Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
File: OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft (raw, json)
Hash identifier: vubY5QMtIiXpjzXTOopJNp7cAk71KJ6RPeqDg3pg/Uc=
Subject key identifier: 5A:BA:F9:EF:13:DF:C2:FF:28:88:17:E0:79:AF:85:11:CA:7C:AA:34
Authority key identifier: 39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
Certificate issuer: /CN=39348867dcb2956aca65d08348e440d4727a3743
Certificate serial: 019D985004713C8171BB3340D71139F497E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
Manifest number: 0665
Signing time: Thu 16 Apr 2026 22:01:13 +0000
Manifest this update: Thu 16 Apr 2026 22:01:13 +0000
Manifest next update: Fri 17 Apr 2026 22:01:13 +0000
Files and hashes: 1: OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl (hash: D7YddRIu4zLBQIsoYvqhXQU2uA+u40J55FO6f53K978=)
2: T72oUjEo0s0JrOYNowoRHWjX0w4.roa (hash: y4/cjDz+TB542z9AKMzNcOCpxzpFqML97uF7RmVq7YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:04:71:3c:81:71:bb:33:40:d7:11:39:f4:97:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39348867dcb2956aca65d08348e440d4727a3743
Validity
Not Before: Apr 16 22:01:13 2026 GMT
Not After : Apr 17 22:01:13 2026 GMT
Subject: CN=5abaf9ef13dfc2ff288817e079af8511ca7caa34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:65:c4:50:50:19:ab:c0:e9:d5:e2:28:f9:
6f:3e:4a:ee:65:6f:d9:60:37:c6:37:24:f2:a6:fe:
97:51:f0:1b:c9:f1:bc:2f:64:e6:c8:62:26:ef:61:
a8:78:59:1e:91:e7:a0:c7:3e:24:19:94:78:e2:71:
85:8d:51:23:78:b6:68:e8:cd:33:bc:21:01:03:3b:
8c:aa:24:b8:43:44:52:8a:ba:97:f8:14:95:2f:db:
05:36:a1:dc:71:ea:fa:e4:d2:9f:4a:d2:65:b3:0a:
69:3c:31:5a:0d:37:12:ea:0e:1f:ca:19:35:b7:7e:
8c:c1:cb:c2:eb:f6:75:11:38:21:f6:db:c6:97:b3:
83:f6:89:74:f0:b3:31:e3:af:56:18:c3:70:c9:5b:
69:ca:b6:d2:88:21:af:bc:c1:1f:d1:71:7c:cf:7f:
04:6d:1d:64:f2:3b:49:ac:a2:61:02:1e:ac:48:7f:
7c:4b:f2:6b:ae:ca:f6:75:c6:09:59:b8:f3:b6:86:
ee:0e:72:e6:28:cb:a2:15:18:88:77:ba:39:9f:29:
45:8f:9c:51:82:22:52:93:e4:28:ac:b5:65:eb:e1:
a1:84:b0:f0:d1:77:c3:da:7e:1a:91:7f:ab:76:89:
de:b2:ff:4c:2f:98:f2:24:77:41:22:30:a5:79:64:
41:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BA:F9:EF:13:DF:C2:FF:28:88:17:E0:79:AF:85:11:CA:7C:AA:34
X509v3 Authority Key Identifier:
keyid:39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:ab:b0:a2:4a:ba:a3:b7:c8:f3:e7:66:e3:34:fe:4e:56:3c:
f9:0c:ac:9f:01:9a:32:da:95:66:93:7a:b3:2d:d5:b0:dd:7c:
e8:a2:b6:21:b2:a5:3b:70:dc:c6:57:7f:db:60:75:01:ab:d2:
75:0d:ff:00:5f:2f:5c:b1:a2:2c:5b:5e:74:99:b9:e6:a2:b2:
d6:a4:5e:89:15:f9:99:20:28:f5:6e:78:3d:44:80:cc:22:08:
f7:9e:fc:61:c3:92:76:1c:79:ea:64:c7:70:cc:fc:b8:af:b1:
ef:a6:7c:b7:85:75:95:14:ef:73:b7:5f:34:96:e3:12:bd:d9:
35:c4:95:f0:54:26:d4:04:51:32:48:50:b0:71:e4:bb:25:01:
a1:8c:58:15:af:9f:83:57:54:e6:03:7e:f6:81:ae:87:53:00:
00:0d:8d:fe:f2:d6:9a:3e:3b:5f:d5:bd:59:74:36:bb:02:c1:
f1:34:70:9b:ae:e7:f5:f9:af:00:a9:c3:0b:03:a4:e6:d0:97:
b2:55:00:eb:25:35:5c:d3:44:c6:30:52:4a:39:cf:ab:ec:d3:
8f:3f:79:d1:a6:15:2a:65:c3:32:db:77:82:f4:18:c4:c5:9d:
9d:cf:49:75:e7:78:e2:84:93:e6:fa:9a:d5:bc:ae:c0:45:97:
2f:c9:9d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:46:33 2026 by rpki-client