
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: 3fxWVlfP3aecakN53AMR3PK0bnRuG6vCHd7diOjWXSA=
Subject key identifier: E3:B3:0F:BE:13:A5:1D:07:EF:26:9F:06:D0:63:A0:D1:39:F6:04:B7
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019F2812671E523C70B827C13456E07F7BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 144E
Signing time: Fri 03 Jul 2026 13:02:02 +0000
Manifest this update: Fri 03 Jul 2026 13:02:02 +0000
Manifest next update: Sat 04 Jul 2026 13:02:02 +0000
Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: a+ry+1RjLWq6Pnvn+o7mD4cPs2bSTPikpZPQH5IHaBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Jul 2026 13:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:28:12:67:1e:52:3c:70:b8:27:c1:34:56:e0:7f:7b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Jul 3 13:02:02 2026 GMT
Not After : Jul 4 13:02:02 2026 GMT
Subject: CN=e3b30fbe13a51d07ef269f06d063a0d139f604b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0a:2f:e4:50:e4:1e:10:72:c6:97:dc:98:cc:
7d:ec:2d:53:43:36:2e:b1:69:57:10:3e:70:64:dc:
cf:0c:d1:72:e2:fb:e1:71:ed:d5:6a:79:a8:be:48:
b1:15:82:ee:0f:64:bc:e3:14:f6:a3:ef:72:c4:56:
9a:03:39:fd:15:62:7d:01:09:40:c6:33:eb:88:e5:
91:68:40:df:a5:e9:a7:c8:3b:13:07:9a:b2:7c:34:
81:ea:05:7e:a3:42:86:74:a1:de:b9:35:07:28:a8:
97:21:59:77:6b:81:d0:8a:b6:54:7c:8a:07:34:ed:
55:5c:20:e7:bc:c0:3b:32:10:8c:22:e5:79:16:6e:
4c:34:7a:f3:0a:dd:85:65:f3:a6:bc:45:fb:04:54:
53:f0:ff:f3:90:1c:d4:20:d4:b4:72:fa:c1:3e:b3:
5c:08:2e:75:80:e1:8a:30:28:13:b9:cb:1a:55:8f:
2c:81:fd:0f:ce:7b:72:aa:85:33:56:60:3f:47:11:
03:4e:4c:35:79:27:ad:74:87:d4:79:91:d1:ed:3c:
ea:e6:9a:4a:b9:ec:55:59:b8:5a:a6:3f:4e:00:c8:
ba:61:67:79:51:14:65:64:4c:a0:ca:69:8e:d4:53:
61:73:68:6f:3a:84:1d:11:7c:d7:96:fe:b5:4e:51:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B3:0F:BE:13:A5:1D:07:EF:26:9F:06:D0:63:A0:D1:39:F6:04:B7
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fa:80:56:a1:cc:e3:33:45:6f:8f:f7:e5:59:4c:11:b2:e0:
65:0a:29:2b:08:42:7c:4b:36:f7:62:8b:6d:45:4d:82:dd:28:
d4:d3:99:5f:97:73:11:82:8f:c5:87:77:4c:d6:5e:e5:e0:4c:
8d:16:12:73:0e:96:da:d4:4f:e7:10:e3:4e:e2:ee:b1:78:83:
0e:db:cf:96:d3:81:70:40:99:9e:88:3a:dd:36:6f:9c:56:58:
fc:43:ba:1a:87:2c:29:f9:d8:b9:b7:27:29:fb:3c:ce:01:4a:
be:b5:fa:a3:b7:a3:3d:d1:e7:88:ee:14:bb:12:cb:e1:58:16:
ba:1e:b2:12:01:d4:ac:50:de:a5:0d:af:25:01:62:ee:ae:6c:
11:56:e0:a9:e9:69:e8:d4:ec:ea:ae:9e:dc:9f:5e:6b:7e:5c:
7e:7b:1f:df:4c:ad:cb:93:95:35:d9:b4:f2:19:74:77:fa:73:
63:90:d6:13:45:ae:9b:80:b5:4b:69:67:45:25:f7:8c:ad:7e:
3d:46:e2:01:23:68:b0:70:bb:51:e3:5e:45:e8:f6:2a:bc:c9:
87:b0:87:f5:d0:03:d5:0d:18:d8:2b:c2:29:73:8d:fe:85:42:
78:e8:45:8b:ff:fa:3d:1a:20:39:d4:c0:c2:bd:db:0d:81:a8:
22:5d:42:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:46:56 2026 by rpki-client