Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: XCEh4xr2f1tM5xiKKflAP4XtkIr089dS13ZEusWjnUA=
Subject key identifier: FE:2B:B3:37:26:D7:E6:40:40:06:B7:50:C6:52:12:0D:D7:32:B4:9A
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 019E002B0CFC5FC0787B564CA57625DA512F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 0CA4
Signing time: Thu 07 May 2026 02:01:21 +0000
Manifest this update: Thu 07 May 2026 02:01:21 +0000
Manifest next update: Fri 08 May 2026 02:01:21 +0000
Files and hashes: 1: IQ3VIn1iC9RO_pLlQOak5neUqZY.roa (hash: IKGnOs4cAOZb712YaFJ/S+RpUStTEJE1H/K5bUrnGZo=)
2: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: kJXHDdnx0llamuiNt0u9p2xT5qLta6mHecoFR2JV5tA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 21:44:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:00:2b:0c:fc:5f:c0:78:7b:56:4c:a5:76:25:da:51:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: May 7 02:01:21 2026 GMT
Not After : May 8 02:01:21 2026 GMT
Subject: CN=fe2bb33726d7e6404006b750c652120dd732b49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d7:0b:99:0d:53:8d:7f:36:9d:6f:dd:df:9f:
cb:d8:31:d9:6c:55:cb:e9:18:3b:50:d8:ad:09:00:
ac:0f:e0:65:cb:a6:e8:eb:d2:57:c5:fb:56:50:48:
9b:33:c6:c6:3b:af:d9:6f:90:e5:8c:4c:b7:d1:d4:
9d:36:3b:2f:e3:61:22:e5:8e:d1:bf:1a:4c:92:86:
f9:46:a7:2a:06:c6:3c:9b:7e:90:fb:1d:6f:4c:e7:
86:9a:d4:65:82:fd:56:79:23:f9:c6:89:9d:0f:07:
7d:3d:03:47:b8:b1:09:82:aa:63:b1:53:26:d5:19:
45:89:66:2e:43:44:8a:eb:60:6b:c3:ac:69:cd:89:
af:7c:db:75:01:be:9f:c2:7c:db:34:b3:66:64:25:
d8:ca:56:9f:9c:4d:dd:ef:ea:ad:d8:80:1d:8f:8f:
3c:df:a3:73:9e:b4:6c:ae:4a:f5:31:62:29:87:70:
ec:c9:e8:a5:98:fe:de:8f:e9:12:13:6b:d5:7b:01:
eb:e7:df:dc:be:6a:7b:2f:74:d9:39:9f:1b:71:3f:
4f:d1:15:54:2b:10:8c:e5:d4:03:67:ff:ba:2e:73:
a2:ec:fc:ed:74:10:b3:e4:ab:de:dd:4d:62:be:cd:
e4:6f:ea:e7:1f:0a:1f:8b:66:12:45:b6:e3:d3:29:
c2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2B:B3:37:26:D7:E6:40:40:06:B7:50:C6:52:12:0D:D7:32:B4:9A
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:67:dc:a9:ce:78:4b:7d:5e:34:cc:5e:e9:2a:20:e2:5c:5e:
e4:7f:fb:07:3b:df:c8:4e:d0:48:f4:73:5d:40:0e:6c:e1:4b:
e7:ae:57:74:04:f8:1d:46:5f:00:fd:d9:7c:4a:04:d9:02:f9:
d3:61:be:ce:e8:c4:85:77:3f:b0:cb:29:d4:99:18:43:fc:e8:
45:84:45:f1:2e:d8:9d:f4:d4:b2:0f:9b:ef:fb:0a:2a:7a:e1:
5a:ff:c6:45:a2:99:75:e9:2d:92:f9:f6:a0:0a:f2:92:b2:fd:
dd:a5:b3:88:39:c7:94:bb:eb:f6:4b:d4:79:a8:d6:7c:89:c7:
cd:81:b1:79:c6:85:87:d5:de:65:c4:8c:13:d2:b6:7d:50:e6:
45:a7:3a:1b:f1:16:6b:fd:da:67:2c:f7:24:34:24:db:f2:a0:
d0:c5:94:6d:d8:06:7f:eb:56:a6:83:d0:38:4c:1c:07:52:b7:
54:fc:ca:94:94:21:78:b5:ff:15:19:98:9a:6d:f0:e1:54:77:
da:12:36:b1:10:75:2c:0a:bb:21:d3:22:73:4a:cb:48:42:fe:
a3:e9:d4:98:98:f0:75:69:65:c9:bf:e8:4a:17:3b:69:00:c7:
c3:3d:99:4e:65:a9:3d:44:68:92:0f:76:6e:56:a4:21:96:25:
55:cb:56:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4AKwz8X8B4e1ZMpXYl2lEvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNjA0ZWMwY2ZlZTk2NmM0MTliM2E2ZDVmMDgyYjU2M2Mx
ODY4YmQwHhcNMjYwNTA3MDIwMTIxWhcNMjYwNTA4MDIwMTIxWjAzMTEwLwYDVQQD
EyhmZTJiYjMzNzI2ZDdlNjQwNDAwNmI3NTBjNjUyMTIwZGQ3MzJiNDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA69cLmQ1TjX82nW/d35/L2DHZbFXL
6Rg7UNitCQCsD+Bly6bo69JXxftWUEibM8bGO6/Zb5DljEy30dSdNjsv42Ei5Y7R
vxpMkob5RqcqBsY8m36Q+x1vTOeGmtRlgv1WeSP5xomdDwd9PQNHuLEJgqpjsVMm
1RlFiWYuQ0SK62Brw6xpzYmvfNt1Ab6fwnzbNLNmZCXYylafnE3d7+qt2IAdj488
36NznrRsrkr1MWIph3DsyeilmP7ej+kSE2vVewHr59/cvmp7L3TZOZ8bcT9P0RVU
KxCM5dQDZ/+6LnOi7PztdBCz5Kve3U1ivs3kb+rnHwofi2YSRbbj0ynCKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4rszcm1+ZAQAa3UMZSEg3XMrSaMB8GA1UdIwQY
MBaAFDtgTsDP7pZsQZs6bV8IK1Y8GGi9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgt
ODdlOWYyMWI0MThiLzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgtODdlOWYyMWI0MThi
LzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArGfcqc54
S31eNMxe6Sog4lxe5H/7BzvfyE7QSPRzXUAObOFL565XdAT4HUZfAP3ZfEoE2QL5
02G+zujEhXc/sMsp1JkYQ/zoRYRF8S7YnfTUsg+b7/sKKnrhWv/GRaKZdektkvn2
oArykrL93aWziDnHlLvr9kvUeajWfInHzYGxecaFh9XeZcSME9K2fVDmRac6G/EW
a/3aZyz3JDQk2/Kg0MWUbdgGf+tWpoPQOEwcB1K3VPzKlJQheLX/FRmYmm3w4VR3
2hI2sRB1LAq7IdMic0rLSEL+o+nUmJjwdWllyb/oShc7aQDHwz2ZTmWpPURokg92
blakIZYlVctWWg==
-----END CERTIFICATE-----
Generated at Thu May 7 06:59:53 2026 by rpki-client