Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
File: OFBtgKtZLee-CjMbv0-gBo1BQIo.mft (raw, json)
Hash identifier: W3l8lCjQEk5Ohxzl6Pe5U6xm3ZiSCyU03L9+04DSpzE=
Subject key identifier: 55:62:8C:87:C7:8C:19:9F:C0:82:32:04:C5:1F:6E:31:2F:DA:CC:3E
Authority key identifier: 38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
Certificate issuer: /CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Certificate serial: 019D9B87F15E9511716F8D587EF75952D626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
Manifest number: 17B7
Signing time: Fri 17 Apr 2026 13:01:10 +0000
Manifest this update: Fri 17 Apr 2026 13:01:10 +0000
Manifest next update: Sat 18 Apr 2026 13:01:10 +0000
Files and hashes: 1: 1-XFYwPQnihAKGAhaHmX_YgLq5hk.roa (hash: ovbwKoLcXw/nyUFXJNVtanDEZc8QQ/BY+2ucYpAs6QU=)
2: OFBtgKtZLee-CjMbv0-gBo1BQIo.crl (hash: gNaiSHl44LMRrNzpRRafe8XeEnbEPo6o2Tp9rtY+sHw=)
3: g3oitvyEV7LvQtXRePU4IoICFKI.roa (hash: wn/JQSFqf1OF8h85r+kWbdnYTIEYaxosW7IMZNrl36A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:f1:5e:95:11:71:6f:8d:58:7e:f7:59:52:d6:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Validity
Not Before: Apr 17 13:01:10 2026 GMT
Not After : Apr 18 13:01:10 2026 GMT
Subject: CN=55628c87c78c199fc0823204c51f6e312fdacc3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:06:10:f7:0a:71:22:5b:eb:d8:41:09:bc:fc:
09:6b:0a:25:87:ed:0b:5e:0d:74:d0:59:3e:b9:59:
d5:b4:69:bb:60:39:23:49:5d:42:2f:27:10:64:23:
9a:bf:b6:ad:ef:07:58:93:12:47:69:c1:83:dd:73:
64:45:c2:35:eb:a2:da:11:fc:1e:83:65:71:e2:41:
89:79:45:ce:f7:d8:4d:e4:0a:09:3b:ea:14:bf:78:
29:b6:87:40:ad:4b:a8:7e:9a:49:8b:b1:e6:8f:77:
a5:02:eb:90:84:de:a0:a4:ab:f0:da:35:cc:dd:5d:
e8:03:3a:ae:78:9c:71:7b:03:55:53:11:fc:b8:cb:
72:68:40:28:89:74:b0:e6:3e:e0:7e:08:ff:68:9a:
15:db:dd:89:13:fd:38:e6:8f:cb:5e:04:17:16:84:
ae:62:57:0a:ab:10:90:d1:1b:cc:4a:8f:0b:57:b2:
69:e7:10:ee:7e:f4:a7:15:6b:15:5b:b4:7b:c9:c4:
43:56:00:e1:a7:57:ae:1a:61:a8:ee:e5:b8:ea:e0:
4a:b8:2d:f1:31:ba:be:03:d3:2b:51:a6:f0:4e:a6:
b9:47:57:dc:ee:52:f1:04:4e:74:0c:d2:3e:c0:64:
db:0c:8d:9d:99:9b:9e:29:e6:cc:b2:0c:7e:da:c2:
d2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:62:8C:87:C7:8C:19:9F:C0:82:32:04:C5:1F:6E:31:2F:DA:CC:3E
X509v3 Authority Key Identifier:
keyid:38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f2:04:f3:e3:1a:65:f0:9c:5c:4a:32:20:98:e4:41:95:c0:
5b:09:c2:c1:31:7d:b9:33:e7:53:f9:43:f1:7b:36:6b:c9:c7:
6a:4f:d1:c8:a3:0c:7a:e2:52:3c:bb:61:60:0e:ba:43:13:b7:
5c:93:62:a4:26:e3:95:7c:f7:63:28:84:25:6a:72:99:b6:c1:
26:ab:0c:86:bb:04:8c:8a:f1:21:a3:c5:58:13:5e:ef:35:95:
ec:c8:91:ca:75:25:85:88:fb:7a:9a:2d:1c:54:db:b6:62:c9:
0b:69:4c:80:20:1e:69:56:af:d3:a8:c0:43:f9:e4:b4:d8:a2:
ea:b3:c6:ba:3a:d2:9e:82:e9:7e:41:56:24:a6:dc:4a:0c:3b:
b9:2d:33:60:03:8d:d0:f1:13:8a:2a:97:34:af:03:02:a5:7b:
ad:b3:c9:45:0e:e0:0b:3f:b9:e8:dc:f3:c9:ca:c2:66:f4:51:
13:fd:d8:c0:cd:3d:e4:be:68:bc:b2:30:55:4a:e3:0f:65:bc:
94:92:e3:76:2a:82:4b:f8:b5:da:c6:ba:ef:fa:2b:66:44:83:
b4:78:23:95:9d:94:45:22:05:fc:25:52:b9:33:f6:6e:ca:d9:
95:9a:5c:d3:d3:77:04:91:0d:59:75:6b:56:81:af:3d:27:be:
d5:f1:45:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:07:38 2026 by rpki-client