Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
File: OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft (raw, json)
Hash identifier: 6udaBV/2WZZopHp8jSHqz+Diitu3BqjLxsIQR1BvFpM=
Subject key identifier: 95:87:A6:2C:62:FE:74:7A:4F:9D:E0:6B:D1:5A:5A:6C:59:C4:85:31
Authority key identifier: 3A:74:E0:7C:2D:EF:CA:14:BF:2D:6C:7A:15:D5:A9:33:0D:09:37:48
Certificate issuer: /CN=3a74e07c2defca14bf2d6c7a15d5a9330d093748
Certificate serial: 019D97E1AB5BD9FEBC1C3019EE3BD789B00A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
Manifest number: 083C
Signing time: Thu 16 Apr 2026 20:00:42 +0000
Manifest this update: Thu 16 Apr 2026 20:00:42 +0000
Manifest next update: Fri 17 Apr 2026 20:00:42 +0000
Files and hashes: 1: OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl (hash: Gyk788dAdQOhqLUCW+URcFLDvVcRGjNFM94pEvy39tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:ab:5b:d9:fe:bc:1c:30:19:ee:3b:d7:89:b0:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a74e07c2defca14bf2d6c7a15d5a9330d093748
Validity
Not Before: Apr 16 20:00:42 2026 GMT
Not After : Apr 17 20:00:42 2026 GMT
Subject: CN=9587a62c62fe747a4f9de06bd15a5a6c59c48531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:03:1e:5c:01:35:d6:3e:cc:95:c0:d8:48:15:
d1:eb:d1:96:aa:d4:b1:41:6c:f3:63:b6:e3:ce:ac:
4d:87:93:fb:42:0e:97:c5:a8:c9:2d:de:c0:c2:72:
c3:74:ad:32:ed:7a:fa:8d:67:ed:d4:2b:70:b0:6f:
99:44:72:19:2e:5a:16:73:e6:6c:dc:18:89:c7:54:
ff:f8:14:d3:5f:f3:40:87:4b:a3:ac:19:9c:04:f7:
3c:f2:c2:2c:57:f0:a3:26:f9:6a:3a:48:77:62:ed:
c8:9f:49:33:30:9d:f3:d0:0c:f2:6f:3d:aa:ee:d9:
3e:0d:0c:32:fb:e0:4b:8e:74:e5:67:45:39:12:ee:
12:47:ad:68:45:af:e0:f4:ad:ba:93:4c:01:e6:49:
bc:d4:dc:58:85:1a:26:50:c2:50:5f:f0:9d:e2:a6:
34:7d:5d:ee:53:1f:70:b2:1f:ed:ee:98:4e:f5:35:
13:3a:6e:7f:df:cd:11:07:df:5a:d1:bc:b9:fa:7e:
8e:ec:4d:21:cf:d2:f2:9b:c9:6c:1d:1b:96:f2:b2:
a0:70:f4:84:93:e9:46:e2:f7:d2:30:20:90:74:b2:
09:2f:74:84:71:1d:c3:fe:9e:53:88:15:cd:bd:6e:
7e:28:8c:43:d7:f6:a8:c3:e3:6c:72:cf:a8:67:21:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:87:A6:2C:62:FE:74:7A:4F:9D:E0:6B:D1:5A:5A:6C:59:C4:85:31
X509v3 Authority Key Identifier:
keyid:3A:74:E0:7C:2D:EF:CA:14:BF:2D:6C:7A:15:D5:A9:33:0D:09:37:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:17:bb:00:4a:21:0b:4c:20:38:80:57:6b:cd:8b:33:e7:5b:
0e:e0:04:ad:af:84:7d:dc:e7:b2:bf:db:8c:c4:2b:5d:f0:76:
3f:e9:b5:42:ae:0b:da:87:38:e8:bc:da:e2:9e:99:97:6b:d6:
18:d4:95:b2:54:7e:df:a8:24:67:b8:10:28:96:ac:d7:75:d9:
9b:3d:19:66:52:f8:eb:12:b6:4e:86:36:b0:ec:f1:d9:cc:a6:
1b:56:35:e4:15:4d:4d:55:52:a0:c7:c0:d2:f7:55:5e:15:fd:
e9:fb:68:7f:73:22:17:c8:38:9e:1a:47:75:81:e2:94:d9:b2:
a5:11:48:c6:91:54:4e:a6:bf:68:75:f4:28:d0:20:8b:a5:f1:
46:15:47:3d:2f:a2:0c:66:21:9f:2f:7b:05:e6:6e:9b:53:f4:
24:e5:b1:60:74:d9:4f:fc:da:53:fc:78:9a:90:c8:d2:29:a5:
45:25:41:40:b6:15:1e:98:5e:6e:0f:d8:e8:a6:d6:16:8b:ee:
40:82:68:1b:7e:a1:3d:66:44:f4:18:7b:3d:47:53:1f:90:ff:
d8:29:7d:56:01:e1:21:c6:4e:5d:75:b3:b2:fe:46:79:5d:60:
58:7e:ed:b1:64:bd:de:13:9c:78:32:b1:b8:b6:ef:2b:26:b7:
d7:b7:fc:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:36:34 2026 by rpki-client