Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
File: ohnbVSO9ORRQqdzPbVDOWfsV360.mft (raw, json)
Hash identifier: mbJ27jFTIFw7DDUXgHfiCbvPRit5VSNXOOnEzcul15k=
Subject key identifier: 1A:3D:48:D2:25:CA:E7:C5:FF:CF:C6:AE:94:BC:D5:42:B9:80:7D:13
Authority key identifier: A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
Certificate issuer: /CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Certificate serial: 019DCCE203C523A7513B68B8EC6E2B75D564
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
Manifest number: F4
Signing time: Mon 27 Apr 2026 03:00:57 +0000
Manifest this update: Mon 27 Apr 2026 03:00:57 +0000
Manifest next update: Tue 28 Apr 2026 03:00:57 +0000
Files and hashes: 1: 4HbGMj--iSuFHvb28GOkJ8Rfj9k.roa (hash: kmfueJIenPQ4kLIaUYdb59+cHEhbnikmEU4eCsrl8uU=)
2: ohnbVSO9ORRQqdzPbVDOWfsV360.crl (hash: eLkoUO0az4NmiiHcbMpoKAoOD1YBObe3MsgQypRzdqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 03:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:e2:03:c5:23:a7:51:3b:68:b8:ec:6e:2b:75:d5:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Validity
Not Before: Apr 27 03:00:57 2026 GMT
Not After : Apr 28 03:00:57 2026 GMT
Subject: CN=1a3d48d225cae7c5ffcfc6ae94bcd542b9807d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d6:63:8e:96:aa:4a:8b:f8:59:66:8b:6b:be:
a7:ff:28:d4:09:d2:a2:72:3d:2f:c7:a6:cd:85:bc:
5a:11:4b:1b:fa:cc:45:6a:5d:98:36:76:b3:7a:74:
1f:53:2a:ea:5b:b3:ba:c3:67:ae:ac:24:45:5b:a6:
8e:14:48:5d:01:ce:a6:d3:a8:4a:6f:31:72:94:22:
92:03:67:fa:ee:d1:34:77:b5:e4:19:01:9e:c7:69:
07:d5:e3:62:83:f1:21:77:a7:a8:f3:3b:3e:ef:eb:
12:21:c2:b5:3f:59:7f:d4:70:95:ad:1f:55:66:86:
87:81:86:a8:b8:8a:00:c4:06:87:fe:86:db:cf:d3:
d1:29:2b:15:a4:24:61:29:de:8b:9b:8c:e5:15:72:
a9:f3:15:d7:78:e8:fd:85:40:8c:ea:2f:7d:8a:40:
53:fe:0b:1f:e0:b1:95:22:61:6f:cf:73:5a:a6:82:
be:6c:c4:79:0f:b9:d5:5f:8e:76:77:ab:bd:67:5c:
83:7c:b9:2c:59:d8:4b:a6:75:1b:9c:f9:61:6c:fd:
3e:46:de:6a:6c:ce:28:bb:f2:09:43:63:f8:8f:47:
c8:d0:87:71:62:a6:d8:59:dd:05:a0:02:8e:22:30:
ba:1b:24:9f:9a:c6:4a:62:6b:57:4d:db:a2:dc:9e:
c8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3D:48:D2:25:CA:E7:C5:FF:CF:C6:AE:94:BC:D5:42:B9:80:7D:13
X509v3 Authority Key Identifier:
keyid:A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:94:34:3e:12:cd:c1:83:9d:fa:94:50:af:72:a9:f9:3c:78:
bf:ed:37:39:1d:5c:21:1f:7f:47:81:a8:dd:b5:00:8c:b3:89:
8b:7d:00:e3:1b:a7:bd:49:b8:a7:d2:5d:78:95:33:d7:63:9d:
a8:18:4b:7b:a1:19:8f:6f:d7:30:85:24:a8:58:90:23:0d:be:
45:26:7d:c4:af:0a:81:e5:d5:7c:79:a7:a1:df:10:66:a2:a7:
5e:fe:52:23:f8:3e:8c:ce:c3:91:86:87:93:fc:28:98:0a:ec:
c4:04:34:a2:ea:2e:b8:c7:44:42:ca:ee:d2:53:c2:91:67:36:
32:82:9b:a3:bd:3a:fa:2f:58:0c:cb:ef:7c:70:22:06:48:6a:
a7:86:33:2a:de:c9:89:31:a1:6b:56:c6:5d:86:d3:68:5b:6c:
69:f4:7e:87:d3:78:b7:09:f2:b9:90:c0:f5:20:dc:29:27:0b:
51:2a:cc:7d:54:d1:bf:11:eb:d6:3b:21:8a:bf:3a:b6:af:fe:
ff:42:11:c7:c7:86:f8:98:29:3e:20:6d:d0:ed:4b:7d:a2:ff:
87:a6:0d:33:d7:68:83:42:05:63:a3:a3:67:9a:ba:c9:80:4c:
71:1c:6f:07:3b:d8:d3:4f:22:a7:3c:f8:9b:6a:9f:97:eb:7e:
c2:db:1f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:54:11 2026 by rpki-client