Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: G0uA46A+O0xDQCrHuMGlIKzVe9vvGFYfwMdd+NLzTIs=
Subject key identifier: 73:7D:49:F0:7D:DD:9F:75:B8:0F:F9:84:0A:FD:52:F6:23:63:F4:1C
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019E4F5866AD306DBCAF4E42F067C2718BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 1387
Signing time: Fri 22 May 2026 11:00:53 +0000
Manifest this update: Fri 22 May 2026 11:00:53 +0000
Manifest next update: Sat 23 May 2026 11:00:53 +0000
Files and hashes: 1: 6J5zq7acHeCorGt2Kz1SRI8TBxw.roa (hash: QUb/O/uGMs7lP+6gaahFi67OYlrRZUT6YWqd/feI1TU=)
2: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: EpTUkG611t9GzS/8AnVHlkRfnx1jXzLwTQEVkNg30J8=)
3: SAEHlpuu2VHfT1gYOBIDmp8YrI0.roa (hash: f+Ly+ugjS2e2LTdlARUIcZJrF9Q/kNyEBJzeeNxkntA=)
4: l8nJcuD4rGZxCdIYInml3vohntk.roa (hash: eU3RnT3IPn87hTAFydZwwQYkYydG1vHyM8wmqGF1vjs=)
5: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (hash: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4f:58:66:ad:30:6d:bc:af:4e:42:f0:67:c2:71:8b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: May 22 11:00:53 2026 GMT
Not After : May 23 11:00:53 2026 GMT
Subject: CN=737d49f07ddd9f75b80ff9840afd52f62363f41c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:30:94:af:3f:e5:d4:7d:47:05:cc:01:5f:
32:0b:8d:68:9f:e3:db:14:a9:0e:83:a1:12:40:90:
9a:c1:e4:97:72:92:50:19:e6:f5:b6:f6:6a:fe:05:
c3:fa:d2:f9:1a:5e:63:73:1f:26:75:ce:7c:8f:5c:
e1:25:8b:83:a1:bf:a8:3e:ee:4a:8c:11:4c:a4:f9:
80:2c:72:7b:9a:58:7e:9e:d9:70:31:a6:b6:41:16:
70:08:17:01:2f:42:09:69:e9:dc:ff:ed:01:81:97:
29:82:71:97:23:00:cf:6d:2a:4c:39:9e:15:54:25:
16:8a:a1:ea:80:fe:05:51:ad:91:23:7b:8d:14:9f:
f2:fb:3b:1f:47:65:33:6a:4a:c2:d8:34:0a:63:a4:
a8:d4:27:61:b2:19:6a:ba:99:1a:67:2c:99:a2:c6:
3f:fd:8d:79:9d:96:84:40:09:8d:90:72:21:72:4a:
b0:12:fd:59:cd:6f:0f:58:48:73:e6:68:f3:50:94:
b4:78:cd:44:78:ad:3b:6d:83:4f:0e:65:c0:eb:c8:
63:d3:50:4d:cb:c2:09:3c:df:e4:28:1f:75:31:f4:
f1:9b:2d:c7:8e:67:6f:2a:ca:d9:a0:81:ad:b9:73:
4b:81:3e:3c:68:31:12:dc:0a:47:1a:46:81:4c:37:
77:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7D:49:F0:7D:DD:9F:75:B8:0F:F9:84:0A:FD:52:F6:23:63:F4:1C
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:dd:a6:dd:e1:a6:b9:90:07:3a:42:68:67:0e:56:e1:37:d5:
60:4e:ec:1a:3e:21:ae:6a:cc:03:7f:d7:6a:97:42:32:9c:e8:
e9:37:de:d9:c3:17:8a:33:80:03:e5:2f:98:14:5d:81:83:7a:
39:60:73:2c:2a:91:f8:e8:e5:85:37:fe:e7:9f:f3:10:a3:81:
db:41:f7:63:f7:74:be:69:26:2c:7f:e8:61:f8:d8:0c:68:5f:
52:91:40:be:df:3f:6a:71:76:68:f1:ff:8d:fc:9e:8a:f1:3e:
73:ed:5f:cb:fa:5c:14:f2:de:3a:4a:7e:df:62:e3:8d:a8:a0:
9d:77:f6:51:55:3c:6a:3e:25:66:41:91:a0:5b:bc:6f:32:64:
91:59:43:d0:6b:2e:70:25:d3:c3:1d:30:b6:85:05:5a:86:a7:
34:56:3c:f9:28:7e:b8:77:6c:aa:7b:94:56:98:d4:0d:f7:37:
f9:ca:7f:fe:89:63:b3:8e:12:1d:db:27:86:29:93:d1:58:1b:
41:56:95:ef:38:04:c7:d9:76:d7:f6:68:0e:96:f8:64:ac:a3:
37:a5:69:51:cf:47:8b:a5:05:ab:ac:a8:6b:cd:74:e4:09:0b:
d5:0f:51:86:a5:a9:f2:6f:17:38:98:06:a0:42:ac:95:80:32:
fb:78:43:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5PWGatMG28r05C8GfCcYv1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiOGZlMjQ2NTg0MzAzMWI3NzhiYjhkOGI3YmQzNWEwOTRm
Y2NmNDgwHhcNMjYwNTIyMTEwMDUzWhcNMjYwNTIzMTEwMDUzWjAzMTEwLwYDVQQD
Eyg3MzdkNDlmMDdkZGQ5Zjc1YjgwZmY5ODQwYWZkNTJmNjIzNjNmNDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu0wlK8/5dR9RwXMAV8yC41on+Pb
FKkOg6ESQJCaweSXcpJQGeb1tvZq/gXD+tL5Gl5jcx8mdc58j1zhJYuDob+oPu5K
jBFMpPmALHJ7mlh+ntlwMaa2QRZwCBcBL0IJaenc/+0BgZcpgnGXIwDPbSpMOZ4V
VCUWiqHqgP4FUa2RI3uNFJ/y+zsfR2UzakrC2DQKY6So1CdhshlqupkaZyyZosY/
/Y15nZaEQAmNkHIhckqwEv1ZzW8PWEhz5mjzUJS0eM1EeK07bYNPDmXA68hj01BN
y8IJPN/kKB91MfTxmy3HjmdvKsrZoIGtuXNLgT48aDES3ApHGkaBTDd3IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHN9SfB93Z91uA/5hAr9UvYjY/QcMB8GA1UdIwQY
MBaAFDuP4kZYQwMbd4u42Le9NaCU/M9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2Mt
N2MzNTAwNmUwN2ExLzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2MtN2MzNTAwNmUwN2Ex
LzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAct2m3eGm
uZAHOkJoZw5W4TfVYE7sGj4hrmrMA3/XapdCMpzo6Tfe2cMXijOAA+UvmBRdgYN6
OWBzLCqR+OjlhTf+55/zEKOB20H3Y/d0vmkmLH/oYfjYDGhfUpFAvt8/anF2aPH/
jfyeivE+c+1fy/pcFPLeOkp+32LjjaignXf2UVU8aj4lZkGRoFu8bzJkkVlD0Gsu
cCXTwx0wtoUFWoanNFY8+Sh+uHdsqnuUVpjUDfc3+cp//oljs44SHdsnhimT0Vgb
QVaV7zgEx9l21/ZoDpb4ZKyjN6VpUc9Hi6UFq6yoa8105AkL1Q9RhqWp8m8XOJgG
oEKslYAy+3hDtA==
-----END CERTIFICATE-----
Generated at Fri May 22 15:14:16 2026 by rpki-client