Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: WvExN6+g8ypl9Xke+x9At/C7VlOLqZxOXvojwzbaamQ=
Subject key identifier: AE:E3:3E:6D:0B:23:16:3B:6C:77:B0:29:40:50:38:DA:12:0D:DD:C8
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 019E2B8342504B020D95E54A0AD480F6B7F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 190A
Signing time: Fri 15 May 2026 12:01:22 +0000
Manifest this update: Fri 15 May 2026 12:01:22 +0000
Manifest next update: Sat 16 May 2026 12:01:22 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: G5CvOhWMoQq2JhaJ9rviGd30tFrU1yKNaj/QxuPaGH8=)
2: X9Plsh78iLxMym05erYr23A5nAM.roa (hash: JnUoidyO7+02A7tvFvdT39dCgzkQhJHPQPcV1/E2iHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:83:42:50:4b:02:0d:95:e5:4a:0a:d4:80:f6:b7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: May 15 12:01:22 2026 GMT
Not After : May 16 12:01:22 2026 GMT
Subject: CN=aee33e6d0b23163b6c77b029405038da120dddc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:42:a0:6f:d9:34:36:36:ad:ef:42:42:3e:b0:
d3:4f:18:33:06:7a:f3:be:10:e5:b8:aa:1b:ff:96:
60:1f:a4:72:20:d1:52:ec:99:18:71:ef:de:5f:a9:
d6:7a:dc:ea:7e:24:6e:31:7f:6c:35:a7:0e:c4:b4:
8d:f0:2a:05:47:4c:45:38:fa:b3:62:3d:d4:5d:fa:
8b:7d:26:85:6f:23:24:b6:c1:be:e4:bf:f6:0a:57:
33:96:73:a8:8e:13:88:ef:4f:4a:bd:46:a3:21:44:
15:e4:9c:2b:04:53:0f:64:c4:60:bf:b7:f9:6d:37:
db:e5:6b:c9:ba:ae:0b:0f:e6:cc:68:67:cc:d0:19:
4c:4d:67:61:1b:1a:73:d6:58:25:db:c3:9f:07:93:
ae:01:b4:4e:16:c7:50:24:d8:f2:42:5b:88:65:39:
e5:15:d8:d8:f7:e8:77:71:fe:c8:b8:40:35:b6:05:
85:95:84:a2:03:c8:9f:fd:8a:f9:1f:69:02:f2:90:
93:2c:87:e3:99:ef:92:38:3a:b0:77:81:81:88:a4:
a5:8a:9b:21:23:a3:72:96:19:ef:48:66:0d:f9:89:
cd:0f:fa:ac:f6:b4:3d:32:72:76:af:51:7b:91:f6:
e3:42:a1:ea:1f:7e:97:e0:8f:fd:df:c8:67:27:3f:
c9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E3:3E:6D:0B:23:16:3B:6C:77:B0:29:40:50:38:DA:12:0D:DD:C8
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:12:e2:88:70:c5:54:e5:21:26:c8:83:f4:c8:a4:70:22:a2:
ac:cb:39:c4:db:2d:cb:e2:40:af:36:cb:47:96:cc:5c:73:39:
69:4c:e9:b0:51:d1:0c:90:49:80:04:2a:61:fc:ba:c0:ef:fb:
71:10:18:e7:7d:c8:db:fb:32:a5:eb:ab:b8:a8:d8:a2:6f:38:
26:67:ba:45:03:aa:f6:59:be:c1:5b:e2:f4:ca:0c:25:a1:36:
cb:8e:85:f5:05:94:62:3c:76:ed:25:a6:1b:77:34:5d:39:fc:
25:b1:40:ce:f6:41:8c:be:31:26:4f:48:90:a2:54:ac:1c:06:
4d:52:f0:03:01:86:bf:12:ca:0f:08:c8:0c:8c:d8:8f:d7:d7:
ff:54:1f:28:32:d0:ac:2c:24:29:53:4b:84:77:8b:bc:a2:cd:
d2:81:37:28:5f:17:f6:46:0d:d3:0d:58:76:da:66:fa:c8:44:
dc:22:10:e6:95:c6:9f:e1:65:cf:b8:d4:b8:00:74:7b:ca:60:
93:f5:b5:81:48:24:6a:f5:2b:b9:d4:d2:d2:34:38:57:d7:35:
31:13:a1:9c:8f:72:5f:e5:2d:c2:07:35:a2:9d:bc:53:2b:33:
5b:3c:e7:39:26:07:33:a4:d7:e2:c6:27:92:34:74:85:4e:a0:
9b:09:99:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:31:37 2026 by rpki-client