Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
File: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft (raw, json)
Hash identifier: OUzmfWMZGN3+cZ2o2XY7xCkxs6pGXGyyBYJ0Ffhk10s=
Subject key identifier: 37:D4:DE:EC:87:C9:0B:27:D2:7A:95:95:AA:64:A5:6B:AD:B7:DB:A2
Authority key identifier: A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
Certificate issuer: /CN=a36619427c283fa3b2bb7b45cc35a51286398961
Certificate serial: 019DCF754606B0EB842A5C7807F1B9FD68FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
Manifest number: 0191
Signing time: Mon 27 Apr 2026 15:01:02 +0000
Manifest this update: Mon 27 Apr 2026 15:01:02 +0000
Manifest next update: Tue 28 Apr 2026 15:01:02 +0000
Files and hashes: 1: kFGche0sUMJjtQYWtRrXVgbIroM.roa (hash: 34UZsa7v3vzkYl287UK/ejNXOYJMH9D9QG1MuCDxpCg=)
2: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl (hash: 2ZLgPu309S5fAlEjMiaShOb1vVHJEJrD6sYqWHqxmBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 15:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:46:06:b0:eb:84:2a:5c:78:07:f1:b9:fd:68:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36619427c283fa3b2bb7b45cc35a51286398961
Validity
Not Before: Apr 27 15:01:02 2026 GMT
Not After : Apr 28 15:01:02 2026 GMT
Subject: CN=37d4deec87c90b27d27a9595aa64a56badb7dba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ac:45:4c:b7:00:77:29:34:d8:40:26:33:de:
f7:fc:51:59:f4:56:1c:8f:2a:a1:0d:98:b4:8a:6e:
56:57:6e:03:85:7a:8b:f8:55:55:01:a1:96:64:a6:
b3:9d:ad:76:81:6f:80:55:b9:24:61:23:34:17:a6:
c6:60:f2:bf:7a:a5:45:9e:2a:2b:74:7c:86:54:6b:
c4:ae:49:09:cd:a8:f3:4b:2a:31:ea:43:ac:8a:32:
31:54:5f:9a:d0:78:8a:3a:fc:21:d8:ad:ed:48:0c:
d9:27:ac:bd:7d:01:1b:96:c9:c5:79:1f:58:12:6e:
b3:b5:b9:2d:3d:5b:be:2f:8e:fd:c2:23:64:c8:7e:
f0:9b:26:39:38:41:0b:43:21:f3:35:c5:e7:17:27:
a2:41:88:eb:68:81:10:f5:63:b9:b4:71:4f:e3:3b:
d8:b5:b7:fc:88:57:4e:28:49:09:42:98:2b:cf:98:
4e:23:e5:77:62:6f:12:90:0e:6d:8b:12:0c:02:66:
e8:7e:5d:4a:a5:1e:7f:21:02:36:f1:ab:fc:01:ae:
c4:25:be:27:a7:85:34:f3:3f:a3:a3:5c:61:fe:73:
e5:4d:62:f4:ba:b2:53:8d:92:43:eb:02:dc:23:d5:
9e:b2:e7:f7:50:d1:60:65:12:ce:2b:ec:2c:33:6e:
b0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D4:DE:EC:87:C9:0B:27:D2:7A:95:95:AA:64:A5:6B:AD:B7:DB:A2
X509v3 Authority Key Identifier:
keyid:A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f1:b3:2f:fd:24:6d:2b:a3:b3:08:da:49:70:71:09:c9:ce:
f5:56:27:e1:d6:91:6e:6b:78:8b:62:19:e0:26:d0:12:57:20:
1c:50:a2:bc:d9:77:ab:0a:36:25:66:b5:7c:bb:ad:c8:51:26:
6f:05:3d:b6:14:ca:ae:f2:7a:64:87:cf:9e:15:03:39:9e:8f:
be:de:9e:13:a2:a0:fe:b1:b9:86:bd:3a:80:c7:46:54:7e:7b:
91:10:df:fb:48:24:f7:f5:62:16:35:49:3a:b0:89:7f:22:fb:
92:1e:c2:5f:2f:2a:5d:08:e1:e3:4d:27:99:1d:f8:c9:3f:69:
36:6b:e4:d6:24:ef:a8:63:af:74:3f:cf:b4:a7:19:1a:0b:45:
0e:a8:73:4d:4e:bf:e1:e1:34:8a:bb:0b:8f:f5:dc:72:e4:48:
dd:45:92:98:70:d9:9a:47:eb:84:33:7c:33:50:93:4a:27:bc:
63:ea:e7:1b:e6:d3:bf:dc:70:b3:db:57:20:d1:40:59:f3:82:
6b:d7:cf:2f:4b:e7:22:65:5e:a8:9d:7e:33:cd:82:9d:dc:44:
2a:17:12:f5:eb:34:eb:44:2b:2f:1b:4e:69:4a:35:6f:38:ac:
67:74:49:9b:01:ee:c9:50:07:4e:71:47:01:1a:fb:6f:3f:1f:
dd:96:bb:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3PdUYGsOuEKlx4B/G5/Wj9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjYxOTQyN2MyODNmYTNiMmJiN2I0NWNjMzVhNTEyODYz
OTg5NjEwHhcNMjYwNDI3MTUwMTAyWhcNMjYwNDI4MTUwMTAyWjAzMTEwLwYDVQQD
EygzN2Q0ZGVlYzg3YzkwYjI3ZDI3YTk1OTVhYTY0YTU2YmFkYjdkYmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqxFTLcAdyk02EAmM973/FFZ9FYc
jyqhDZi0im5WV24DhXqL+FVVAaGWZKazna12gW+AVbkkYSM0F6bGYPK/eqVFnior
dHyGVGvErkkJzajzSyox6kOsijIxVF+a0HiKOvwh2K3tSAzZJ6y9fQEblsnFeR9Y
Em6ztbktPVu+L479wiNkyH7wmyY5OEELQyHzNcXnFyeiQYjraIEQ9WO5tHFP4zvY
tbf8iFdOKEkJQpgrz5hOI+V3Ym8SkA5tixIMAmbofl1KpR5/IQI28av8Aa7EJb4n
p4U08z+jo1xh/nPlTWL0urJTjZJD6wLcI9Wesuf3UNFgZRLOK+wsM26w5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDfU3uyHyQsn0nqVlapkpWutt9uiMB8GA1UdIwQY
MBaAFKNmGUJ8KD+jsrt7Rcw1pRKGOYlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTct
M2I4MTc4ZGJiOTRjLzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTctM2I4MTc4ZGJiOTRj
LzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS/GzL/0k
bSujswjaSXBxCcnO9VYn4daRbmt4i2IZ4CbQElcgHFCivNl3qwo2JWa1fLutyFEm
bwU9thTKrvJ6ZIfPnhUDOZ6Pvt6eE6Kg/rG5hr06gMdGVH57kRDf+0gk9/ViFjVJ
OrCJfyL7kh7CXy8qXQjh400nmR34yT9pNmvk1iTvqGOvdD/PtKcZGgtFDqhzTU6/
4eE0irsLj/XccuRI3UWSmHDZmkfrhDN8M1CTSie8Y+rnG+bTv9xws9tXINFAWfOC
a9fPL0vnImVeqJ1+M82CndxEKhcS9es060QrLxtOaUo1bzisZ3RJmwHuyVAHTnFH
ARr7bz8f3Za7pw==
-----END CERTIFICATE-----
Generated at Mon Apr 27 19:48:45 2026 by rpki-client