Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: 1rItry3cI6DYEAt3ZCs3WpznLYX5FWdFPaR9IxacQLI=
Subject key identifier: 8E:38:A8:ED:26:F1:08:0D:4C:7A:66:94:7F:18:04:C3:46:65:A8:E3
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019D37523156D19091B3564020FB154CDBAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1899
Signing time: Sun 29 Mar 2026 02:00:26 +0000
Manifest this update: Sun 29 Mar 2026 02:00:26 +0000
Manifest next update: Mon 30 Mar 2026 02:00:26 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: ECh8g3rmHH0K0FPVQA93PKlVWgW8r37hDPPkCHF93tI=)
2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:31:56:d1:90:91:b3:56:40:20:fb:15:4c:db:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Mar 29 02:00:26 2026 GMT
Not After : Mar 30 02:00:26 2026 GMT
Subject: CN=8e38a8ed26f1080d4c7a66947f1804c34665a8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:43:a5:7b:73:0b:b2:11:0f:88:3e:83:9a:3b:
67:be:45:a2:60:84:70:a9:bb:88:ff:b9:85:ac:f8:
cd:8f:78:41:a7:24:52:08:d7:dd:bf:a0:93:e0:4e:
c8:36:f9:fb:2f:e3:21:d8:6e:ab:d5:8c:ab:1e:61:
14:ef:d1:9e:8e:cd:24:db:f5:51:26:fa:74:bf:f7:
cc:cc:4a:28:20:b5:ee:cd:52:ba:f2:87:9f:4b:af:
a1:ce:af:4f:9c:c9:8b:77:27:d5:a7:b4:7b:c5:7c:
1a:b7:34:8f:bf:12:3b:b7:79:85:b7:21:8c:88:b5:
60:0a:11:ff:62:48:8d:9e:17:e0:ef:e1:ee:0a:49:
b1:33:39:bb:8b:fd:23:ba:a0:af:30:8d:c5:60:63:
e6:2a:f7:b3:68:28:6b:d0:e2:96:65:16:3e:68:cc:
91:51:0e:f8:7b:5f:74:5c:a6:21:66:40:1a:d8:71:
e2:b9:e7:34:45:0c:16:a1:ba:8b:b7:91:bf:1f:4d:
7e:9b:4f:88:fa:a8:47:94:9e:a0:ec:a5:8e:44:16:
01:53:fa:aa:77:9f:93:eb:80:53:82:7d:5a:7a:62:
ad:45:e7:2f:8f:2b:c5:03:b8:22:fb:cf:3a:6e:00:
06:4b:8c:d1:6b:51:9a:64:79:dd:7e:51:85:2b:13:
17:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:38:A8:ED:26:F1:08:0D:4C:7A:66:94:7F:18:04:C3:46:65:A8:E3
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:ee:20:cf:48:5a:cb:1f:14:ac:aa:e4:79:f7:8d:47:bd:4e:
ed:84:3e:f5:ea:81:79:5f:af:97:2c:1c:af:b9:88:29:5e:e2:
7c:9f:ca:f8:5c:12:ec:0c:df:c3:c4:f4:05:3d:6c:c9:49:e3:
cf:4c:09:c2:ba:1e:c7:57:72:24:ac:82:ea:8c:a0:ee:5d:49:
d5:58:9a:60:f4:58:e8:2f:93:08:3d:5c:31:05:01:1d:35:8d:
63:31:ac:51:cc:97:ec:8d:1f:32:ea:89:ec:0a:88:d3:dc:11:
e0:4b:17:df:43:30:61:ba:b9:65:8f:9a:a3:51:94:1a:75:12:
e5:55:df:90:cb:e0:65:9d:c8:2f:a5:f3:fc:f8:9d:45:02:f6:
4a:82:d7:4b:5f:d5:02:f0:22:b3:9b:10:4a:7e:13:7c:c6:ae:
68:22:fb:54:09:c1:61:10:7f:6a:4e:ea:19:04:5b:ec:dd:cd:
25:9e:a1:24:0d:10:fd:b8:17:cb:18:e7:92:3a:10:2a:bd:93:
83:09:04:20:9f:a5:c7:09:8e:57:4a:68:90:69:2a:de:e0:92:
66:2d:88:49:d9:2f:5f:67:93:5f:d5:eb:1d:bc:1f:30:6b:e9:
80:b1:77:18:cb:b9:87:ed:8a:fc:87:89:04:96:7d:9d:1c:3e:
74:e8:7a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:16 2026 by rpki-client