Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: 0/MnhORbMQT57a70Yzu9GiVKSLcXo9t4UNtWwPm9ZU0=
Subject key identifier: 66:CA:44:F1:2B:A5:C2:84:2A:48:A5:04:AF:EA:97:F7:F1:0C:3B:CD
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 019D37525DFBB873C37EDE8E1D05D6E52912
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 13AC
Signing time: Sun 29 Mar 2026 02:00:38 +0000
Manifest this update: Sun 29 Mar 2026 02:00:38 +0000
Manifest next update: Mon 30 Mar 2026 02:00:38 +0000
Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: GCFKIdOI8eVyP59hZn9zlZD1RnD2Np1QkPOi69UhueQ=)
2: Z7DXzXjQ1iWsLhA7bX6hUr5-ljA.roa (hash: 3kmZN3nQ/QKEMXaSVLOkM6zDUNMkeL4tJG0CWoaKc6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:5d:fb:b8:73:c3:7e:de:8e:1d:05:d6:e5:29:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Mar 29 02:00:38 2026 GMT
Not After : Mar 30 02:00:38 2026 GMT
Subject: CN=66ca44f12ba5c2842a48a504afea97f7f10c3bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7e:42:fb:98:e0:f8:48:57:3b:7d:40:34:6b:
00:6b:73:a0:1f:c4:fb:80:c7:a2:39:dd:45:5e:fb:
1d:27:64:ef:80:0a:37:9e:c4:06:6d:27:1f:d9:79:
87:1d:18:1e:b5:38:2a:be:f1:f0:2e:a7:fd:00:41:
7e:da:36:24:44:4a:b3:ad:97:ab:5a:89:63:c8:92:
19:52:d5:3a:a6:59:5f:e7:c7:52:d3:e5:3d:c4:80:
7c:a4:ef:b9:8b:06:ef:30:fd:82:8e:74:a9:d6:b7:
24:75:73:5b:20:5a:2f:07:3b:11:f8:24:02:7b:a0:
2f:80:9a:ff:56:90:f2:f5:09:dc:12:b9:30:a6:a9:
e9:08:1e:a8:97:de:11:fb:ac:09:19:84:70:8a:36:
3a:6c:f1:15:87:cc:24:ef:3d:2d:65:6f:95:82:bb:
f3:2e:dd:4f:47:45:73:99:96:77:7f:fe:db:fe:c8:
eb:37:57:8b:f8:be:dd:b3:bd:6e:6d:e5:7b:6e:83:
d2:89:7e:49:7e:92:88:94:7f:0e:f9:49:49:5b:ed:
05:2c:3e:b4:d2:58:b0:0f:42:ae:45:0d:10:70:6a:
ae:9b:03:60:0a:ea:a0:33:c2:44:27:19:70:41:e7:
7a:d5:ed:64:b5:ed:d7:87:da:29:4a:42:f5:02:00:
7d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:CA:44:F1:2B:A5:C2:84:2A:48:A5:04:AF:EA:97:F7:F1:0C:3B:CD
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:84:78:90:29:07:53:05:86:00:68:c8:7d:f7:93:8f:64:38:
bb:da:35:87:ec:23:c0:18:db:7a:c8:54:b5:2a:67:f5:ff:9c:
29:b3:b1:7b:f3:82:e8:e7:42:f7:8e:c4:8d:db:f6:d6:21:aa:
3e:63:bf:59:c4:e4:fc:0c:bb:d0:6d:65:f0:29:ea:37:db:90:
0c:0b:3f:55:97:f6:77:f2:60:30:b1:4f:db:a9:b1:93:f5:31:
f0:75:e1:c1:0e:68:ec:bd:b4:6c:11:ab:6e:ab:9b:35:d4:f0:
03:40:8d:6e:54:97:3c:89:e5:3a:77:e7:3f:c0:b4:8c:8d:64:
65:3d:97:2d:f1:41:b9:da:27:11:bd:ee:9f:c6:c4:6f:f3:93:
be:d6:7b:e6:ab:21:81:bf:9a:3b:52:34:34:26:18:9a:24:c1:
97:fa:c4:c4:5a:13:e8:e5:1f:f7:9a:b5:e0:a9:b8:f5:83:fc:
1b:ad:da:96:c8:ea:7e:96:d6:e6:3a:30:13:ed:a4:b8:fd:13:
0d:0e:6e:b7:51:35:bd:ad:cf:e6:4a:12:0e:b8:e4:14:7a:4a:
59:16:53:ab:cf:d2:75:ee:b9:6c:ee:e7:17:ac:b8:7d:de:f0:
53:c0:5c:8d:67:35:ba:c5:bc:67:4e:a9:95:7f:11:8f:09:35:
73:12:8f:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03Ul37uHPDft6OHQXW5SkSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZGU2Mzg2ODRjNjQ1ZmVkZDYwMGVkM2M1MGNkZjMxMGIx
MTZkM2UwHhcNMjYwMzI5MDIwMDM4WhcNMjYwMzMwMDIwMDM4WjAzMTEwLwYDVQQD
Eyg2NmNhNDRmMTJiYTVjMjg0MmE0OGE1MDRhZmVhOTdmN2YxMGMzYmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzX5C+5jg+EhXO31ANGsAa3OgH8T7
gMeiOd1FXvsdJ2TvgAo3nsQGbScf2XmHHRgetTgqvvHwLqf9AEF+2jYkREqzrZer
WoljyJIZUtU6pllf58dS0+U9xIB8pO+5iwbvMP2CjnSp1rckdXNbIFovBzsR+CQC
e6AvgJr/VpDy9QncErkwpqnpCB6ol94R+6wJGYRwijY6bPEVh8wk7z0tZW+Vgrvz
Lt1PR0VzmZZ3f/7b/sjrN1eL+L7ds71ubeV7boPSiX5JfpKIlH8O+UlJW+0FLD60
0liwD0KuRQ0QcGqumwNgCuqgM8JEJxlwQed61e1kte3Xh9opSkL1AgB9xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGbKRPErpcKEKkilBK/ql/fxDDvNMB8GA1UdIwQY
MBaAFDveY4aExkX+3WAO08UM3zELEW0+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQt
MDk3YjA1MTBkM2UyLzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQtMDk3YjA1MTBkM2Uy
LzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA4R4kCkH
UwWGAGjIffeTj2Q4u9o1h+wjwBjbeshUtSpn9f+cKbOxe/OC6OdC947Ejdv21iGq
PmO/WcTk/Ay70G1l8CnqN9uQDAs/VZf2d/JgMLFP26mxk/Ux8HXhwQ5o7L20bBGr
bqubNdTwA0CNblSXPInlOnfnP8C0jI1kZT2XLfFBudonEb3un8bEb/OTvtZ75qsh
gb+aO1I0NCYYmiTBl/rExFoT6OUf95q14Km49YP8G63alsjqfpbW5jowE+2kuP0T
DQ5ut1E1va3P5koSDrjkFHpKWRZTq8/Sde65bO7nF6y4fd7wU8BcjWc1usW8Z06p
lX8Rjwk1cxKPwA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:42 2026 by rpki-client