Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: 0gs5ZZkc97dUZq4F1w04xetgLJcgfdxsu3BvDdpdxHQ=
Subject key identifier: C4:03:E9:29:6E:0E:72:58:5E:E2:EC:0A:E1:4E:16:EB:E2:29:F5:80
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019DB1D83289BEFBD6CECD76009814BE5599
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0F74
Signing time: Tue 21 Apr 2026 21:00:29 +0000
Manifest this update: Tue 21 Apr 2026 21:00:29 +0000
Manifest next update: Wed 22 Apr 2026 21:00:29 +0000
Files and hashes: 1: 5EPEfFcq0_CQJyJv8NvlTXW122s.roa (hash: shP8Ed/HPJC3iktLjU3AhfJDqjBPIc4NQ5VyPIH2+gA=)
2: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=)
3: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: DmmqeGdqeSeSfhskK78eGrrCwT8MuZsq+RCzW9saTP4=)
4: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=)
5: xkVE7KUdk3_Gxthu42EOBxgV05Q.roa (hash: OLCiaU+AVFxgMEa5gMdkqLSxOFCgu1RCocNrX9T3asM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:d8:32:89:be:fb:d6:ce:cd:76:00:98:14:be:55:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Apr 21 21:00:29 2026 GMT
Not After : Apr 22 21:00:29 2026 GMT
Subject: CN=c403e9296e0e72585ee2ec0ae14e16ebe229f580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:3d:b4:ba:84:dd:a6:a6:34:7c:4e:1a:cc:
62:78:b8:a7:b9:16:63:d2:66:18:48:f0:6f:4d:79:
67:78:cb:54:5c:76:14:31:85:64:4a:35:7e:1d:06:
b0:66:68:99:5f:33:20:a6:d2:e3:68:46:24:18:ac:
dc:42:1d:91:8e:7b:3b:48:48:a4:8c:b2:22:de:e3:
b1:08:cd:47:01:6c:0b:89:37:49:98:a8:63:59:20:
d6:d6:28:0e:51:c2:35:24:bb:85:c5:06:32:71:3f:
7a:05:9b:00:26:9e:5d:20:d1:77:4c:54:2c:e7:a2:
fd:04:fe:35:af:2e:67:08:c8:c9:ff:ba:83:b7:59:
7f:b1:7c:8a:35:ec:c1:ca:55:f1:14:84:b1:29:87:
90:07:5b:42:80:c4:9a:36:64:f3:21:f3:08:da:16:
c3:d7:26:3f:0a:6b:32:9b:5e:39:33:59:fc:cc:5d:
a9:13:05:3f:ca:9b:7c:65:e5:ce:1c:06:46:84:59:
09:eb:13:44:7c:8f:d8:cd:bb:6e:3a:68:13:51:49:
d3:5c:dd:e3:1e:e2:d0:2f:e8:3b:b3:6d:65:31:f7:
c7:3d:fa:56:d7:93:b7:e9:c3:01:94:f3:14:4d:96:
66:f7:62:40:e6:be:25:5c:56:44:21:63:18:a2:34:
f0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:03:E9:29:6E:0E:72:58:5E:E2:EC:0A:E1:4E:16:EB:E2:29:F5:80
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a8:40:75:e0:0f:ee:aa:c6:8e:eb:55:57:79:82:e1:9c:78:
f1:81:2d:a3:c9:62:c2:14:ad:f1:f4:25:d7:d6:1b:c8:7f:d5:
65:21:bb:e4:e7:2f:78:88:00:bc:a3:16:f9:58:c3:d3:06:99:
68:eb:88:67:6c:07:47:ec:75:19:16:2c:cb:3e:c7:68:83:12:
b9:64:5f:24:1a:5d:ec:67:22:4d:a9:f2:8f:48:28:4b:38:82:
ed:32:35:e7:06:6d:f0:94:c6:92:84:ff:62:23:2d:bb:46:c7:
57:6c:c9:11:38:f1:37:8b:7b:cb:fe:1d:39:a2:87:c3:8a:3b:
75:e3:dc:9a:47:dd:93:31:85:b1:5e:2d:d0:50:e1:12:0b:59:
a7:d8:96:a9:7f:b1:ef:46:bb:46:b1:ab:92:e7:15:75:4f:5a:
0c:a4:53:03:fe:5f:25:54:06:83:c0:70:89:84:f0:33:b7:dc:
ee:54:4f:3e:cb:52:d5:b6:d6:7c:73:a6:0f:84:46:f8:f4:3f:
4c:46:5c:e0:1e:e2:d6:68:0b:10:50:55:ca:28:3c:95:a5:de:
7b:4e:62:9b:1d:5b:2e:c7:fc:ba:02:c2:65:ff:9c:94:71:50:
63:3d:05:20:91:95:25:38:36:59:ef:80:64:89:8f:33:92:e3:
e6:46:79:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 04:08:07 2026 by rpki-client