Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
File: OSG38e7pDZnilCGKk4dTweotwmc.mft (raw, json)
Hash identifier: rTi2iYLXsRcwBsb+pqpq3+djYsZ6wRRxrLRepKeY6hQ=
Subject key identifier: D2:C1:62:5D:E0:37:A9:A8:A5:99:A8:43:95:A7:69:79:BC:BE:F7:B8
Authority key identifier: 39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
Certificate issuer: /CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Certificate serial: 019E32CF4AC00C11EE4565A5CF031AAC672E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
Manifest number: 18A0
Signing time: Sat 16 May 2026 22:01:46 +0000
Manifest this update: Sat 16 May 2026 22:01:46 +0000
Manifest next update: Sun 17 May 2026 22:01:46 +0000
Files and hashes: 1: 68yVcmurp-TUH6bcEYJFrYBYlHA.roa (hash: GhcpVTrzvKoo7+y/CR4zZ8nvtr04ppIcAONYUpBet9U=)
2: OSG38e7pDZnilCGKk4dTweotwmc.crl (hash: 4co7g4FHM0Puu1NquzI4MfjLlkSmIpctDb4vxs0+oyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:cf:4a:c0:0c:11:ee:45:65:a5:cf:03:1a:ac:67:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Validity
Not Before: May 16 22:01:46 2026 GMT
Not After : May 17 22:01:46 2026 GMT
Subject: CN=d2c1625de037a9a8a599a84395a76979bcbef7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2f:cc:23:90:a9:a5:8d:a6:56:96:1c:2f:9f:
5f:6f:17:dc:80:74:2b:4e:42:b0:92:7b:1c:61:97:
ce:2f:51:ce:a3:24:8b:23:2c:5f:8d:b9:2c:62:6d:
74:ae:c5:04:b0:3d:49:07:9c:fd:44:57:de:6f:d8:
bf:c5:54:a1:71:8b:59:40:6a:d7:e7:57:ae:f5:72:
bd:a4:c1:d1:a7:98:1d:01:53:01:37:2a:cd:76:cc:
79:05:cc:79:b7:72:8e:cf:0b:01:37:0f:6a:e6:b1:
14:07:1a:45:1c:14:32:0f:0a:9f:cc:20:11:cd:d1:
87:e5:aa:9b:e6:dc:12:83:1f:06:bf:a6:d7:17:7d:
49:a8:b3:d2:53:a3:7d:b7:eb:34:4b:e3:9d:e6:11:
66:40:4e:85:b5:af:fb:2c:71:94:3a:bd:fc:96:b3:
28:2d:85:49:33:12:30:7f:9e:c5:b5:02:0a:56:83:
09:47:9e:81:d7:4b:80:d0:ef:17:ce:ff:cd:65:b7:
56:0e:d3:9c:4b:38:ca:2c:fa:11:32:61:10:a0:48:
72:8d:bd:62:00:16:23:83:0e:2e:07:e5:9e:d2:7d:
b1:5f:a4:f2:21:de:85:ca:33:b0:4f:d1:c0:ea:cb:
7a:e5:70:b4:58:92:7b:c2:a8:db:29:f1:04:09:76:
2a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C1:62:5D:E0:37:A9:A8:A5:99:A8:43:95:A7:69:79:BC:BE:F7:B8
X509v3 Authority Key Identifier:
keyid:39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b7:50:05:75:8c:31:ae:e2:48:9e:4a:8f:25:34:01:e5:23:
bd:bb:9c:f4:07:7b:cd:7d:e7:1f:1c:c4:92:17:47:c2:50:a8:
ce:1c:a1:ba:f0:b7:48:9b:d1:c1:e7:93:a5:a5:ec:50:20:e1:
8b:5c:91:a7:3c:c2:52:b1:c5:a8:1c:9b:27:e0:cb:3c:6d:f8:
ae:ac:b7:00:45:51:6f:9b:80:81:96:85:5d:63:68:f2:72:65:
d3:68:02:41:50:49:76:10:e6:d4:17:f3:ad:18:e0:73:c2:f3:
d4:6d:16:f0:70:95:18:a8:d6:df:7f:be:2e:af:51:d0:19:b8:
91:e3:d9:0e:c8:99:d7:32:72:35:b4:ed:34:5a:24:b2:4a:56:
6e:ef:a2:fc:18:bf:9a:25:be:77:bd:fd:6a:04:76:7d:e5:16:
ed:ed:86:d5:ba:83:00:df:90:d3:53:15:04:d4:e8:a5:75:97:
5b:9e:b1:ed:88:fa:2e:7f:9e:a9:3d:7c:95:99:7b:64:fe:be:
80:2a:e3:c1:b4:65:70:4f:a0:b6:36:59:c7:4f:43:97:8f:bd:
8a:7e:ab:b7:ef:2e:07:5c:82:76:ba:26:57:9e:57:79:0a:0f:
be:ee:0c:00:78:b4:b2:de:04:37:d8:0f:44:b1:2d:af:bb:1b:
3c:d6:d4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 01:07:11 2026 by rpki-client