Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: 5LfUqSWsbfzsIj7wAd5J0yhpdnq9nTorrzhQkZFOEk8=
Subject key identifier: E5:3D:09:FE:C1:D7:41:82:C0:A2:A5:BF:80:D4:D7:C5:E2:B0:69:B9
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 019DCDF58D4FC6CCD162E759C007C5BE2771
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0DAA
Signing time: Mon 27 Apr 2026 08:01:54 +0000
Manifest this update: Mon 27 Apr 2026 08:01:54 +0000
Manifest next update: Tue 28 Apr 2026 08:01:54 +0000
Files and hashes: 1: IH423EjGhjGEYUhA9Vkl_n9zB8E.roa (hash: JSP/u1wkfocZw2cQtJFX46pxKJk7V7jUMeaOiY9+bXo=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: 1hqiJfsznlbKAQ/y3qu1XmfHKySkvmr4FD6RzgltDPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f5:8d:4f:c6:cc:d1:62:e7:59:c0:07:c5:be:27:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Apr 27 08:01:54 2026 GMT
Not After : Apr 28 08:01:54 2026 GMT
Subject: CN=e53d09fec1d74182c0a2a5bf80d4d7c5e2b069b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:da:92:a6:be:aa:26:65:bf:56:c4:0b:31:c9:
07:40:47:e9:37:20:3d:1f:1f:60:0f:fd:96:0f:52:
80:cf:7c:8c:28:24:e7:ed:c7:dd:23:f1:52:f2:77:
14:6b:d2:85:62:5a:fc:35:8d:11:b0:d9:d4:96:ce:
fd:1b:62:b2:cd:eb:38:bb:e6:a7:73:fb:3f:61:b2:
97:68:bd:13:c0:63:ea:d6:18:33:28:3d:99:f9:78:
b9:e4:72:b7:ad:39:9b:28:2a:aa:47:d3:2d:fd:c7:
6e:08:6c:c5:8d:ca:5d:bd:19:66:05:2d:00:ee:32:
a5:1b:38:0e:69:9f:1e:2a:d6:b9:e3:e8:35:f0:51:
b9:f4:75:c6:b3:98:78:4c:f4:72:e0:cf:de:84:25:
01:5e:8f:9c:50:09:e1:fc:74:86:80:9a:05:1e:ad:
4a:6f:76:bb:af:0f:1a:42:57:8f:e2:3b:fd:16:16:
ca:67:06:ad:bc:0b:1a:01:a1:19:d5:44:bb:79:3f:
8c:6b:7a:1e:24:83:44:45:da:d6:a1:c1:ab:37:ee:
c1:b0:f8:c5:d2:04:03:69:ec:76:9c:29:97:78:97:
b8:4d:e9:a3:52:99:76:06:e4:f1:e1:2c:a8:b0:3d:
54:bc:7a:fe:8e:12:06:f7:d3:2e:c0:e2:b6:7d:44:
b7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3D:09:FE:C1:D7:41:82:C0:A2:A5:BF:80:D4:D7:C5:E2:B0:69:B9
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d8:60:0a:dc:0f:4b:1e:66:19:28:f4:f6:6b:f6:73:05:51:
9c:74:94:44:73:37:03:d3:80:0a:8d:17:36:21:af:34:b2:23:
d0:f9:76:b0:74:e2:e0:87:2c:c2:c7:14:5c:e6:6b:55:e3:d4:
45:8c:a1:a6:ee:3d:f3:9d:8c:f6:34:75:91:fb:86:cd:a3:02:
4e:7d:69:40:cd:75:6c:12:28:20:93:04:45:79:6e:3f:58:47:
04:0d:3c:4a:6f:81:18:2d:cd:37:56:04:78:c9:2d:55:c4:d3:
42:b4:09:f9:54:41:6c:df:7b:3b:75:c7:f6:c8:65:75:97:b4:
c2:9e:28:51:62:9f:a7:94:82:47:d1:e8:6f:88:1b:71:b2:28:
4c:1a:ac:fc:41:4d:69:88:65:f5:8e:83:bf:22:65:8f:29:81:
21:09:a9:61:be:e6:2f:1f:36:db:9b:03:9e:ee:ad:e3:c2:1c:
7d:32:f9:54:06:43:1f:07:40:c7:7b:e9:02:73:fa:9e:9a:0e:
e0:9e:6d:19:4f:32:e4:01:15:c4:88:4b:cc:83:c3:e2:c8:4c:
4a:e0:f3:57:95:ce:eb:43:ef:f5:65:9a:7f:b2:2b:95:d0:c5:
4a:f5:24:cd:12:ee:00:86:89:f6:50:cc:6c:de:8f:e5:37:b3:
c3:81:a5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:34:14 2026 by rpki-client