Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
File: O3vGRy6lJXXOlb3KeCbppR-qzkk.mft (raw, json)
Hash identifier: Z0wi+u7wL44YUHngd+tm+LbkH7otewzpv2EajPSX3mQ=
Subject key identifier: 02:41:84:31:BE:D9:A6:60:06:37:7A:E6:3B:55:0B:74:E8:E6:10:09
Authority key identifier: 3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
Certificate issuer: /CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Certificate serial: 019DB1D8C50612CF7757F0B54080E4CDC258
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
Manifest number: 03BF
Signing time: Tue 21 Apr 2026 21:01:06 +0000
Manifest this update: Tue 21 Apr 2026 21:01:06 +0000
Manifest next update: Wed 22 Apr 2026 21:01:06 +0000
Files and hashes: 1: O3vGRy6lJXXOlb3KeCbppR-qzkk.crl (hash: O23pmKgPtIP+7ZMBv6Gnenf6ySHNEPJbEHv0O1Jywk4=)
2: xZvTVsgAgTHbHn_16cZuYXn4mck.roa (hash: +oE3yDmB7hi9Ypi3E2o3IvseUAbSMG6NeT9277jObu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:d8:c5:06:12:cf:77:57:f0:b5:40:80:e4:cd:c2:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Validity
Not Before: Apr 21 21:01:06 2026 GMT
Not After : Apr 22 21:01:06 2026 GMT
Subject: CN=02418431bed9a66006377ae63b550b74e8e61009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6e:85:4d:85:df:ab:d0:68:0b:b5:53:96:cd:
8b:01:da:ca:fb:69:af:1f:63:fc:9a:ef:fc:9f:36:
3d:a3:7c:bb:72:9b:eb:47:8b:b0:2d:b7:33:1c:2c:
b3:ff:83:2e:2f:36:cd:00:bd:00:e6:51:37:df:ac:
36:f5:45:5b:f0:eb:dc:bc:cc:eb:3f:b6:3d:49:7f:
d4:7f:e6:5b:d9:37:66:ce:14:9d:16:5d:f0:31:25:
81:70:14:25:ce:21:4c:45:d0:6e:38:98:6f:73:3a:
9e:e0:74:13:78:d1:19:df:be:95:7d:7e:ad:0b:78:
3c:ea:41:a1:e1:ce:3f:e6:5e:c9:b9:63:64:92:4b:
d7:48:6c:a0:d7:2d:82:7b:a8:ca:20:dc:c1:91:63:
a6:79:84:b6:39:c3:23:de:7b:8e:a0:e1:81:0d:6f:
97:1f:34:11:fd:73:31:9a:4a:a4:1e:b0:3a:45:c5:
5d:42:31:ff:7e:68:aa:8a:61:6a:d9:4a:b6:cf:49:
a9:49:e9:cf:5b:75:2b:1d:65:02:59:20:b8:36:d8:
9f:a2:2c:7b:88:c1:ed:de:e3:d3:ed:55:21:65:5d:
26:bf:61:f6:b5:84:e0:18:ac:dd:69:8a:d5:dc:e7:
41:55:0c:c2:c2:ec:a2:80:4c:90:8b:dd:b1:a1:81:
50:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:41:84:31:BE:D9:A6:60:06:37:7A:E6:3B:55:0B:74:E8:E6:10:09
X509v3 Authority Key Identifier:
keyid:3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:69:0f:bc:b7:c0:6e:0b:37:b9:f5:6a:e5:47:1a:46:bc:61:
d4:b4:f9:44:ba:48:40:96:53:9b:cc:39:5b:7e:57:9e:df:ec:
5d:96:19:3b:2c:d5:66:b6:01:04:91:34:5c:99:30:3b:cd:da:
48:6d:e1:f5:e7:eb:2b:00:4c:4a:18:52:c5:eb:73:ea:63:e5:
c6:d0:9a:e4:6b:50:68:05:8c:f7:5f:db:41:79:9f:10:27:09:
d6:0f:8a:3b:3f:dd:62:6c:d1:dd:fc:c8:e2:c5:d4:d8:8e:63:
65:2f:d5:84:f3:4f:fd:6d:82:7f:b4:0a:64:84:3f:60:88:87:
cd:49:3a:95:da:29:d9:73:77:ce:35:51:0b:ca:f1:d8:d1:30:
60:9f:ac:80:ff:06:bf:76:6e:d4:89:aa:73:f1:05:c9:1d:4d:
d9:a7:2d:48:17:0a:cb:25:c4:22:cc:63:c0:4a:30:fd:da:9a:
ee:66:d4:55:51:b7:0c:40:e9:a2:f5:96:e1:b4:0c:1e:d2:02:
1c:42:00:ae:9d:c7:09:1e:5c:a5:e5:fa:0c:4c:01:98:0c:d6:
d1:a9:73:22:de:a2:b7:5c:97:0f:61:fb:1a:7b:e9:2a:7d:61:
45:ef:16:02:91:60:29:97:60:af:e2:4d:fd:41:a7:f9:e0:59:
bc:cf:d5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 04:13:48 2026 by rpki-client