Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
File: ORxdMzEUXsjicYdvgEIge50Ay2Q.mft (raw, json)
Hash identifier: /wN32ubv8c7KvjySKEPYAV1coyZyM/+e6uTD/W5kPlw=
Subject key identifier: DD:35:77:C6:9D:DE:CC:62:9E:B7:6F:9A:EE:92:8E:67:43:95:66:1D
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: 019D9C2CC2B8FF66E3302DDBE7F5F51B4C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
Manifest number: 119A
Signing time: Fri 17 Apr 2026 16:01:12 +0000
Manifest this update: Fri 17 Apr 2026 16:01:12 +0000
Manifest next update: Sat 18 Apr 2026 16:01:12 +0000
Files and hashes: 1: ORxdMzEUXsjicYdvgEIge50Ay2Q.crl (hash: u3Q0tv3L+VdGMYcLRlFLVOQYmdQg7l/lCMY/8MGqgJU=)
2: bv7crWXlDlytvYkySG7c5NmMUkA.roa (hash: hgMG06MlwTq9Qr8spukEtgFAVFOnQKq96lFNbYV3uWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:c2:b8:ff:66:e3:30:2d:db:e7:f5:f5:1b:4c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Apr 17 16:01:12 2026 GMT
Not After : Apr 18 16:01:12 2026 GMT
Subject: CN=dd3577c69ddecc629eb76f9aee928e674395661d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:70:ce:67:1a:96:22:b1:41:e1:9c:9a:35:8a:
7c:49:95:be:a2:d5:8d:e9:b1:3b:c5:fe:e3:1b:7f:
6c:33:df:49:13:bc:05:c1:7c:c1:70:9c:e3:11:71:
2d:bd:fb:5b:22:a6:89:96:6f:4d:90:ff:dd:0c:f6:
d1:cb:26:0d:c9:44:74:82:e4:26:3f:75:cc:0b:5f:
a1:24:d5:cf:94:fe:19:d4:b2:b9:7e:66:a9:5f:dc:
ce:e1:d1:e5:e5:49:e0:52:bd:ad:a2:e4:69:e8:8a:
9c:b5:d9:78:fb:66:8c:b5:71:2c:b7:7e:7f:cd:b0:
9e:8b:da:77:ab:4f:f0:8f:76:16:2c:7f:19:94:66:
60:40:8d:c5:77:07:25:ac:b4:a7:0e:bc:72:25:ed:
96:2e:f2:69:58:ae:c4:eb:4e:a1:83:83:e2:ff:73:
8e:d8:f2:8a:ca:b4:7d:fd:69:14:e6:09:e5:69:44:
7a:44:00:07:4d:b8:4f:3a:23:8f:3a:3b:74:e1:69:
31:b5:e0:2e:6d:25:57:b4:11:7f:65:d9:1d:bd:97:
3b:2d:04:02:9a:a1:7d:b5:50:f1:5f:1c:06:82:90:
12:e1:a5:58:e3:ef:c9:1f:dd:ba:79:47:38:72:92:
b0:f3:3c:93:71:33:65:21:8b:f4:27:a3:ab:5c:32:
0d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:35:77:C6:9D:DE:CC:62:9E:B7:6F:9A:EE:92:8E:67:43:95:66:1D
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:2f:3d:35:a1:e3:e6:05:1b:1e:e2:86:17:d2:fc:e6:8d:ef:
c0:20:19:22:5f:7e:f2:35:92:e2:be:9c:6c:76:ce:b7:e9:58:
01:55:bb:de:9f:46:3c:3c:ae:b2:e9:26:d0:bc:42:d6:d7:2a:
66:55:83:4d:d0:8f:72:a9:e1:d3:48:35:ef:f2:33:4d:fe:5b:
d6:e2:16:4d:ba:f5:3e:92:e3:46:08:ce:25:42:1b:47:15:cc:
5c:ec:84:f1:40:ad:45:8a:01:00:fe:ed:ba:35:5f:86:a0:96:
48:2f:2a:0c:e3:59:1b:c5:38:79:8a:bb:b0:a9:a4:c7:90:8f:
34:56:7e:08:01:f9:b6:ef:d1:7b:56:60:b8:fc:a5:c9:3d:5f:
58:cb:43:1c:64:89:62:ba:0c:cf:46:3a:24:25:34:95:aa:2b:
69:20:e7:ec:44:3b:81:20:cd:89:88:6b:d1:31:b7:93:3f:5a:
a0:72:ab:c3:32:c3:a6:c0:c8:8b:fc:3c:38:42:4d:79:da:de:
16:fa:16:c5:a2:fc:bc:d2:f2:56:e6:b5:ef:ed:ef:ec:c6:52:
33:0b:21:35:6f:a9:22:80:ef:af:2b:fc:51:9d:45:04:a1:1d:
86:d1:30:12:cf:6e:04:4f:ae:24:04:59:ad:a7:92:6c:7b:4c:
85:38:ff:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:31:15 2026 by rpki-client