Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
File: OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft (raw, json)
Hash identifier: tyVukx+rmj9kavTH/HqoEr3XkooiBw1GcOq68g+y+ys=
Subject key identifier: 6C:C0:39:79:E1:57:D7:25:28:F2:05:95:47:C6:E1:8E:8D:94:D2:12
Authority key identifier: 38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
Certificate issuer: /CN=38f23798b67393e4039e3f9555e214d6737c1351
Certificate serial: 019D98BDCD509A8E264218659479C7853DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 00:01:08 +0000
Manifest this update: Fri 17 Apr 2026 00:01:08 +0000
Manifest next update: Sat 18 Apr 2026 00:01:08 +0000
Files and hashes: 1: LnaW5765Yz17Jsu6jhp4pcS4phE.roa (hash: IQeYGnlewk42LV1orLSIQiV+CC/nS8IwBcXiQsT3VkU=)
2: OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl (hash: oSNstGJ3axfB2P1rVTUpeISVoPwac77LCKT2rq/buq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:cd:50:9a:8e:26:42:18:65:94:79:c7:85:3d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f23798b67393e4039e3f9555e214d6737c1351
Validity
Not Before: Apr 17 00:01:08 2026 GMT
Not After : Apr 18 00:01:08 2026 GMT
Subject: CN=6cc03979e157d72528f2059547c6e18e8d94d212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7f:e7:fe:5c:fc:d7:7d:36:cc:99:1b:ba:5e:
a1:ea:a3:0c:ad:20:ca:59:eb:df:f8:30:13:dc:9d:
14:e0:d8:04:67:0b:65:18:38:20:0c:92:df:e9:2b:
cb:f1:be:2f:da:c2:15:56:cf:26:a8:dc:ea:e1:aa:
fe:ca:d8:10:a0:d9:64:d7:76:ff:54:e6:81:35:10:
0e:77:a3:8f:c6:5f:1d:21:6c:7d:3b:0d:73:41:b6:
05:13:f6:83:36:6b:cd:45:19:16:f4:60:0b:e8:6c:
6a:eb:6c:07:2e:b0:04:5b:83:52:6a:d6:7a:5d:df:
ee:1e:cb:23:8c:c5:88:41:b1:e9:82:4d:2a:8c:f2:
1e:3c:db:99:cc:28:8b:f3:8b:e6:59:23:31:6d:2c:
e2:ca:62:10:37:e1:50:e8:83:d3:c8:1c:b1:86:f3:
05:3b:4c:fe:5d:ae:86:f7:47:e9:b7:83:22:bc:6c:
05:c8:3a:03:bf:34:b8:53:e4:61:b2:ce:c7:01:ee:
59:3a:5c:fe:e4:a5:61:98:e4:d2:07:3b:77:e2:7f:
74:e2:93:61:1c:7b:0a:22:e6:e1:b0:b0:7a:ea:94:
35:bb:98:51:56:3e:b2:21:52:6b:39:1f:da:6c:ea:
ba:ac:0b:a4:0c:8f:af:44:f4:a2:5a:d7:8c:9d:67:
98:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C0:39:79:E1:57:D7:25:28:F2:05:95:47:C6:E1:8E:8D:94:D2:12
X509v3 Authority Key Identifier:
keyid:38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:9b:66:9c:ed:6a:bc:69:b1:36:02:eb:d4:c7:95:0d:fd:d6:
6a:8e:c2:bb:d8:7b:ba:12:f1:6e:e7:24:13:3e:33:79:2f:98:
39:38:46:e5:72:2b:54:fb:50:8a:d5:a1:c2:c3:8a:8f:07:36:
d5:e1:c6:6f:bf:92:48:70:0b:c9:b5:a2:3e:71:54:a1:f1:23:
2d:59:6d:af:0b:50:5e:bf:de:d2:f5:35:3e:42:22:95:b9:c0:
30:1b:7c:ae:8d:2c:1e:88:8a:92:39:71:be:00:a4:5b:bf:95:
69:05:b2:21:3a:01:4c:fc:81:ba:14:61:26:26:59:5f:ab:e3:
1f:ac:4f:98:86:f4:96:39:9c:d9:ea:c0:31:45:7e:b7:b5:5b:
7b:ad:68:92:a7:82:ff:b1:32:58:d8:86:ec:cc:b6:0e:0e:d3:
3e:a0:b8:7d:e5:4d:0f:f9:78:8a:9d:01:ed:0d:b3:f2:40:e8:
7d:71:c4:81:40:35:b3:51:ba:3c:8b:5f:db:fa:20:1e:3f:d5:
be:d3:0e:a5:ba:7e:26:b6:e3:bf:3e:42:d6:18:73:19:35:1d:
09:fa:b9:d4:79:02:e7:95:cc:6c:70:28:91:23:41:8b:3a:02:
57:ae:05:b7:53:95:d1:00:98:19:e0:97:31:80:22:d4:c0:85:
a2:a9:5d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:55:52 2026 by rpki-client