Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: tkcGIMLMacjnyw/oyZliIhxoOPfSaGFSL1jv9okq07Y=
Subject key identifier: 84:19:B6:3B:43:AC:15:C8:7D:65:11:8B:79:65:A9:54:3E:0E:97:99
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 019DB27DF34AC0CC6CDF25E6A17F47D1B483
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 06BB
Signing time: Wed 22 Apr 2026 00:01:31 +0000
Manifest this update: Wed 22 Apr 2026 00:01:31 +0000
Manifest next update: Thu 23 Apr 2026 00:01:31 +0000
Files and hashes: 1: HlrwIab2M9srn4RxDvYJgsLRgu0.roa (hash: 7RDUg5q6/CoL8hnKalD+rZmIPoU5JzkF0lqwqiGYim4=)
2: gAEobSYXeBTkpjhr1NGGBygqZvA.roa (hash: UAsheFQAdNFM95KSSftG0uZENkjtk9zrTcPB/F/4eEU=)
3: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: K24DlQ5aLCgVpm7zDIh4Brs3ztjaGwaTHUUZ4mC1TCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:7d:f3:4a:c0:cc:6c:df:25:e6:a1:7f:47:d1:b4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Apr 22 00:01:31 2026 GMT
Not After : Apr 23 00:01:31 2026 GMT
Subject: CN=8419b63b43ac15c87d65118b7965a9543e0e9799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4d:97:af:cf:9e:1c:13:d3:52:88:31:4e:37:
ab:f2:0b:5a:4b:2c:c9:2a:ce:fb:1d:a7:9c:e8:f2:
98:b2:59:97:7b:06:eb:bd:7b:8d:7c:ee:5b:94:df:
12:2f:4c:28:57:10:f4:33:25:06:1e:62:f5:c1:ff:
eb:37:1a:66:26:c1:86:62:b0:2f:35:33:3d:6b:de:
e3:08:14:fb:8e:bf:f6:9f:b4:87:76:fc:a7:00:b1:
51:d2:72:52:53:07:5a:e9:44:7c:a1:a1:30:01:81:
ad:89:bc:c4:0a:6b:19:a7:c1:df:9f:7b:f7:87:b4:
b2:5f:1e:1d:7c:6a:c2:4c:d9:cf:6b:01:a4:55:ab:
19:7a:f0:a3:46:b9:b0:d7:97:5c:1b:7d:35:a6:aa:
32:e6:f8:12:bb:09:09:1c:69:3d:f7:d3:69:2d:f9:
53:95:4d:56:fe:e1:4f:e5:5f:33:dc:6c:b7:9d:06:
da:54:72:59:42:4d:48:91:02:4e:a3:e0:4c:5e:db:
71:08:8c:e9:1e:58:b0:27:f6:41:3f:58:fc:b4:83:
1a:f2:31:03:5d:90:93:5b:61:1e:43:37:6c:13:c5:
ae:cc:d9:10:72:eb:11:ff:47:cf:56:65:b6:83:16:
5e:13:7b:08:41:eb:f6:db:79:0f:aa:8a:6b:38:16:
97:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:19:B6:3B:43:AC:15:C8:7D:65:11:8B:79:65:A9:54:3E:0E:97:99
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:89:3f:e5:c7:82:c3:19:1c:a2:95:98:9f:3a:b7:3a:15:7a:
2a:c4:10:fe:b1:4c:9d:c1:33:79:98:1c:20:8d:dd:df:11:db:
42:01:ce:1f:d6:cf:a6:0b:f3:17:65:07:96:ed:fb:a0:cc:6e:
e8:df:cf:a6:94:fb:3d:46:2f:ad:82:fd:92:85:cc:86:cd:6d:
10:01:f3:fb:f7:76:e8:b8:43:7a:90:4a:1d:e4:e4:e5:4f:3c:
c4:2c:5e:8a:d8:f1:d0:03:9a:da:b9:88:72:c2:36:69:95:c9:
e8:2a:74:8c:dd:2c:a3:6e:38:c1:73:a0:ba:e4:55:f6:c0:69:
62:20:50:57:ad:f8:c7:df:5c:22:4a:a9:df:71:44:1f:a4:11:
3e:1e:e3:d9:68:d7:15:05:34:d4:a5:f8:f1:e9:4c:b4:aa:f4:
9b:9c:4a:63:c5:52:06:74:ce:54:19:0c:f0:5c:3d:16:37:4a:
8e:01:df:f5:96:f1:a5:67:42:2b:38:b4:55:23:ee:65:e2:5b:
17:ca:bd:47:e2:9b:b1:5a:a1:0c:b8:34:53:e7:39:72:20:89:
3f:46:5e:8c:df:4b:4a:c2:32:35:ad:d5:95:d4:c9:d6:5c:51:
86:41:d7:04:80:00:0e:2c:e9:12:a8:88:41:bf:96:14:22:3b:
c4:4f:9d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 09:01:44 2026 by rpki-client