Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: EsTinEarHCBVkW7116aKzDi6Eg2H74fjWhQk+fwSG9w=
Subject key identifier: 50:93:63:3C:36:C8:BE:2D:AF:95:D1:31:11:FE:48:5E:63:1D:B4:69
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 019E2881BD7CC35C56EACB54C952D10E7588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 1917
Signing time: Thu 14 May 2026 22:00:51 +0000
Manifest this update: Thu 14 May 2026 22:00:51 +0000
Manifest next update: Fri 15 May 2026 22:00:51 +0000
Files and hashes: 1: 1-Kbt04jrxWC8fOlk1tBjawSZ5wg.roa (hash: 0SuBxS+MypW7tQqS+Vd164UE3Mog6uZxtvRyTqxyy2g=)
2: 8GBhK3bVlRQOFAtixnhblw9dtz0.roa (hash: Elx4FHBwVZYgkm1JIeK2z2bzVgpOiK+svowb8d+03qs=)
3: Ht-3eU-6fA21qs34Bonv8BlzKi0.roa (hash: SHmXfuv30aA74yHYHAz5YiuGYylJVJgZptDN2Z9Awds=)
4: M3vHCHT8MYq7bsVbbMiGgchbam8.roa (hash: Vt7ldpmQRkv3Kb6ff/P1S+oxu1usav3SKm+fK1JHXSY=)
5: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: zuAO4L0ze2bwtGvAOiPHfHaQ52O7DXGx0YJNHT96wrM=)
6: UWAb0Mm5ky6mNvfi8l5lub5PcCw.roa (hash: rcYFsRpcKR+N5ImKsmiN6lJZFUsiQQePgWTGn6uyHLE=)
7: ZRMiToWEQzG6WIi6m4AnOd1M7xI.roa (hash: 6fkAR/ISjaDTmwgbqQuKZzjyVceMiviNtBf9crcDMYs=)
8: gN7oLamPRPMjPSwPSMvoNLq_dFQ.asa (hash: qLlK7kYrvgqNdvLdGkjuKmzCcNXL51g9eu+D1a6NcGY=)
9: uZTTho6XgSigY6M7r_D1NX2DLSQ.roa (hash: ivw0GUSdmhcgSVLXWkL84Xd3MeIdECHj+xV2zfbtO/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:81:bd:7c:c3:5c:56:ea:cb:54:c9:52:d1:0e:75:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: May 14 22:00:51 2026 GMT
Not After : May 15 22:00:51 2026 GMT
Subject: CN=5093633c36c8be2daf95d13111fe485e631db469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bc:59:1c:b7:61:26:57:55:57:e9:ef:83:82:
d4:75:a5:f3:35:33:0a:cd:6d:03:6c:6c:de:d8:94:
cf:02:15:8a:7e:0d:6f:01:ea:76:40:93:ac:82:94:
d3:b6:fc:31:48:2e:e3:fc:e7:30:3d:99:85:d8:57:
cf:23:93:48:14:b8:b6:d6:6e:09:b6:1f:9f:db:df:
82:ac:77:ca:74:f3:6f:e8:e1:7b:c7:88:d5:6e:82:
a7:f7:ae:81:1a:cb:4d:95:b0:15:b0:10:e3:74:d5:
38:78:9f:7a:79:21:a5:38:15:19:07:4d:3e:95:60:
2a:f5:8c:de:9e:89:00:7e:ea:7d:35:7a:a6:c1:15:
e5:6e:bc:93:60:35:6a:09:c4:06:a9:d4:8c:ba:59:
76:da:cc:95:3a:33:52:74:b5:a0:f3:32:ea:1e:2f:
6c:6f:77:e7:94:ed:6e:49:02:95:54:2d:3e:06:85:
6e:fd:d7:92:5a:d8:dc:4d:c3:3e:74:e5:57:5c:74:
29:a4:52:03:cc:39:8d:0e:55:fc:57:91:89:81:1a:
cf:a2:67:23:3b:00:3f:01:e2:2f:04:82:b0:ce:c6:
20:8f:0d:ea:6e:b1:9d:ea:f0:37:d7:15:63:a3:30:
f8:77:86:33:c7:94:7a:ec:5e:38:12:3a:27:9c:c1:
cf:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:93:63:3C:36:C8:BE:2D:AF:95:D1:31:11:FE:48:5E:63:1D:B4:69
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:38:69:dc:2d:bc:a7:cb:67:f3:dd:0a:f3:35:3c:ba:d7:a7:
be:22:2e:bf:ab:f2:37:bd:d3:2d:7a:54:27:ff:67:f3:98:47:
78:54:df:dd:17:82:a3:fe:42:41:07:9f:54:59:12:62:f6:74:
05:94:33:59:37:93:17:5d:40:1b:57:91:52:92:cc:2f:73:6a:
d7:16:c0:a9:7c:09:f2:7f:e2:ca:de:4f:3a:f7:ab:96:45:b3:
2a:6b:47:49:fc:73:34:5c:dd:b9:b7:5a:2a:e5:f8:fd:05:14:
d7:3a:3f:b3:ba:11:d2:5f:02:7b:28:5b:0b:b5:9a:a7:be:b8:
44:0d:22:99:05:7c:21:36:bd:d9:0b:15:72:06:fb:d9:e5:80:
74:79:7e:e6:0d:2c:a7:5f:6f:2a:5f:0d:37:32:82:01:79:a4:
6e:c7:04:2b:60:7a:1f:02:6d:68:08:80:ee:cb:d8:0d:0a:f2:
89:99:b4:40:95:a0:3b:d2:ff:c7:c3:f2:c9:0e:4b:26:51:e6:
f7:fd:5f:9d:69:55:44:72:95:e1:9a:e8:48:1a:dd:c6:4b:65:
de:1e:51:17:88:b6:b2:b7:1e:b2:93:54:11:cd:19:a7:72:42:
d7:b8:ec:1e:be:52:46:e8:a1:28:5d:94:09:f1:0d:b3:b0:b9:
93:40:a4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:20:40 2026 by rpki-client