Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: ceC54JsZQYTt8os+3rdTljXFPOnnXPWmjf4Ew5e+y4Q=
Subject key identifier: 26:27:8A:CC:77:28:F6:D9:14:26:FF:07:EB:A2:61:00:4E:54:A1:DD
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 019D390A596A532EE97F9CB7A10542D505C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 10:01:12 +0000
Manifest this update: Sun 29 Mar 2026 10:01:12 +0000
Manifest next update: Mon 30 Mar 2026 10:01:12 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: xNJltrS22OanNDpyZ7sZhPpLTFdn9s4ZSY1qDAwHXuA=)
2: eDEH9r-GFBtMBjke1VQXvLsrWKE.roa (hash: xMVUiZA7B/Awy4elxHeVBURXwGMWCha5Jw3Ih7vZadE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:59:6a:53:2e:e9:7f:9c:b7:a1:05:42:d5:05:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Mar 29 10:01:12 2026 GMT
Not After : Mar 30 10:01:12 2026 GMT
Subject: CN=26278acc7728f6d91426ff07eba261004e54a1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ad:1b:16:c1:21:82:1a:25:61:6f:eb:88:76:
66:c2:e7:d5:f1:38:fb:11:72:e7:78:0f:89:75:b4:
7b:36:29:9a:c6:cf:57:2a:fb:0b:15:93:da:b5:df:
4d:43:50:87:82:87:85:4d:ef:02:e6:9b:57:33:e6:
ea:de:21:05:d0:fe:7f:46:b9:8c:70:ee:d0:0f:78:
4f:7c:66:f1:36:24:22:6f:2d:6b:2c:95:cf:3b:3e:
8b:43:81:07:37:7b:ec:64:f5:71:6a:24:90:00:b0:
4b:a5:eb:ee:ea:a8:1e:d4:e6:ba:5d:8f:9b:1a:26:
1f:52:f2:51:9b:fb:0e:2a:07:1b:72:70:ad:42:f1:
3e:97:bf:5f:48:30:66:04:f8:92:98:eb:51:50:8d:
91:e6:c7:31:f4:6e:5b:1a:63:36:09:b9:3a:34:07:
78:94:39:54:63:69:4d:d6:28:cf:80:fc:e4:96:5e:
e3:3d:38:34:67:4f:2b:81:0a:d9:07:4a:37:e4:13:
64:f4:ea:ba:10:76:2a:1b:ea:98:c6:55:15:a7:cb:
30:0e:13:ee:f8:27:29:0c:66:0f:aa:28:e9:dc:50:
9e:98:99:08:15:fa:1d:c9:5f:6a:1e:4a:87:c9:93:
24:22:78:38:c2:18:38:f6:4b:d6:60:5d:29:17:41:
02:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:27:8A:CC:77:28:F6:D9:14:26:FF:07:EB:A2:61:00:4E:54:A1:DD
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:60:c1:97:a2:88:af:a2:d6:41:08:2d:f7:db:81:5a:52:3e:
b7:7e:8c:bb:58:99:ef:1f:65:db:d2:bc:0d:86:1f:89:5b:16:
08:a8:54:56:01:b2:a2:3d:f3:c8:36:b8:33:8c:68:29:85:b3:
ec:b2:d4:64:07:32:c6:44:05:88:56:91:32:43:63:ce:38:f1:
79:ae:a3:ce:e8:15:d9:eb:44:41:15:56:70:74:ff:fa:6f:7e:
01:8c:47:8b:53:85:90:78:bc:5d:8e:f2:8e:40:59:a6:fe:77:
5c:41:35:d1:30:9e:94:88:07:bf:ee:ab:fa:bf:45:86:d9:1d:
5d:a0:50:0a:a3:db:fa:b4:90:70:6b:6e:66:d4:8b:21:f5:b7:
58:ca:5c:d9:0a:58:63:01:59:58:ba:2d:87:37:7e:16:a4:f0:
ce:86:ab:9a:e7:60:82:ec:d8:1a:a7:dc:91:4d:5f:39:4f:48:
ed:7f:41:0a:67:b8:79:56:66:dd:dc:e7:70:f3:6b:d4:17:5d:
e2:69:a8:cd:8f:76:d9:38:c9:41:40:30:01:e6:42:11:bd:fd:
b2:24:35:c1:88:e0:66:81:50:b7:c8:0a:62:68:92:5f:55:7a:
c0:ab:0d:29:b5:d8:bf:b2:d4:68:d5:76:1a:6d:61:e8:c3:8d:
f8:fc:15:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:13:23 2026 by rpki-client