Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: aHG0qsUdPr7hxP47oZcWTjuyBbM2HBzpP5Lw+pPzO6U=
Subject key identifier: 9B:64:5F:C8:EF:A0:08:56:A5:C0:7D:B1:A9:42:E7:EE:99:76:84:CD
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 019D9B873E8E3EABE31CD21F16022DA52FE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 13:00:24 +0000
Manifest this update: Fri 17 Apr 2026 13:00:24 +0000
Manifest next update: Sat 18 Apr 2026 13:00:24 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: DXKmsSe6YThN+eJvQfxw1q1qGO4SV+VyFQggbU81Ke0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:3e:8e:3e:ab:e3:1c:d2:1f:16:02:2d:a5:2f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Apr 17 13:00:24 2026 GMT
Not After : Apr 18 13:00:24 2026 GMT
Subject: CN=9b645fc8efa00856a5c07db1a942e7ee997684cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:40:2d:b3:02:b9:82:0b:93:d0:71:43:4f:2f:
d1:7b:b5:28:05:a6:b6:31:3f:24:b8:5b:af:ba:5a:
d8:c6:ba:bd:9f:e3:19:a0:e2:1e:d5:c0:65:ae:e4:
69:d4:e0:a0:a1:f3:ed:05:12:74:65:03:4f:b3:51:
4b:63:e3:c4:1d:c4:87:17:5a:db:df:c9:49:fe:e9:
e2:9d:d1:26:8c:c4:58:93:25:8a:08:41:cf:42:ed:
f8:55:05:62:c3:11:75:bb:e4:b9:5c:0c:76:bb:c5:
44:5a:4f:67:b3:29:bb:cf:83:54:94:f7:2c:21:af:
90:33:20:a6:21:c6:77:c0:87:f2:72:10:38:dd:32:
11:60:9a:a7:5f:e0:1e:6e:52:ee:d5:63:72:67:4c:
49:b9:eb:ea:05:06:3f:56:c6:9d:a6:13:20:60:17:
0f:31:06:d4:65:e5:45:a8:19:bb:57:27:b2:ef:29:
17:62:31:6d:c8:64:c5:e6:27:85:90:73:9b:12:0a:
a8:1e:49:eb:6a:43:13:cf:f1:53:fd:68:16:cb:9a:
82:f4:7f:b1:7c:23:43:6c:bf:1b:b1:0a:50:9f:15:
39:fc:d5:6f:5e:48:14:6f:4d:a5:de:99:76:84:c2:
2c:dd:c9:54:77:a6:85:73:ca:77:e7:2d:a3:c9:8f:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:64:5F:C8:EF:A0:08:56:A5:C0:7D:B1:A9:42:E7:EE:99:76:84:CD
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:aa:cf:a7:c7:ca:d0:47:25:dc:bc:5a:4c:de:43:a6:55:bb:
5e:88:9e:ca:8a:28:51:3c:46:e8:6d:33:0c:c4:b6:07:5b:87:
63:ba:11:c0:a0:45:32:f6:f3:52:c7:fe:94:92:d0:46:99:bb:
4a:11:6b:24:ad:61:33:9d:e5:46:5b:e3:eb:be:2b:87:f0:ff:
40:b9:1a:83:1a:cb:b6:a0:3e:ac:68:52:d5:6b:06:30:22:c4:
14:5b:18:52:94:b4:41:ee:65:6d:61:0c:75:69:4b:f6:b1:5e:
d8:62:75:a8:c7:07:c6:4a:5c:61:4a:ac:89:83:d3:42:01:c7:
08:7a:ed:18:d3:10:e4:39:63:3c:29:1f:67:1d:d2:a0:08:31:
b7:08:48:2d:1c:c0:61:3a:72:cf:6d:6f:1e:da:7f:2f:48:be:
8d:03:fd:f3:51:0f:4d:d4:2e:49:48:3b:2b:eb:52:2b:19:36:
ed:52:18:17:19:4e:64:99:89:bb:8e:6d:53:1e:97:ae:16:1a:
b3:f2:f4:99:b9:17:08:68:88:ae:54:5d:63:32:5d:88:cf:93:
37:e6:30:98:03:3d:d0:6b:b2:8c:33:48:9b:9d:81:d8:18:fd:
eb:fa:be:e4:b8:5d:9d:39:5d:cf:08:27:59:d6:eb:76:c0:e8:
cd:a3:91:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:40:44 2026 by rpki-client