Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: +ZYDF2WRiXrqC3moed8Uvc3sWjMJh80tEqzCNCfHFtU=
Subject key identifier: C6:DB:FF:E0:76:34:4F:7B:46:DF:C1:8D:20:08:C3:FF:7D:65:41:BC
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019E1DFE118C3DE9769D9E5CC3266D4CBAE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 1904
Signing time: Tue 12 May 2026 21:00:50 +0000
Manifest this update: Tue 12 May 2026 21:00:50 +0000
Manifest next update: Wed 13 May 2026 21:00:50 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: TDWpFwT6uE3n+NhKWyrFZzPmLuPmBZtFZzrfGVqarFo=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:11:8c:3d:e9:76:9d:9e:5c:c3:26:6d:4c:ba:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: May 12 21:00:50 2026 GMT
Not After : May 13 21:00:50 2026 GMT
Subject: CN=c6dbffe076344f7b46dfc18d2008c3ff7d6541bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7d:e6:fa:ea:73:fe:09:c1:2a:e6:5c:f0:5d:
99:6f:35:dd:03:12:82:63:da:bb:30:8d:58:bf:fb:
bd:4e:3e:32:79:be:81:f2:2d:87:01:20:22:70:36:
45:0e:49:f2:cb:51:c6:de:35:bf:bc:a0:66:34:71:
01:fd:be:4b:29:3a:d8:95:d3:d8:b1:75:c1:05:10:
81:70:c1:e0:4b:79:9b:70:28:97:de:e8:33:a0:92:
6c:96:86:44:8b:71:f3:91:8b:70:47:00:4e:6d:b2:
54:7a:fe:4b:d3:9d:e0:53:e5:4b:e3:13:dd:f2:b6:
b8:5d:0d:dd:29:92:ce:c6:8e:1b:fc:b8:33:c9:dc:
19:c4:95:3c:6d:4f:58:f9:be:9d:f6:68:73:12:42:
26:23:d9:dc:a2:22:28:ba:ac:82:6a:6a:b0:c6:1b:
50:75:31:c7:fa:7e:7c:6f:cf:fb:e7:20:bd:05:86:
b1:cf:ce:a4:a0:94:3a:76:74:2c:5e:72:a2:d2:7a:
ff:4c:b9:a8:4b:b0:3d:5e:f9:df:75:2c:82:52:e1:
d3:02:b9:99:23:df:39:0c:58:75:18:80:a5:e4:46:
97:22:0a:7a:f3:fa:0b:e0:7d:78:32:af:9c:06:96:
31:c1:a7:95:2d:c9:a0:06:b9:ec:08:53:a5:c5:55:
67:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DB:FF:E0:76:34:4F:7B:46:DF:C1:8D:20:08:C3:FF:7D:65:41:BC
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:aa:73:be:11:ff:f4:36:69:13:1a:b1:89:5d:35:cc:91:d9:
0b:90:0b:cf:70:19:e2:af:d0:26:bf:e5:ab:15:a3:b8:2d:86:
06:79:29:e9:44:d3:e6:f0:a2:4d:bb:b8:9c:a8:e3:ad:60:a3:
16:2c:ca:da:e9:3f:d5:21:e9:c1:b5:71:3c:67:db:b0:1f:26:
8d:3a:f4:c2:1e:f8:7b:af:cf:4e:d9:54:6a:db:85:ad:43:ec:
d7:d4:b0:48:92:1d:62:7e:54:5a:1a:58:01:80:ab:72:1e:89:
e3:08:c1:d1:21:41:bf:5e:4d:ea:d0:0d:6c:48:a2:33:8f:65:
50:b0:62:dd:21:a6:bf:3f:9a:93:81:64:8b:57:73:e3:ff:14:
05:be:74:65:5b:1b:66:e5:39:76:2a:c3:49:b3:b8:cf:41:d9:
62:b5:22:e6:9b:a5:ff:bc:bc:ee:fe:92:24:34:28:4f:5f:70:
f8:04:4e:f9:96:5e:68:a0:f8:af:37:31:25:16:1f:ec:fc:37:
bf:36:c4:c1:23:23:f5:f2:17:3f:4e:d2:f3:27:38:a6:10:ab:
e5:9f:07:9f:f8:1d:0b:7d:9c:de:d6:1c:38:23:6d:29:a9:27:
ee:0a:77:40:cb:db:95:39:74:b2:d2:3a:c1:b0:c7:45:33:ff:
55:20:9c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:29:55 2026 by rpki-client