Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: aIqEoP8/LJzh80sqoHdbiReO9kt5nfQaCq5nOQinLTc=
Subject key identifier: 12:D3:31:1D:E6:68:1A:82:F8:33:8C:39:DB:BE:62:F2:A4:9E:79:C6
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019D99990ED7CE053661B08A82EA264239AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 10D6
Signing time: Fri 17 Apr 2026 04:00:37 +0000
Manifest this update: Fri 17 Apr 2026 04:00:37 +0000
Manifest next update: Sat 18 Apr 2026 04:00:37 +0000
Files and hashes: 1: CJjsxGugLLvFbEHWxKghiGCE6lc.roa (hash: cOhc+r4MNkPP5359GE1QtRWPIxNlJ+rMixUIriIgwqM=)
2: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: vSQRKPi/haA32lbWwE2ESLlW4U/qv/AaSVsPtk55MV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:0e:d7:ce:05:36:61:b0:8a:82:ea:26:42:39:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Apr 17 04:00:37 2026 GMT
Not After : Apr 18 04:00:37 2026 GMT
Subject: CN=12d3311de6681a82f8338c39dbbe62f2a49e79c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:63:25:35:a1:be:d5:f6:37:c9:00:9e:6c:
5d:25:17:b5:66:a9:44:86:87:59:23:af:50:aa:a8:
b3:d0:31:11:58:a0:54:db:99:a1:70:57:ae:af:cb:
1b:6c:96:e9:1e:65:7e:61:27:54:97:7d:a0:7d:e7:
df:cf:36:9f:46:9d:8b:9a:44:1d:a3:39:a6:a5:8d:
c3:4f:0a:6e:76:2a:d6:b4:db:d1:d2:3d:48:94:78:
54:a8:fa:a3:c7:63:9b:cd:aa:52:13:25:4e:28:77:
34:5b:0b:f6:0e:4a:72:c3:0c:d5:c8:d0:03:85:89:
84:eb:96:14:7f:2e:e4:6c:fe:7c:fc:c6:bd:b2:ce:
6a:8e:7c:48:69:26:60:2f:f4:e0:9c:3c:ff:ca:b9:
ba:c0:9f:b5:40:dc:4b:27:be:97:38:7e:4f:40:f3:
dc:df:7a:8c:73:f4:0c:e6:bf:5d:c0:0a:36:1b:38:
1d:eb:74:db:7b:87:ff:c4:f3:6e:49:59:8f:1f:f8:
5f:51:9e:a8:2c:72:3a:78:d5:3d:cd:f9:81:91:19:
20:20:9f:64:b4:07:c3:57:af:8f:43:96:c2:a5:84:
54:71:92:0e:ab:bd:f1:e2:6d:f8:cb:46:fe:99:77:
ca:c4:03:e5:f3:49:e8:35:2b:f7:62:de:6d:ab:0d:
00:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D3:31:1D:E6:68:1A:82:F8:33:8C:39:DB:BE:62:F2:A4:9E:79:C6
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:91:58:42:c2:4d:99:82:67:66:10:eb:02:63:b9:d2:c1:41:
96:0f:c7:6a:74:07:82:dc:46:4c:3d:a1:b0:2c:75:66:89:9f:
9d:a9:4f:cd:5c:c1:a5:57:12:fa:c9:32:5c:69:94:87:4a:5f:
f6:ba:bb:a3:db:c7:a9:98:19:5e:10:ba:93:25:df:0e:e0:f6:
26:e7:b3:49:b6:30:ae:a7:be:dd:ae:84:6a:32:e8:52:b9:2d:
ff:65:6a:6e:34:be:d7:26:f2:b8:0d:92:4a:ef:63:de:26:7d:
36:98:11:2f:45:dc:88:7b:28:60:9f:54:d4:c2:41:a9:30:2f:
61:47:9a:63:99:b8:e0:f9:7b:91:13:f4:e4:94:f8:9f:d3:05:
f3:10:b8:35:2c:2b:7f:d8:b7:c7:4e:b2:0c:0a:7e:11:c0:1a:
52:9c:b2:65:f7:d0:a1:80:3e:dc:61:bd:40:72:0c:60:f7:5e:
be:b6:cb:70:6c:12:ad:91:fd:f9:d9:bf:96:79:58:16:41:b5:
1f:69:52:68:7e:30:6f:66:21:a1:26:05:ed:0d:92:31:68:3e:
25:28:16:af:b1:0c:89:a2:9f:da:cb:49:4d:9c:a6:43:26:05:
7b:d2:95:8e:80:fb:92:e4:af:55:91:e4:d1:a7:19:fd:94:78:
f9:be:bb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:50:42 2026 by rpki-client