Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: rASRkK9HVGPVjX2p4HT9yfgwUenZLRn69QTLcRjTU5g=
Subject key identifier: F9:64:CB:D8:E7:4B:10:D4:16:5F:01:FA:82:DD:DE:90:18:0F:55:AF
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 019D382EA7545F4CE7CECE57EDAF4ECD346D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 06:01:14 +0000
Manifest this update: Sun 29 Mar 2026 06:01:14 +0000
Manifest next update: Mon 30 Mar 2026 06:01:14 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: RAmCpz3VLim6kfp5q4YOKwfDUI0dQcn29ERXpCzjXtU=)
2: X9Plsh78iLxMym05erYr23A5nAM.roa (hash: JnUoidyO7+02A7tvFvdT39dCgzkQhJHPQPcV1/E2iHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:a7:54:5f:4c:e7:ce:ce:57:ed:af:4e:cd:34:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Mar 29 06:01:14 2026 GMT
Not After : Mar 30 06:01:14 2026 GMT
Subject: CN=f964cbd8e74b10d4165f01fa82ddde90180f55af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:5a:af:8b:0b:66:77:d9:f6:6f:7e:6b:e1:e1:
5f:fa:c5:e5:b8:af:4e:3b:1b:05:d5:51:d0:1c:bc:
f3:0f:c3:07:6e:fd:a6:3b:ce:05:0d:25:4e:17:30:
6e:eb:fb:4d:99:70:40:f1:51:97:09:59:94:7a:59:
60:6f:cf:9e:56:61:55:7d:0c:1b:c8:39:38:1e:c5:
e8:f7:b4:74:ba:0f:47:af:25:ac:e3:a5:c6:df:68:
4d:13:8a:e6:80:04:44:e5:c8:6e:54:3c:42:39:ba:
59:cf:5c:21:a4:5c:f4:3b:d6:2e:8c:5a:f9:c0:24:
cd:42:83:fb:03:2f:d7:39:fc:a0:12:0d:63:e2:ab:
3e:e9:a9:ea:86:4a:2c:06:8c:3c:ce:b0:10:88:90:
a2:01:c2:a0:93:e4:31:27:5b:2a:4b:86:1c:12:ab:
84:40:75:da:13:d7:2b:63:e2:f4:dc:58:8e:26:f7:
d7:94:70:d6:53:fa:eb:42:8c:41:b6:a4:13:3e:13:
c7:d9:91:c6:58:e4:de:47:fb:e8:06:04:45:4f:ea:
db:75:2f:af:eb:90:bd:91:dc:dc:8a:d1:1d:48:c2:
4a:c3:ff:fc:30:20:ea:1c:b8:5c:72:e1:da:26:83:
b2:fa:65:a1:72:69:86:fa:bd:fc:c3:db:b2:55:c2:
0f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:64:CB:D8:E7:4B:10:D4:16:5F:01:FA:82:DD:DE:90:18:0F:55:AF
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:d8:51:0f:b8:b7:d3:23:9d:dd:dc:9f:dc:8e:04:3a:d1:18:
67:fc:89:c4:08:f7:7d:8a:36:b7:86:e8:95:16:db:79:0f:57:
b8:45:8b:39:22:8b:24:cf:2f:dc:22:0e:f2:04:01:f5:79:a3:
7b:84:de:5d:cf:b4:df:f6:92:0f:7c:a2:04:d4:1b:b9:c6:1d:
ad:a9:ba:9e:e5:78:3f:b2:37:c0:7e:85:89:ab:d6:4c:3d:4b:
d0:ff:a7:c7:56:f6:ee:a7:3e:e9:2b:cb:05:a9:28:6e:b8:a9:
8d:c3:4f:6a:bf:fd:17:59:32:15:80:e5:c6:8d:ac:d1:e9:9c:
ce:f5:b8:2f:39:af:3f:b0:d3:27:ad:91:2b:93:8e:e6:37:61:
97:8d:53:ca:78:48:83:a8:8a:8c:d3:ce:4b:68:5d:f5:61:ad:
ad:e7:4c:ea:a6:2e:6a:65:ce:0c:8e:8a:09:0c:25:fe:47:e8:
bb:17:49:4f:88:9b:72:8a:b5:02:8d:2f:8e:b2:12:d6:c4:2e:
09:c8:c8:fc:ad:90:4a:48:63:3f:0b:01:78:bb:70:d8:04:ac:
b8:0b:79:39:41:d3:97:22:34:1e:42:4c:3f:78:b9:0f:30:68:
51:d1:ab:5c:b5:d3:2f:35:99:03:6c:81:75:05:71:2a:f9:9f:
40:b3:39:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:25:08 2026 by rpki-client