Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: 7opnsDmkhmeGqO9cZ7kVom/8zrs+UiMO6U7taEgdFLw=
Subject key identifier: 2B:EB:1F:46:75:57:8B:8D:5E:C3:41:4E:C3:76:F5:10:41:CC:78:90
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 019DCCAACBB03544313ECEB2DE5E09A3ED1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 0626
Signing time: Mon 27 Apr 2026 02:00:38 +0000
Manifest this update: Mon 27 Apr 2026 02:00:38 +0000
Manifest next update: Tue 28 Apr 2026 02:00:38 +0000
Files and hashes: 1: 26PCuULcHS-vm3v3fQgA6-1DVmQ.roa (hash: tTyj68LqKHap/YbHLtgQzuaQZ2ESKiv4xe4q4toZyQQ=)
2: X7aPlR-pZo6rLSSiJT7Oe8Uyo-s.roa (hash: f8OEucDIP6cYs0bjMa0ASBn6fJHEhpbyHwyN5ykv6sY=)
3: cJErKp3l7YOeG09N0R0TYAEpUGg.roa (hash: 7gKjqS1rnbh2fqNlL6j2VX106p+ru9PHs/6B+IxwUi4=)
4: kdtriYs5EMHzMm8GxGhb8NfrmqQ.roa (hash: lBWS6NaSe2F942bAeRrCfj/gV/8TvjoRWKgChfD/esI=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: clnoRu1l7EblmO9hcQMf5dG2Qq3wXt/ueQHZkwyrsfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:aa:cb:b0:35:44:31:3e:ce:b2:de:5e:09:a3:ed:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Apr 27 02:00:38 2026 GMT
Not After : Apr 28 02:00:38 2026 GMT
Subject: CN=2beb1f4675578b8d5ec3414ec376f51041cc7890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:8f:7c:f5:d5:7d:fc:0d:6d:1c:7a:fd:5d:
6b:01:73:da:18:d1:21:63:d6:56:f0:f3:9b:6a:c9:
5e:32:00:b8:a7:42:3b:75:63:7c:f4:fc:5a:a7:12:
64:59:8a:d4:7b:43:b8:65:63:9b:b1:d8:f5:76:6c:
f4:2b:b3:b2:6b:4f:23:8d:21:c3:67:24:ce:69:5a:
3d:08:dc:b5:23:9a:41:e0:b4:95:69:c9:14:fb:70:
f7:b7:61:78:68:a8:2d:84:0b:44:0f:bb:fd:5b:a6:
01:55:8c:b7:b1:c7:d5:7f:c1:9c:ba:f6:1b:d9:d2:
19:f6:e7:d8:f3:9c:21:79:c3:a5:88:db:59:bd:c3:
77:93:7a:f4:30:dc:ed:a1:35:b9:4a:52:c3:a1:2a:
3c:fd:2b:e0:86:ff:50:be:73:d7:a5:79:76:bd:c5:
ee:f2:22:cc:ae:31:93:0a:0c:2a:88:32:8f:49:64:
ad:1b:a3:fc:c4:6e:50:f6:4f:3f:7c:56:12:bf:74:
f6:20:08:f7:c3:94:a5:12:6e:86:e4:31:31:9b:f8:
aa:88:0f:7d:0d:f6:35:97:db:f9:ae:98:c4:7e:51:
e2:35:2e:2f:d9:3b:bc:e5:28:77:9f:eb:87:07:11:
5c:94:6c:a1:23:14:de:02:4a:9e:27:60:b5:ae:af:
ed:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EB:1F:46:75:57:8B:8D:5E:C3:41:4E:C3:76:F5:10:41:CC:78:90
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:71:0e:35:04:a0:6a:9c:f5:3a:ed:93:93:3d:85:09:91:45:
c4:87:d1:95:2c:26:a5:50:f7:47:dd:15:5e:84:80:16:d8:f2:
c6:ca:40:7d:9c:08:3b:e1:f8:3a:a6:5c:0d:90:0f:1b:f3:6b:
b2:de:82:39:6b:be:1e:61:ba:b0:26:c8:c3:a6:d0:24:d2:b8:
8a:3b:96:5f:05:47:9c:0a:1f:99:e8:d5:43:7a:7c:db:9c:f6:
2d:4c:32:e5:03:86:a4:7e:a1:f3:0e:81:7c:f6:98:03:74:f0:
af:21:7b:e1:55:12:0f:a3:01:c8:5a:25:55:ab:fc:8d:08:cc:
7e:21:e2:8f:35:3f:fc:89:71:24:31:9c:b7:c4:cf:8c:4c:b9:
4c:08:a6:c6:df:cc:12:68:4f:b4:d1:bc:dd:e1:c4:4c:24:d0:
c8:c4:d2:25:22:5e:fc:4b:65:52:ad:26:53:1f:d8:1b:a4:ce:
4d:9a:01:82:83:a3:14:ec:b0:9a:aa:74:60:d6:a3:b7:83:ef:
b1:e0:97:a5:ae:e9:45:3e:c2:e1:d1:30:91:01:6b:49:16:ca:
fe:0e:97:01:68:62:90:d6:00:af:a5:58:87:27:3c:fa:b5:48:
5e:56:1d:1b:20:79:17:96:3d:d6:dc:83:a2:4f:e6:fd:50:bf:
7e:ea:0b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:16:16 2026 by rpki-client