Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: XmKt4jIc2cCt/9d4CKSLr19vlNlFOixKFK1G8WhdG14=
Subject key identifier: 95:6C:C5:E3:CD:C5:6D:54:AA:20:C7:AB:57:D4:44:94:C8:5D:52:EF
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 019E1DFE5CBA06FB7A583B73C9A960487D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 1903
Signing time: Tue 12 May 2026 21:01:09 +0000
Manifest this update: Tue 12 May 2026 21:01:09 +0000
Manifest next update: Wed 13 May 2026 21:01:09 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: XtJcLcke+sA7/Cc1zivGkwnhFhh3AOBwSZgs/04LLAc=)
2: X9Plsh78iLxMym05erYr23A5nAM.roa (hash: JnUoidyO7+02A7tvFvdT39dCgzkQhJHPQPcV1/E2iHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:5c:ba:06:fb:7a:58:3b:73:c9:a9:60:48:7d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: May 12 21:01:09 2026 GMT
Not After : May 13 21:01:09 2026 GMT
Subject: CN=956cc5e3cdc56d54aa20c7ab57d44494c85d52ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:44:19:06:24:40:4f:90:88:19:cc:99:a6:b0:
b7:c9:16:55:94:b1:eb:aa:cd:0d:7d:65:85:36:8b:
e6:92:f7:68:20:4f:3b:60:3c:34:1a:7b:7c:af:dd:
9f:6d:a2:4a:e6:fb:ba:d7:ba:aa:79:b8:c2:30:4b:
af:38:eb:c6:15:c4:c4:50:f8:c1:1f:a9:5a:47:9f:
ab:c8:d7:16:b6:37:b6:9f:2b:e6:f9:c9:46:43:90:
12:4b:45:e6:5d:ea:9e:51:d6:a0:04:24:3f:c6:98:
b6:8f:c8:64:9e:a8:7a:31:e7:1a:7a:2b:fa:8f:81:
3f:27:9c:4c:da:fd:65:29:b4:30:05:ed:48:2d:1e:
d7:40:8f:8f:28:1e:ef:60:ef:b5:98:c5:05:1e:03:
f9:32:60:6b:20:69:59:3e:3a:96:cc:59:f8:fb:10:
c3:e6:08:8d:fb:82:79:7d:e8:d5:c8:5b:7e:da:4f:
4f:bd:61:7f:48:3e:76:d8:92:00:47:54:fb:e3:79:
36:3a:4b:3f:fa:f7:88:44:3f:30:93:59:3d:9b:58:
7b:0f:3b:90:f9:d3:0f:d1:e9:9d:28:d1:75:55:fb:
56:7d:05:aa:ce:a5:0d:53:1e:85:d9:ab:2a:28:3b:
d2:72:9f:9a:8d:53:24:27:39:94:3c:ae:77:59:84:
78:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6C:C5:E3:CD:C5:6D:54:AA:20:C7:AB:57:D4:44:94:C8:5D:52:EF
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:a4:81:54:eb:b9:70:d5:54:b2:e3:11:b9:73:6d:06:d1:b7:
15:a8:6b:f4:d0:72:af:5e:fc:b4:46:ca:ac:86:8f:09:bd:27:
3d:15:ea:a2:9e:5f:f6:ff:1e:d6:5a:eb:18:40:38:50:22:df:
eb:06:9d:ff:00:de:5f:1f:29:24:dd:f1:75:55:63:e5:d5:93:
54:eb:61:90:4c:2a:c9:f0:81:0f:9d:09:5f:46:50:f8:b8:8b:
4f:42:1a:56:71:f7:cc:20:4c:5a:84:d4:a8:e6:7c:ed:b5:3e:
8d:a2:a3:9d:df:56:2f:48:66:49:cf:bd:28:8c:d2:6e:95:23:
6d:dd:75:92:a0:8d:80:32:df:21:6a:f8:17:98:f3:b7:28:db:
2d:52:86:15:87:c5:99:a8:4e:73:13:57:3d:b1:dc:79:ae:6f:
bb:9b:e9:ed:5a:f8:5e:75:85:ca:58:f9:59:8b:20:d5:2c:b6:
7e:6c:e7:3e:12:d6:fd:85:97:89:bd:17:fe:27:2f:94:99:5f:
d6:8e:4d:b6:85:79:52:2d:3c:07:0b:ac:e9:6b:4b:1a:36:0b:
27:18:62:34:17:6b:1d:c9:76:f3:5b:07:c2:5e:99:7d:06:84:
01:25:cf:95:e2:34:6c:ea:2c:63:1d:22:22:f5:99:de:f4:5c:
cf:8b:6f:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/ly6Bvt6WDtzyalgSH0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MDE5ZjljMGFiMjliNDJlMGRiMTJlOWFjODdiMzI3YmZj
NTVhZjkwHhcNMjYwNTEyMjEwMTA5WhcNMjYwNTEzMjEwMTA5WjAzMTEwLwYDVQQD
Eyg5NTZjYzVlM2NkYzU2ZDU0YWEyMGM3YWI1N2Q0NDQ5NGM4NWQ1MmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kQZBiRAT5CIGcyZprC3yRZVlLHr
qs0NfWWFNovmkvdoIE87YDw0Gnt8r92fbaJK5vu617qqebjCMEuvOOvGFcTEUPjB
H6laR5+ryNcWtje2nyvm+clGQ5ASS0XmXeqeUdagBCQ/xpi2j8hknqh6Mecaeiv6
j4E/J5xM2v1lKbQwBe1ILR7XQI+PKB7vYO+1mMUFHgP5MmBrIGlZPjqWzFn4+xDD
5giN+4J5fejVyFt+2k9PvWF/SD522JIAR1T743k2Oks/+veIRD8wk1k9m1h7DzuQ
+dMP0emdKNF1VftWfQWqzqUNUx6F2asqKDvScp+ajVMkJzmUPK53WYR4CwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVsxePNxW1UqiDHq1fURJTIXVLvMB8GA1UdIwQY
MBaAFDkBn5wKsptC4NsS6ayHsye/xVr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MzBjODEtZWU0Yi00ZTg4LWEzNmYt
Nzg4ZjVhNTgwNDRmLzEvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi80MzBjODEtZWU0Yi00ZTg4LWEzNmYtNzg4ZjVhNTgwNDRm
LzEvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIaSBVOu5
cNVUsuMRuXNtBtG3Fahr9NByr178tEbKrIaPCb0nPRXqop5f9v8e1lrrGEA4UCLf
6wad/wDeXx8pJN3xdVVj5dWTVOthkEwqyfCBD50JX0ZQ+LiLT0IaVnH3zCBMWoTU
qOZ87bU+jaKjnd9WL0hmSc+9KIzSbpUjbd11kqCNgDLfIWr4F5jztyjbLVKGFYfF
mahOcxNXPbHcea5vu5vp7Vr4XnWFylj5WYsg1Sy2fmznPhLW/YWXib0X/icvlJlf
1o5NtoV5Ui08Bwus6WtLGjYLJxhiNBdrHcl281sHwl6ZfQaEASXPleI0bOosYx0i
IvWZ3vRcz4tvjg==
-----END CERTIFICATE-----
Generated at Wed May 13 07:27:50 2026 by rpki-client