Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: bW8vYErEdIIFfX8YUDJW03ll/mUFDMbc64yKMHJ7Srw=
Subject key identifier: DD:6A:B0:52:4C:0F:CF:5A:0F:71:3B:8B:C8:16:F1:A8:70:31:9D:C1
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 019D26CCD51963BC1CFDC2BD02DD6737FAEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 21:00:51 +0000
Manifest this update: Wed 25 Mar 2026 21:00:51 +0000
Manifest next update: Thu 26 Mar 2026 21:00:51 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: ly8BpCP7+CCyfP6wM09YbyNlJCuKoUd/dFB19ZRfHs8=)
2: X9Plsh78iLxMym05erYr23A5nAM.roa (hash: JnUoidyO7+02A7tvFvdT39dCgzkQhJHPQPcV1/E2iHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:d5:19:63:bc:1c:fd:c2:bd:02:dd:67:37:fa:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Mar 25 21:00:51 2026 GMT
Not After : Mar 26 21:00:51 2026 GMT
Subject: CN=dd6ab0524c0fcf5a0f713b8bc816f1a870319dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:27:01:0e:27:f8:c8:20:25:7b:0f:7f:49:d4:
e1:65:ec:f1:ab:cb:4b:88:46:4d:71:a7:4b:14:8c:
6a:22:6f:a5:e9:6b:a7:4e:97:a8:43:eb:99:69:83:
a2:6e:60:9e:1e:e7:50:0f:45:be:03:f4:0b:05:91:
0d:79:ee:42:e2:94:23:fb:3e:93:82:5f:79:3e:70:
5f:7e:c0:0c:db:25:6a:92:ad:fa:5d:0d:34:73:6b:
1e:44:a1:3b:64:ba:83:58:51:d1:b5:77:2b:79:1d:
08:19:c2:58:b7:1b:67:17:12:fd:03:4e:0a:5e:a9:
54:57:8a:01:5d:81:59:56:c2:7b:f3:ca:1e:31:4d:
59:15:4b:95:38:a3:6f:a3:68:d0:d3:ad:8a:84:c8:
34:2e:cb:7c:20:d7:1d:13:66:40:0d:5f:d2:38:0a:
56:1e:1d:26:fe:a9:5d:b3:82:f4:9d:ee:1b:1a:e0:
4e:f8:b5:15:05:16:43:f7:68:b9:6c:32:81:f4:30:
92:57:92:44:03:1b:a3:65:dc:29:98:d0:2e:42:b3:
87:71:da:22:ce:80:59:89:bd:87:cc:9c:53:e4:cb:
25:ac:52:0d:20:bb:63:44:ad:c3:c6:12:80:c1:a0:
92:b5:07:7c:ff:43:9a:43:09:f5:f5:df:34:a6:8a:
c6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6A:B0:52:4C:0F:CF:5A:0F:71:3B:8B:C8:16:F1:A8:70:31:9D:C1
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:71:98:d3:ad:48:b9:22:1d:3f:d6:fc:fc:4a:9b:ca:2d:6b:
ae:53:15:56:b4:24:74:83:19:93:7c:1a:aa:f0:d3:c3:8d:43:
de:65:74:02:ad:bb:d5:6a:10:e9:63:30:3d:7d:a2:c4:77:a7:
95:9a:6e:6a:7c:fa:b3:03:ca:a8:b9:45:c1:be:ee:20:45:46:
9c:a0:44:2b:6d:ba:83:bc:21:10:94:85:97:31:09:2d:25:e6:
86:f9:5f:aa:b4:35:00:c5:6a:73:99:c1:e2:93:9a:a0:c3:f8:
d9:1e:71:b7:0a:12:52:42:d2:4f:6a:8b:1c:96:0b:e5:4e:4f:
e9:75:d3:94:e9:d4:ae:98:b0:37:8a:3c:ed:b2:1d:fa:8e:d9:
8c:da:91:77:9a:9b:59:a9:10:d3:07:4d:0c:e2:e6:61:ae:07:
aa:aa:92:7b:5e:a2:6e:0f:74:70:9e:b3:45:4a:7f:63:4a:aa:
74:72:6e:36:fc:89:6f:b1:06:de:c3:e8:70:8d:84:3b:44:ac:
4a:31:9e:6c:92:9c:70:89:e1:ad:b0:47:2c:ca:6c:0a:4f:bd:
06:9b:95:68:1b:3d:11:c1:7e:48:fd:46:57:ef:e7:60:9a:bd:
2a:e6:fa:3b:ca:da:7b:f9:0f:e2:9a:bd:e1:a6:58:75:27:1b:
7a:79:74:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:41:18 2026 by rpki-client