Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
File: oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft (raw, json)
Hash identifier: SsktwljuhzWVYYihki0bHswcfsYQ+ncVHBLEVAjfCDU=
Subject key identifier: 1D:3D:26:D0:8F:61:F9:5F:9A:13:EE:28:6B:2C:5E:BC:B6:9A:00:CD
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 019D98866D3E63AABE128A93EA63B9D2B802
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
Manifest number: 18C1
Signing time: Thu 16 Apr 2026 23:00:39 +0000
Manifest this update: Thu 16 Apr 2026 23:00:39 +0000
Manifest next update: Fri 17 Apr 2026 23:00:39 +0000
Files and hashes: 1: 4G9wBnQj2bLIhwU-J0N7Nhw1T6o.roa (hash: Ss9C5TAkahNNPv2NrvJMx+wEmDF2hJNXCum/fvM8j7Q=)
2: Vl6FMo5wU6v03xk_-33ZrOY3oKg.roa (hash: kIWRHZYG1x8ZuZJSnfYu/2Gl4pYaKJvwzf9u/k0+4/Y=)
3: eT2IWPcNjqqYvSRa6WeHp3LmJtA.roa (hash: fIsFP2V7Kpl6K2IEcKVfzsXOwzj5Bhe8+tMHJi7fIAI=)
4: fDPuMYjL7iwuQzRHQw3ok372mfU.roa (hash: zWt5a5APl7Cb8l+lYNIvqdjQJV2PNl8C2Gw5qS4KES8=)
5: oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl (hash: HTrvf4Ab5+8ojYsaoJebo6iw1uSYRkz87ie5AB9gnn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:6d:3e:63:aa:be:12:8a:93:ea:63:b9:d2:b8:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Apr 16 23:00:39 2026 GMT
Not After : Apr 17 23:00:39 2026 GMT
Subject: CN=1d3d26d08f61f95f9a13ee286b2c5ebcb69a00cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ee:69:3e:39:23:06:65:7a:40:10:d2:38:18:
59:a0:4e:ff:ea:90:7e:9b:d3:60:22:5e:f7:e6:f9:
5e:9f:1d:82:58:e1:70:d6:a8:ee:60:8b:c5:7f:df:
33:9f:9e:93:f5:ef:8d:a6:f3:8e:43:f4:f7:2d:bc:
07:1e:d3:39:af:16:9f:4f:9d:a7:e2:81:f1:0d:b9:
00:cd:99:7c:5f:92:fc:d8:75:27:73:d0:f5:6a:ae:
dc:8d:c5:30:fe:fd:5d:94:30:3a:a6:fc:b4:3a:52:
65:30:ae:67:cc:5a:c5:13:67:3c:9a:90:c6:93:3e:
a8:ae:2d:76:b7:62:e4:56:34:9e:bb:89:9f:83:d3:
07:b3:5e:1c:ef:19:5e:32:06:c9:97:74:2c:df:0d:
63:b4:18:53:5a:0b:fd:9d:0a:86:89:18:9e:30:d6:
56:c2:a0:13:98:86:dd:2b:61:1c:03:4f:e0:b4:1c:
2f:6a:b6:26:5e:9e:32:b7:b8:d3:a6:a3:e5:3b:96:
57:ba:e8:ee:de:53:55:9a:a0:38:1c:d7:0d:15:17:
97:38:0b:51:e4:41:e5:6d:2c:2d:cd:e5:3a:25:0a:
b7:8a:94:d6:df:31:24:4b:a1:03:c9:3f:8d:c0:66:
ce:bb:26:2a:9b:76:00:c9:c1:f8:2c:55:d8:cf:91:
89:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3D:26:D0:8F:61:F9:5F:9A:13:EE:28:6B:2C:5E:BC:B6:9A:00:CD
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:bc:dc:c0:bd:67:12:6f:47:8e:a2:f2:d9:87:69:c2:40:85:
d1:61:62:88:92:11:22:a3:be:e9:80:f7:8a:b0:df:2e:b4:0f:
06:2e:d7:5a:a9:0a:17:a8:8a:f1:b8:3b:8f:a7:c6:61:5b:ef:
3d:e8:d6:32:11:ab:99:74:45:9d:39:41:9a:24:a8:af:72:8b:
17:e9:1a:e9:ad:5e:f9:34:a5:9b:15:ba:ff:ce:5e:83:0a:fe:
3d:2c:2f:18:05:1d:02:8f:62:44:89:48:2b:80:05:28:ef:54:
9d:71:46:9b:3e:82:94:98:6b:1e:b6:d1:31:f1:a6:e4:5f:a8:
77:0c:ef:3e:fa:24:70:9e:92:16:9f:4b:12:e4:ac:1f:65:bf:
06:f7:2c:83:40:35:cc:52:e5:78:d5:f7:33:51:3c:6e:c0:a2:
40:59:e3:6f:e7:d2:3b:e7:f2:86:cf:d2:62:b5:0f:fc:be:0f:
d0:49:4d:79:21:dd:30:89:77:34:5d:aa:80:90:e2:55:b8:01:
ee:13:83:e0:06:38:f6:a5:d6:78:24:d9:1c:b5:7e:f0:7a:4e:
93:cb:3c:78:1d:03:d9:3f:ea:16:9f:3d:ef:04:8c:00:bc:89:
57:06:76:12:ef:31:c5:2b:3e:ef:ec:dd:d6:48:f4:fd:25:ac:
21:d5:e3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:20:19 2026 by rpki-client