Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: FG2N9mHmva8phzZm+ftw+jy+IjfBuUR3T6v6djd9sho=
Subject key identifier: 1E:71:E9:45:93:BA:6D:42:37:4A:63:B5:15:51:96:5F:75:92:C0:09
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019D3940F33A7B3F62C7EE10131FFE95C6E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 12F7
Signing time: Sun 29 Mar 2026 11:00:50 +0000
Manifest this update: Sun 29 Mar 2026 11:00:50 +0000
Manifest next update: Mon 30 Mar 2026 11:00:50 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: 9JpOq3doEEwOWY8KtTUjnibUSBxUkMkm7NA3B5dYl6g=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:f3:3a:7b:3f:62:c7:ee:10:13:1f:fe:95:c6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Mar 29 11:00:50 2026 GMT
Not After : Mar 30 11:00:50 2026 GMT
Subject: CN=1e71e94593ba6d42374a63b51551965f7592c009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f2:aa:ee:69:41:c2:d2:b4:ef:2f:8d:3f:f1:
8d:ab:47:7a:84:84:05:90:10:18:c0:4c:be:91:c6:
71:1a:5a:86:66:9d:cc:9a:84:c9:0b:fe:4d:64:31:
ed:c3:a2:31:84:b2:a2:8b:18:45:89:4a:7e:bb:2c:
ef:62:b8:1e:d1:42:b6:d5:2d:0d:b3:f4:61:a1:0d:
24:8a:b7:e8:5b:11:02:a5:ed:c1:e5:b5:01:17:12:
3d:53:78:0c:34:23:97:ad:10:ca:f0:fc:85:d5:f1:
6e:0a:0d:70:5d:5b:3f:5f:95:26:a9:17:20:39:fc:
ba:a0:d1:76:2b:71:8f:8e:26:67:89:ba:bc:a5:e0:
fc:6f:bb:f5:60:2f:28:bf:e0:26:f6:bd:ce:2a:7a:
30:7d:a3:c8:b4:3d:f7:2b:b4:c8:e2:d3:2d:9a:b4:
a0:85:43:d5:21:66:6a:4f:94:1c:b1:c9:72:45:21:
e3:d2:80:a6:de:f0:48:e0:e9:a8:b1:20:08:61:b7:
03:a8:5b:cd:c0:3c:9b:e4:61:e5:77:f8:b5:9b:b7:
28:a7:97:51:b8:5a:ba:cf:49:2d:bb:32:e4:40:89:
48:5b:9b:f7:42:5a:ab:e6:da:3a:0d:ec:1c:35:07:
91:fb:ff:99:96:50:7c:7f:30:94:56:a1:bd:42:79:
04:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:71:E9:45:93:BA:6D:42:37:4A:63:B5:15:51:96:5F:75:92:C0:09
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:0e:03:3f:63:6c:3a:7e:21:02:e6:79:4d:4c:24:81:25:0d:
90:6e:b0:21:6e:b2:74:10:4b:77:4d:6f:63:0a:c0:94:59:1c:
55:df:ee:81:29:2b:4a:01:1f:7d:d1:cc:8a:1f:f3:8e:33:25:
ae:6f:c3:60:3c:64:8d:db:48:78:dc:5e:b7:8b:22:b0:e7:fd:
12:97:97:91:6c:51:f0:1b:45:b6:fe:17:33:98:24:70:80:ca:
c7:50:ff:ed:40:70:58:ea:68:83:bc:4b:b7:24:31:9b:cd:69:
68:34:e8:fd:4b:c0:9e:41:77:58:82:eb:73:74:26:8e:8e:a7:
d7:90:4a:ff:e7:5e:78:ac:48:35:c4:13:67:bf:5f:be:f9:60:
d8:6a:fe:42:cc:90:80:c4:59:ac:f8:7d:56:6e:f2:51:fa:71:
b0:c0:90:9f:9b:45:a1:c3:64:c2:01:6b:48:ab:44:9e:08:3d:
69:f9:7e:66:64:b9:93:45:b9:d2:51:b8:92:b8:40:f2:7c:c2:
74:3e:4a:46:32:80:df:2b:bc:c2:21:92:bf:9b:b1:d7:a1:cb:
52:e0:36:20:bc:57:b8:a4:78:7c:8c:c4:c5:fa:45:82:c8:f3:
b1:ef:ed:2f:20:5f:45:c5:23:9c:41:4b:1c:3e:69:80:eb:f0:
63:6b:af:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:29 2026 by rpki-client