:9b:4f:b4:e3:0c:79:82:e7:bd:13:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Validity
Not Before: Apr 17 08:00:24 2026 GMT
Not After : Apr 18 08:00:24 2026 GMT
Subject: CN=40132cd9247fac43215652f392f3c18614bb4278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:d3:e1:2e:b9:8f:cd:32:5f:b9:2c:82:19:
3c:67:20:b8:77:d8:02:d2:a9:60:34:94:6e:1d:37:
33:24:c2:86:3d:97:a4:e4:85:6a:78:bd:99:44:5d:
6b:b5:eb:f3:78:7c:9a:98:03:9a:7a:4a:98:b6:54:
ca:59:6a:61:40:b7:6d:ae:e1:c9:4d:29:04:4e:9b:
94:3e:50:f1:30:53:bb:f2:4d:1c:3a:db:e1:c5:7d:
85:0a:dc:59:ed:b8:5b:70:a2:06:5d:19:d8:02:ba:
6c:d8:5f:b8:ba:d3:d4:45:6e:61:fb:e9:2e:a2:55:
85:e1:a3:6d:e7:b2:48:67:84:9a:47:10:54:ad:86:
89:ba:e6:d5:39:46:79:09:04:2a:5a:ca:81:88:54:
8c:39:80:23:b6:ee:aa:ca:d1:03:52:0f:14:7b:19:
97:31:2f:08:44:98:e9:80:9e:8c:fd:b4:a8:c4:75:
62:f8:42:32:49:51:81:ec:63:b1:7e:c0:ef:79:9e:
e0:6e:cf:0e:4a:fd:25:be:ad:8b:e3:5f:9a:0c:62:
ef:ef:ac:86:66:86:22:c9:02:a2:69:10:f6:1e:da:
aa:e7:e9:04:34:8f:1f:6a:e8:0e:ce:74:b9:d9:71:
fc:7f:9a:84:c8:eb:14:87:1f:ec:10:21:8b:75:eb:
f3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:13:2C:D9:24:7F:AC:43:21:56:52:F3:92:F3:C1:86:14:BB:42:78
X509v3 Authority Key Identifier:
keyid:A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:94:4a:ba:1c:ee:f7:ae:d4:02:0f:88:15:1a:eb:6c:04:0a:
cf:a6:73:e5:7d:8c:cb:1a:a0:39:0c:16:43:74:28:d2:28:16:
7a:1b:ee:56:57:31:64:0c:2f:ba:6a:9e:9d:3f:fc:19:a6:02:
f8:d5:42:36:b7:d5:39:9c:52:9c:1f:75:90:34:1e:cd:f1:33:
c9:49:5e:ba:52:82:67:bf:6c:a3:37:23:f7:58:3d:6e:8e:f5:
6f:a5:9f:1b:5a:a5:4a:75:e3:ff:9e:65:d2:c4:6c:ca:15:ee:
ae:ca:53:4f:b1:14:5a:4c:90:ff:92:ba:64:b4:20:e6:7c:58:
9c:32:b5:0d:bb:12:50:93:26:9e:5c:ec:b1:fa:82:df:7d:c3:
d8:b9:5c:8c:a0:ce:78:05:17:68:59:de:08:26:5b:ea:44:48:
5e:08:c2:ab:0b:ff:2a:70:cc:01:3e:10:04:07:6a:f3:2c:0f:
0b:44:41:77:c9:cc:97:7d:a3:4f:7e:80:4f:14:73:5c:b7:09:
d7:35:7c:7f:e8:d2:8d:b5:af:bf:df:7d:4d:14:3e:76:cd:a5:
b9:9d:42:8c:31:ea:66:0d:75:2b:db:63:bb:66:35:d3:62:a5:
4b:1f:6d:4c:df:ed:8a:9f:4a:b1:6d:f6:5d:43:61:0d:f8:fb:
32:03:c5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:17:53 2026 by rpki-client