Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: V7EcSbko7t4mx7+puLOwEVQhqD0TCTcjC5v15kLYUoM=
Subject key identifier: D9:41:DB:8C:AE:7D:9A:39:CA:6D:BF:99:4C:0C:27:3B:77:40:55:5F
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019DB2EBE221666DA82FEF8796C68CA73BC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0A89
Signing time: Wed 22 Apr 2026 02:01:36 +0000
Manifest this update: Wed 22 Apr 2026 02:01:36 +0000
Manifest next update: Thu 23 Apr 2026 02:01:36 +0000
Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 9rvvi2RIykvwcrsd0PYKP2qztz8pF3yIkENhgX3x6Nw=)
3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=)
4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=)
5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=)
6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:eb:e2:21:66:6d:a8:2f:ef:87:96:c6:8c:a7:3b:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Apr 22 02:01:36 2026 GMT
Not After : Apr 23 02:01:36 2026 GMT
Subject: CN=d941db8cae7d9a39ca6dbf994c0c273b7740555f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5e:16:77:c0:b3:96:18:2e:cf:81:f5:4d:0c:
d3:1b:0a:07:a8:d6:81:7f:48:f6:70:7c:4a:9d:92:
87:ac:6d:ae:8d:37:65:77:1c:ce:70:fb:8a:3a:97:
9e:00:ee:bd:33:aa:39:fd:e3:15:b7:e7:64:67:0c:
ad:3d:40:13:42:d6:52:fa:90:c9:5c:5c:96:a8:d8:
f6:a6:ef:4c:19:aa:ea:99:80:d8:9d:c7:76:dc:ce:
f6:68:bd:41:2d:81:d4:c5:c4:9c:d1:b1:54:da:66:
49:b5:57:61:ec:d9:5d:5e:9a:39:40:5b:9f:70:e1:
e5:d1:1c:f5:59:a9:a1:5a:93:70:30:52:53:f9:9c:
cd:89:c0:f3:53:2c:de:4f:c4:e4:b8:c4:f0:fd:08:
13:b1:72:17:03:ea:40:55:6d:92:02:fc:c3:2f:48:
9f:ba:b7:62:0d:d7:5d:69:13:f1:ed:a2:c3:4e:dd:
10:31:20:cf:7c:2b:ff:ce:1b:29:ca:5f:25:eb:69:
d0:20:68:d2:70:b3:95:22:88:24:1b:18:d8:82:89:
bd:41:17:d2:e8:f3:df:58:26:3e:21:00:3c:d8:eb:
ed:75:a3:26:ec:43:06:08:91:1b:e2:7f:e5:64:33:
b2:36:9a:40:f4:93:3d:83:24:6a:a6:c8:46:5c:07:
a5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:41:DB:8C:AE:7D:9A:39:CA:6D:BF:99:4C:0C:27:3B:77:40:55:5F
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:5b:e8:78:a8:4d:9c:12:5c:a3:1a:58:f4:0d:45:a6:f2:00:
db:b2:d2:75:55:43:90:e0:90:ea:5e:d2:40:0d:ed:92:f8:ff:
75:b8:ff:88:a3:f0:d6:85:1e:4a:52:d9:d1:19:5f:2a:c2:63:
00:64:ec:9c:66:d1:ee:84:3f:ca:a7:e8:1c:b8:35:e9:b1:83:
ff:b8:6b:db:3b:58:b6:43:51:47:d2:a6:7d:e9:e9:83:d7:97:
22:c5:23:c8:df:14:1e:a7:f4:d5:3e:fd:f1:2c:01:a8:92:9e:
91:c3:4d:ff:39:83:57:2c:4a:05:cc:94:9b:69:36:f3:33:77:
e8:b8:d9:00:f9:ef:fb:73:d6:49:f7:76:51:75:c2:60:d4:90:
56:1f:d1:0c:0d:2a:5f:1e:fa:11:d9:a5:1a:c7:2a:99:f0:64:
b1:90:34:31:23:3b:79:1b:3c:d2:17:e5:59:f7:b1:07:89:00:
d3:c1:74:07:95:1c:30:cd:84:9d:a9:8c:2e:3e:a0:cf:19:75:
0a:53:5c:91:78:e3:32:55:21:87:f7:c3:5f:30:b8:af:c8:b7:
99:b2:a1:f5:0d:02:ee:cb:7e:37:2e:31:14:05:de:56:e4:27:
99:60:9f:38:c9:41:47:db:70:46:3f:f4:71:33:c0:e6:83:2d:
95:e8:63:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 06:44:00 2026 by rpki-client