Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: fWu+wbHpxuBOcXzalUqfxGLpBrT+TiKFiQ1PePuGdZk=
Subject key identifier: F8:BE:B5:46:5D:5E:6B:06:8B:D8:5A:A5:F4:24:57:DE:47:4F:93:E2
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019D97E1F5987D46BA3102E145ADA90C3096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0A7B
Signing time: Thu 16 Apr 2026 20:01:01 +0000
Manifest this update: Thu 16 Apr 2026 20:01:01 +0000
Manifest next update: Fri 17 Apr 2026 20:01:01 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: xgq+YARjQ2+71AYDvyYcD7Q4wyIxg7t/0HhOATU0olc=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:f5:98:7d:46:ba:31:02:e1:45:ad:a9:0c:30:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Apr 16 20:01:01 2026 GMT
Not After : Apr 17 20:01:01 2026 GMT
Subject: CN=f8beb5465d5e6b068bd85aa5f42457de474f93e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:56:43:ce:5e:a6:98:08:9c:92:57:a2:a5:
b8:8f:aa:a4:ca:20:8b:8e:1d:b0:39:a6:27:8d:78:
ae:36:c6:13:8c:7a:53:d7:01:59:65:07:e7:8a:d2:
89:1f:5f:e8:87:8b:e9:6d:8a:7c:b3:eb:94:08:62:
18:d4:52:78:58:0b:f1:ee:43:11:23:bc:01:58:d6:
e9:00:36:65:f4:b8:4e:96:a9:4b:d8:cf:97:24:b7:
28:7c:20:c3:ee:41:d1:88:4a:67:c7:8f:fd:f6:68:
f8:67:39:89:31:6e:97:38:76:ba:9d:f3:9b:13:63:
fe:f5:dd:41:2d:00:d4:41:45:6f:8f:d8:94:59:40:
4b:2b:52:42:ff:a8:cc:08:2e:9a:49:b7:c6:3a:9e:
8d:d4:05:56:9b:8a:cd:ab:48:f6:80:57:1b:9f:aa:
28:49:7a:03:07:69:8f:b3:56:a9:9c:af:a3:75:da:
1a:96:fa:b1:02:19:c8:87:35:b2:47:9c:37:e8:9b:
80:13:50:8f:7e:ec:b7:24:50:97:d6:04:e3:cc:bd:
1f:14:69:a6:07:21:c6:6b:c3:e7:5a:92:b7:4b:07:
a2:d1:4f:61:fd:ed:74:36:8d:32:ff:60:96:66:0b:
e5:31:5d:bf:d5:41:70:5e:0c:61:cb:dd:78:83:5b:
f8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BE:B5:46:5D:5E:6B:06:8B:D8:5A:A5:F4:24:57:DE:47:4F:93:E2
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:a6:a4:ae:00:62:af:3e:a6:70:42:58:3e:dc:13:61:c7:32:
98:60:69:f1:71:78:e6:2d:67:35:f1:40:90:19:91:82:9e:16:
4d:7d:c7:ff:9e:be:8a:cf:70:94:6d:14:a5:7c:5d:d1:a6:f0:
0f:91:b5:19:a4:1a:e8:c1:f1:f9:fc:0e:24:16:6e:7d:c1:8e:
60:e8:29:4a:4e:d2:45:2b:1f:c0:50:3f:09:8d:7d:98:50:e0:
61:57:93:65:ce:b1:7a:3c:43:78:e9:1a:f6:34:61:8d:c5:65:
d3:4b:81:67:32:b3:da:f3:c0:21:37:70:fa:a2:28:2c:0d:1d:
51:c7:28:2c:ee:37:b6:cf:c4:9a:3d:16:ad:91:11:98:39:0c:
13:8a:3c:ae:03:4d:66:a4:97:5c:50:0a:f6:e7:af:d3:83:1b:
bb:d6:27:0e:8c:22:33:51:e0:30:a5:bb:ae:35:2f:06:a2:96:
f9:f0:06:ee:53:97:50:33:5a:c6:85:2d:33:fd:f8:0b:f3:52:
a4:ab:f9:fe:d1:34:34:e5:34:b7:6c:1a:d6:88:2b:d8:9a:0a:
6d:bb:34:f0:a7:84:8b:ec:b3:19:b6:9d:4b:01:73:25:c8:a6:
f1:7c:26:96:dd:b5:e7:7d:b0:06:c5:f7:d2:3e:6b:73:56:03:
6a:af:3a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:04:57 2026 by rpki-client