Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
File: OQW37By46JWiW9SsZ7wxZmFdi2I.mft (raw, json)
Hash identifier: fIXVuEUVLUVK7jdxmG960JEYeWVhLQ1hGoaiC0YYtIM=
Subject key identifier: D6:33:C1:ED:0B:96:0F:2C:FD:18:0E:10:E6:57:EC:AE:3D:DD:C7:8F
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 019DA3E5EF943D713A637F0885AE735F2FCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
Manifest number: 09AB
Signing time: Sun 19 Apr 2026 04:00:48 +0000
Manifest this update: Sun 19 Apr 2026 04:00:48 +0000
Manifest next update: Mon 20 Apr 2026 04:00:48 +0000
Files and hashes: 1: OQW37By46JWiW9SsZ7wxZmFdi2I.crl (hash: IvhlV+IQ8gpgxbvA5WNRkQw0IUOmKOCbqAhTKC1G1mM=)
2: Z4v6ZlvI7omARbhcez6_NDTJQb8.roa (hash: UHj01S+GeMVO8OMw4/2M24W4FzNlf+cf+5/o/Mm/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e5:ef:94:3d:71:3a:63:7f:08:85:ae:73:5f:2f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Apr 19 04:00:48 2026 GMT
Not After : Apr 20 04:00:48 2026 GMT
Subject: CN=d633c1ed0b960f2cfd180e10e657ecae3dddc78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d1:05:ad:b2:d7:37:da:b3:a6:3d:92:bc:61:
19:f2:84:ff:0a:8f:09:b2:13:4f:7b:29:0b:d2:78:
79:24:77:54:7b:28:e1:b7:32:4c:35:ac:97:4b:81:
5e:59:9c:4d:f0:f3:81:10:be:68:1c:e8:58:89:96:
6f:b4:57:80:3a:28:c6:6d:f8:07:e4:bc:af:7e:7a:
5d:6c:e6:e3:be:61:d8:3e:aa:43:77:37:74:70:1a:
dc:5c:a8:aa:78:ad:e8:ba:33:a3:e9:d4:e9:1b:8c:
dc:af:88:4a:b7:48:8b:55:7f:73:24:da:ea:3f:92:
97:8a:66:84:da:21:fc:88:a0:29:7e:ac:94:95:a0:
57:e7:d1:b3:99:6b:ac:5b:ba:60:48:e0:d6:e4:ec:
44:e6:cc:6c:f3:be:ab:e8:03:ec:df:83:b4:f3:57:
90:09:67:d8:71:cd:6b:b7:c2:e1:6a:dc:96:3b:8c:
22:54:57:8b:74:04:10:3b:2e:2e:47:c3:18:0e:11:
be:38:88:b3:79:c0:4e:ac:fb:02:07:dd:dc:eb:50:
f7:38:2b:c5:fe:bd:e6:a1:ce:46:ac:3a:0a:b3:f0:
bc:23:e6:f8:2c:62:72:14:49:51:5f:85:13:a3:4e:
c1:05:d6:2f:61:0b:26:16:86:1d:7b:3f:2c:9f:f6:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:33:C1:ED:0B:96:0F:2C:FD:18:0E:10:E6:57:EC:AE:3D:DD:C7:8F
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:8d:f1:da:33:51:51:77:45:46:68:9c:29:6f:29:49:da:8d:
40:00:d4:ac:b1:0c:89:ad:19:b3:b1:f8:9d:1e:94:84:92:3b:
27:ee:99:c0:4c:a1:66:c1:4c:2a:70:ef:86:95:b1:00:9d:c9:
5e:94:64:b5:cd:74:b1:93:84:ac:29:bc:ec:35:2a:d7:bb:a6:
42:5f:76:74:98:99:0f:f0:07:4d:9f:64:36:d3:77:9f:70:da:
b0:f1:e6:a6:d7:0c:a3:df:fb:11:1f:a9:4f:a8:26:89:57:1f:
8c:ca:d3:98:2e:4c:fd:49:68:5f:23:66:a7:19:9f:13:ca:24:
7a:d6:31:ce:6d:a3:3f:5c:34:77:90:f7:0e:32:1f:78:8c:05:
54:5d:be:0e:0a:be:ad:ec:6c:6d:ca:b6:ee:27:e8:63:d0:4a:
d4:ef:83:28:fa:b6:8f:d6:58:56:12:18:a2:4f:60:b0:bb:d2:
a1:ff:2a:a6:2d:b6:20:4e:d9:67:54:29:36:d7:f7:6a:5e:30:
46:74:b9:47:0c:ec:ba:30:e1:d6:66:3a:d5:7c:14:90:c0:20:
6e:ff:6c:8d:b0:68:4d:14:a7:67:6e:a6:70:60:62:15:34:10:
5b:8e:1b:42:55:1f:ff:ce:43:61:18:a6:d8:d3:57:6e:93:1d:
fb:7e:d7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:29:02 2026 by rpki-client