Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
File: OPnFTxkZPgZUgWP4lcOka5-L-7U.mft (raw, json)
Hash identifier: Tqb5V8bKJTaOFDSem1i7iQ3CghdQwqmfNC8YzcbaBbE=
Subject key identifier: 7D:30:B4:59:DE:17:DE:35:07:90:00:12:C0:99:9E:C0:38:FE:16:3E
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 019D3A1C2C50851C6B1724DCDBD2E2E32BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 15:00:18 +0000
Manifest this update: Sun 29 Mar 2026 15:00:18 +0000
Manifest next update: Mon 30 Mar 2026 15:00:18 +0000
Files and hashes: 1: 42Rcnwutm1ywNZ_X0-W_swhKEEM.roa (hash: bi2ZbfhoxgNISP+fs+ffnhhXz6L36QQJYtK0dcQ3mCA=)
2: JnhXW-TDSlbtLU5yFnzY9cnU22U.roa (hash: aevLJ6Ysjd3/L9aPfY8G2yJYnOWM+TqoO6EPF30teKI=)
3: Js4E3rnoh4mQIPNOStdJD87IpLY.roa (hash: LdzJXP4bxTlrjQggVcdC0NIs9C0F1hOoFzJirHnHG24=)
4: OPnFTxkZPgZUgWP4lcOka5-L-7U.crl (hash: yPItBMslGipvjd6Z1MuMZV50u3mtJnzmxiXDPK1QPy4=)
5: TkwlaSAb-t_A_q6mMAipvEs0zSk.roa (hash: TpY0AjBJFQQt2MYHF/hCiOfKQkRoDC5zt7ciJI8H/SA=)
6: VX01x5qLEBJVUEQLizxf8saIq-w.roa (hash: LmJXGkg2jRoBx2SiSwnwALTU4Vgo3eK0WFHdZY6wGyA=)
7: fw0YP162WW2RmauK0r76hCJq7FI.asa (hash: gBQWVbDzHTXqbw6Lz9qGJDwJuoShYEIdho/K7qMK5b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:2c:50:85:1c:6b:17:24:dc:db:d2:e2:e3:2b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Mar 29 15:00:18 2026 GMT
Not After : Mar 30 15:00:18 2026 GMT
Subject: CN=7d30b459de17de3507900012c0999ec038fe163e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:91:00:d8:4f:0d:5e:c7:3d:95:7d:3b:4c:5f:
50:93:53:98:7b:30:98:2f:4b:b5:d2:b8:99:40:e7:
33:c4:ae:55:3f:21:c5:63:dd:36:00:46:ef:73:39:
c0:73:f9:2d:e8:ac:92:cc:95:31:77:a5:83:44:05:
64:da:2c:ca:b1:cf:f7:bb:60:cc:7a:c0:ef:6b:a4:
9f:74:ef:40:34:36:5e:45:5c:73:59:a6:37:04:6e:
c8:27:25:cf:05:4d:5e:64:b2:31:a0:1a:3b:a8:09:
09:18:b1:0e:06:35:ff:65:82:9a:8b:b1:2e:76:99:
15:58:e6:6d:9f:96:a1:f4:35:cb:9b:51:7a:dd:48:
0b:c9:9a:89:7d:d4:ac:36:7c:02:44:14:dd:3b:64:
bd:6c:26:27:ad:4a:30:e1:c9:fc:08:68:8d:e2:fc:
a4:99:a3:2e:28:94:10:41:14:92:28:19:5d:f3:27:
81:a7:fc:ab:f4:3d:4b:d9:7f:f2:00:39:4a:98:54:
e1:43:0a:4c:61:0a:cd:91:c4:bc:f2:5d:06:86:0f:
18:13:fc:34:60:e0:0f:1c:3c:81:8b:76:ef:d4:53:
2f:2f:ad:13:72:25:ff:17:cb:0c:a4:a7:5c:fb:da:
95:1b:7e:5c:01:78:7b:95:2a:63:62:96:19:16:fb:
c6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:30:B4:59:DE:17:DE:35:07:90:00:12:C0:99:9E:C0:38:FE:16:3E
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:27:04:11:d2:9f:8f:7f:7f:db:3a:ec:08:88:00:5d:75:9c:
48:3a:69:ca:76:4e:0a:93:9c:96:86:36:2f:c1:4b:6e:9e:0d:
60:a7:5d:57:27:8b:2d:42:e6:66:3b:b7:93:cd:0d:4a:fb:8e:
2f:e1:e8:0c:52:d5:3f:34:0a:5b:d8:5f:ea:82:cd:38:e2:c0:
21:8c:fa:a9:34:bd:90:f1:df:b8:bc:f7:36:38:51:e7:84:b2:
b8:d8:16:c9:b6:32:be:9f:5b:85:b3:74:be:02:83:0d:aa:94:
9b:f6:b1:4e:2e:3e:ef:e5:6e:71:2d:59:1a:ea:5a:f3:c1:2e:
a5:9c:e7:58:81:4d:ac:ad:20:c8:df:75:eb:5f:39:b9:43:05:
9c:2e:93:18:f8:88:cb:7a:55:30:41:39:5a:82:d1:71:1d:44:
2f:38:15:0e:9c:11:66:e2:31:8b:af:f9:ef:b6:90:57:15:14:
08:a1:d4:c9:c8:3d:de:b3:f6:d7:c5:fb:62:d4:9f:77:0c:96:
7e:8b:88:29:14:9a:71:3b:f3:9a:3e:04:92:2d:28:cd:32:6e:
98:62:55:b8:3d:68:48:89:18:4c:b2:3b:c7:8f:bd:a1:80:42:
b7:da:88:22:21:ea:36:6b:aa:3a:20:8b:dd:ed:63:e4:db:b9:
c1:4a:90:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:01 2026 by rpki-client