Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: rmjPJ1Qn6QzW3ESfdrRZWIymupKhhkKHy6YxtJVQsmM=
Subject key identifier: 05:88:A3:29:7A:C1:6B:E6:A8:85:20:CD:7F:D8:D1:68:00:BE:1E:35
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019D371BE1D8057922C164EB0686B37A480B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 1880
Signing time: Sun 29 Mar 2026 01:01:07 +0000
Manifest this update: Sun 29 Mar 2026 01:01:07 +0000
Manifest next update: Mon 30 Mar 2026 01:01:07 +0000
Files and hashes: 1: 58FQk9XlWFWt_nTgS_BZ-o3ufG8.roa (hash: HV8V9oTjMmtSDQrOPyii7uMO61tXElSbpadVB9OFkKU=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: ON/WBdR3uxp6w3bFTDAg5f/mi444agMcUwMcwVNQw8E=)
3: alsVPKZrpQmUXj0uEcZT1N8yiVg.roa (hash: 09uKm4BmAwWDMsqvYSjsTw7MlQ2Dn7dIn/6Gf+Scpew=)
4: ts8WeGjGg3wwHGhPi2mxnwkcFTw.roa (hash: xg5lwYc2/XUF5liNH+ui3OtMGbwyGCJPDg20ByKgo34=)
5: zGS1iGBGVdelcYyC8IZVLuo4YF8.roa (hash: xNhCCvgxABfH6yRt+p+v0793m+1n0z/VA8lzriBuOf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:e1:d8:05:79:22:c1:64:eb:06:86:b3:7a:48:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Mar 29 01:01:07 2026 GMT
Not After : Mar 30 01:01:07 2026 GMT
Subject: CN=0588a3297ac16be6a88520cd7fd8d16800be1e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:12:44:0b:30:65:05:32:c9:92:58:05:60:
17:a4:03:35:55:ed:ad:59:45:9a:31:bc:9d:f1:f6:
b6:11:69:fe:36:4b:10:88:da:a9:4b:ff:7b:f5:4c:
9f:66:e3:b6:72:76:20:d0:77:3b:7a:8e:8c:10:cb:
38:81:15:2b:65:1d:74:b2:b9:f6:07:6a:3f:25:ac:
88:2d:31:9c:36:ef:1f:dc:1f:75:02:6c:57:8d:53:
7f:40:79:cf:66:e4:41:d7:59:48:10:8e:44:3d:ee:
71:05:de:37:40:c8:9f:dd:55:c1:bc:ef:ec:68:1e:
b6:1e:71:be:9d:0a:a6:3f:16:c3:99:47:72:e6:91:
05:1d:94:e8:52:1b:d0:99:f3:f1:e5:41:1e:ab:52:
c9:cc:04:68:cc:4f:db:00:d8:9d:fe:d1:26:af:83:
ed:52:14:00:74:49:19:c3:d7:ec:8d:6c:7d:79:ac:
5a:57:a3:ec:aa:84:2a:ad:3e:dc:30:2b:25:8a:95:
93:c7:65:5a:4b:bb:71:fb:24:29:b0:44:7f:6c:09:
95:86:b9:a4:12:70:2a:a4:76:ad:2b:3b:a6:98:de:
40:3a:de:70:c8:ad:cd:ae:9c:40:fc:23:fa:90:b8:
8b:e0:7d:87:a8:c4:9f:33:42:b8:dc:b0:dd:65:79:
20:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:88:A3:29:7A:C1:6B:E6:A8:85:20:CD:7F:D8:D1:68:00:BE:1E:35
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:38:d0:71:2f:21:e8:0b:3c:87:12:3d:72:d2:28:18:fe:6f:
cd:91:a1:61:c6:70:1f:1c:7e:77:d9:ae:8b:4e:29:be:98:29:
f5:36:c9:01:6b:90:09:23:7a:ad:e7:c3:3e:08:fa:a6:6e:e3:
4f:ee:29:35:48:96:bc:02:86:03:b2:8c:59:99:ab:06:d9:14:
70:4e:99:51:3a:4b:31:d9:7f:75:80:11:0c:b2:e2:7f:99:be:
0a:a3:e3:35:43:45:23:56:3e:19:c6:44:dd:ea:03:b2:69:f6:
c5:22:66:07:a9:ba:bb:5d:82:fc:57:20:f7:70:65:87:2e:a9:
70:82:8c:3b:97:10:aa:cc:35:3f:6c:80:c4:1d:cc:0a:b9:e4:
f4:40:ad:15:4a:1a:20:a9:f9:95:34:90:49:19:be:2b:c9:29:
75:b2:d3:73:48:cd:06:57:73:a5:d8:ea:b6:85:f9:1a:d1:18:
16:e0:6f:c3:9d:08:6f:5b:7e:ac:46:0f:7a:67:ee:31:b4:91:
b0:5c:2b:9f:c6:7f:a2:48:2d:76:4c:35:96:d5:d4:ba:c0:d9:
2e:d7:d4:40:9a:20:98:90:45:10:4e:04:bd:10:e7:78:d7:fe:
8b:ca:06:9d:bc:73:2a:c4:58:b5:11:a3:07:a9:a4:3e:16:86:
cb:87:2e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:50 2026 by rpki-client