Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
File: OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft (raw, json)
Hash identifier: 3U6zFN7hp/1SvnQ4UEXamWPz/nDawNIcebgTzKptMRc=
Subject key identifier: 00:E6:1F:F2:98:75:F0:DC:F3:B5:49:44:5C:3D:98:6C:F2:11:32:A8
Authority key identifier: 39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
Certificate issuer: /CN=39d43c26468819c07b1925115fe4921f84203d16
Certificate serial: 019E28F01FB0B9ADFFCFE55E0B3989774422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
Manifest number: 190A
Signing time: Fri 15 May 2026 00:01:25 +0000
Manifest this update: Fri 15 May 2026 00:01:25 +0000
Manifest next update: Sat 16 May 2026 00:01:25 +0000
Files and hashes: 1: 6EaN192CjrCwlHATB-QjEseTMPI.roa (hash: gRsvMkimlDX2AdHsbVLZmaIf2SyXZuU/L2zLOOUZzvk=)
2: IHAfMYxIFJ2pmcHYjuMlA7NoPQg.asa (hash: w9lR4ON+b59p837ru2OLVhKsOC/JMVjvCSI6iRqeFUs=)
3: OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl (hash: tnfZxjFpV2dCdfAgiDLzV4sFGT4HqZzzJwCV6zJMB+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:f0:1f:b0:b9:ad:ff:cf:e5:5e:0b:39:89:77:44:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39d43c26468819c07b1925115fe4921f84203d16
Validity
Not Before: May 15 00:01:25 2026 GMT
Not After : May 16 00:01:25 2026 GMT
Subject: CN=00e61ff29875f0dcf3b549445c3d986cf21132a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b5:d5:a7:9e:e8:20:4e:fe:8a:ed:9f:ba:87:
8f:20:b5:bd:64:b4:84:b0:a4:69:f8:41:9a:7e:be:
52:bf:90:34:2a:0a:b5:c5:09:d7:d8:1e:14:fb:e3:
15:bd:9a:82:c0:12:7d:69:85:f2:df:46:d6:f9:37:
24:34:16:b6:6f:f5:0d:50:da:ee:93:0b:03:a9:fc:
1b:ad:5f:d8:2c:b7:5f:1a:ca:f6:6e:46:e9:24:aa:
93:a0:9c:7e:f9:03:2c:85:fb:12:ec:55:ad:45:57:
ff:db:bf:20:30:ef:27:b7:8d:cb:6f:12:95:85:08:
f4:8d:b3:d9:5f:ad:86:9d:03:63:e2:c0:46:87:0b:
0e:ac:44:2c:75:b2:61:3b:b8:3f:35:81:b0:e8:3d:
c6:5c:e3:33:97:0f:87:0d:3e:89:4c:18:aa:f7:83:
1f:70:ba:a4:67:05:4a:f2:8b:f6:11:4e:82:aa:b7:
8e:9e:88:98:18:77:2a:06:2b:f2:12:9f:68:4e:f7:
4b:74:7d:77:83:9d:40:7f:2a:cd:51:3e:6b:ff:5a:
f6:4f:c6:8b:05:2d:7c:5e:14:cc:be:84:1d:04:4b:
a0:b1:2c:ae:64:2b:82:cb:e1:03:65:e2:c1:97:43:
ed:2e:95:d6:8c:97:c9:57:8e:16:0e:ac:cc:12:00:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E6:1F:F2:98:75:F0:DC:F3:B5:49:44:5C:3D:98:6C:F2:11:32:A8
X509v3 Authority Key Identifier:
keyid:39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:f0:17:7f:fe:aa:9e:ea:b7:83:8f:f7:b6:a9:70:76:da:f5:
ea:24:72:d6:48:34:20:86:ac:2d:3c:ac:c8:54:c7:2d:8f:e8:
cd:5f:35:55:ea:e4:25:6a:57:0e:95:e7:5e:d7:39:04:61:71:
71:ef:a0:02:5f:af:2b:8c:43:c5:d1:ef:3f:e9:48:6d:b2:6c:
a3:b9:97:85:7a:32:af:16:06:d2:05:48:57:fa:0c:3c:be:44:
27:e0:ee:71:91:ed:b5:39:cc:7c:f2:a4:b6:de:03:3e:9c:82:
ef:2c:ab:80:85:51:3b:35:7e:e7:60:32:fc:ab:7e:ce:1e:8e:
ba:de:01:fc:1b:4d:34:69:bb:92:bd:b3:8c:dc:5e:09:df:85:
1f:97:11:e4:92:24:9d:5b:36:85:30:92:f1:5b:de:9c:c6:04:
d8:15:2c:26:7a:71:05:30:1b:21:f9:ac:cb:c2:55:ef:64:9b:
8c:86:47:44:79:af:91:8c:02:e3:88:1f:c9:3c:bf:65:6d:18:
f2:5f:85:f3:ae:0e:2f:ac:28:43:75:63:13:1e:47:a0:03:22:
44:f7:c9:8b:c4:1e:78:ab:64:8e:4e:f5:85:3f:23:8b:ca:c5:
8b:96:76:db:2e:9b:11:dc:f9:c9:ca:49:a6:e3:0f:b9:41:70:
f2:83:43:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:58:30 2026 by rpki-client