Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft (raw, json)
Hash identifier: eQ2lchoQ0Dhoh7rtCr3elPDOC6graZ9emRhdXyQusNE=
Subject key identifier: AB:C4:89:EC:EE:DC:F0:E6:82:CC:F0:63:E8:67:C8:E6:8A:92:56:D3
Authority key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
Certificate issuer: /CN=386ab970bfb6947597e97cefb916ec76a0c56858
Certificate serial: 019D37892C79B05453AC5DAD17C6950E25C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 03:00:29 +0000
Manifest this update: Sun 29 Mar 2026 03:00:29 +0000
Manifest next update: Mon 30 Mar 2026 03:00:29 +0000
Files and hashes: 1: OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl (hash: 7xmHIck6iBDb2bANyj9zO1cPt8WF/ywuKb9F9/I7i7Y=)
2: VORDTVglX3Z4o11ha_rQMbeYDBY.roa (hash: R9axiVVKyBivLuau19G2S1ECw/WVMKwzWPLucwXXO9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:2c:79:b0:54:53:ac:5d:ad:17:c6:95:0e:25:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=386ab970bfb6947597e97cefb916ec76a0c56858
Validity
Not Before: Mar 29 03:00:29 2026 GMT
Not After : Mar 30 03:00:29 2026 GMT
Subject: CN=abc489eceedcf0e682ccf063e867c8e68a9256d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b1:18:0b:0a:26:0b:9d:c1:c8:af:bb:8f:63:
48:d5:b5:9d:8b:81:e2:35:f2:de:83:cb:ca:22:cd:
8d:06:2e:db:41:03:62:5a:fa:98:a5:84:e1:e0:0b:
37:c1:31:aa:50:dc:83:90:81:0d:39:90:54:71:c0:
7c:ed:b2:9c:a7:89:07:98:c2:4d:32:a2:62:53:de:
18:f0:ec:88:a3:e3:79:ea:83:fc:72:dc:cb:8e:e2:
03:8a:69:13:5d:36:62:d8:5e:d4:9b:d1:09:4d:7c:
79:06:da:b9:90:a0:de:92:ec:c6:38:66:df:2f:1a:
21:38:32:aa:e3:35:5d:9d:37:5d:f2:e0:69:cd:08:
65:48:4c:b5:87:76:12:e1:b9:7f:88:98:34:5c:a2:
ff:dd:16:54:06:a6:25:e5:1c:97:5c:ed:18:03:da:
d3:cf:c9:a2:76:80:d7:66:92:ac:87:2e:33:d7:e0:
f9:af:36:33:c9:cb:62:4b:0d:7d:56:75:8f:7d:b4:
ed:90:24:f9:fb:b4:66:f6:2d:fe:80:87:ff:c2:7e:
43:f4:c8:87:a0:38:82:87:20:43:22:29:3a:c9:b7:
47:20:2f:66:90:c3:7d:de:dd:4a:07:ef:10:7e:64:
98:5b:e2:e4:91:21:14:ec:00:89:c0:c9:0b:9a:2e:
0c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C4:89:EC:EE:DC:F0:E6:82:CC:F0:63:E8:67:C8:E6:8A:92:56:D3
X509v3 Authority Key Identifier:
keyid:38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:b3:42:bc:9b:0f:fb:17:4d:37:8c:e8:2c:20:dd:e8:d4:d4:
57:f3:dc:7f:3c:55:ac:92:8e:14:ab:e9:78:b0:07:e0:91:2f:
1d:d9:db:04:47:5b:00:dc:22:61:0b:2e:b6:09:7d:73:bf:16:
40:2c:6c:e3:e6:0c:39:f7:0c:d4:b6:ce:db:1d:71:ad:6d:17:
59:8e:81:bd:2c:68:c8:b1:42:66:83:8a:4a:4d:6d:9b:79:07:
f0:5e:64:de:ac:96:f3:b3:40:a3:16:12:17:4c:ec:fe:0d:38:
19:6f:d0:9b:24:fb:f0:0e:39:d4:33:d0:92:66:e4:60:4e:cb:
85:95:7d:4b:42:1d:65:0a:a9:61:67:68:6f:e7:2c:87:63:ff:
34:0a:93:76:50:14:0b:37:14:7f:17:03:ca:1c:92:9c:cc:5d:
0b:f4:f4:9e:0e:11:35:de:c1:2a:30:66:86:c6:54:c8:1f:b1:
ff:9d:68:0c:9f:83:75:84:cd:39:07:ed:4e:98:fa:29:ff:bc:
38:a6:a4:50:64:16:70:23:15:ee:ee:5d:80:06:3f:34:e7:24:
27:6c:ed:94:cd:20:fe:af:67:70:6e:be:ba:8e:7c:75:8a:e8:
43:48:5a:9b:aa:a3:73:2b:ae:b4:61:08:c3:c9:68:d5:8e:d8:
60:61:7b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:54 2026 by rpki-client