Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json)
Hash identifier: jiKRLKv8ZhclzTQ6hogcFxb8SR7oOevt0YEsqaeq0kM=
Subject key identifier: 66:42:69:23:66:FF:3E:4F:DC:A2:58:E4:27:BD:47:0C:86:BB:54:F1
Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Certificate serial: 019D9AE32B9D26426F6223E7428EB7B94132
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 10:01:11 +0000
Manifest this update: Fri 17 Apr 2026 10:01:11 +0000
Manifest next update: Sat 18 Apr 2026 10:01:11 +0000
Files and hashes: 1: Ih9S_kZcCOhq2N4y574bLA_RZG4.roa (hash: BK3QLHH47u/5bpJq4bbQNM29Xb79UfdHFqSx0wPQ9rw=)
2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: rFQNAGsdxidaEk2MdIjyyhgp0HZTpd/yiaH5To+K9/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:2b:9d:26:42:6f:62:23:e7:42:8e:b7:b9:41:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Validity
Not Before: Apr 17 10:01:11 2026 GMT
Not After : Apr 18 10:01:11 2026 GMT
Subject: CN=6642692366ff3e4fdca258e427bd470c86bb54f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:08:14:b2:d8:4f:7f:f3:0c:47:68:57:79:
38:99:a6:71:0a:99:91:a4:c9:49:2c:e4:22:0e:80:
30:c8:2d:91:55:30:2a:b9:3c:e3:89:34:57:33:b9:
1e:5b:d5:c7:01:33:00:0c:b9:ab:6c:70:84:bc:a3:
94:0f:a9:61:75:49:c3:50:5e:9c:94:9e:0d:4b:e5:
2d:e0:de:c8:7f:fa:3a:99:ea:0c:03:69:80:8d:d6:
34:6f:dd:95:4f:a6:54:9b:a5:24:f2:09:ba:5f:56:
8c:91:d2:1c:e2:bd:f6:38:38:3a:ca:2f:8f:af:35:
ca:52:0b:28:ef:ab:a5:80:18:bd:7b:7d:03:5e:ff:
a3:88:f7:59:f6:69:1d:15:98:37:49:5e:c9:cf:29:
2e:bf:37:99:2e:0f:90:c0:ba:2a:31:8d:92:a5:9b:
10:27:57:09:be:a7:e0:9f:ba:1f:da:78:67:a7:34:
f9:78:15:6c:9b:e7:8d:63:c6:8c:0b:17:bb:67:42:
3f:0e:7c:72:b2:c9:86:bc:a8:c1:37:f4:28:33:f7:
2c:9b:69:f1:c0:4c:19:c2:e0:23:77:1f:d9:aa:b5:
55:0e:73:60:d9:53:a0:19:e8:bf:4e:b5:eb:5e:ee:
7f:3f:f5:c8:03:7b:4e:e2:a2:64:03:cb:b9:5e:a3:
bf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:42:69:23:66:FF:3E:4F:DC:A2:58:E4:27:BD:47:0C:86:BB:54:F1
X509v3 Authority Key Identifier:
keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:37:be:bc:e7:b5:cb:05:4b:ac:26:57:c0:0b:44:e0:af:bd:
fa:40:f1:70:04:07:f4:b8:aa:27:2c:da:5e:1c:2a:e7:cf:eb:
3c:40:45:5b:76:d1:27:00:cf:c5:cd:f4:7d:d3:ac:70:23:86:
5c:e9:f0:51:29:5a:2e:0f:70:0b:f3:26:e8:8e:0c:d3:35:ad:
90:0d:1b:14:a3:df:7d:ee:ae:44:e6:fb:46:6d:4e:41:cd:f8:
be:2c:bb:a9:d4:49:e1:95:3c:a5:65:66:67:73:4d:c2:b0:aa:
78:e7:bb:de:87:5e:33:1c:f7:2c:2b:7d:1b:7c:a6:3b:0b:69:
0c:4b:cb:d1:7c:ec:93:37:08:b8:cb:61:0d:4f:7d:bb:31:ed:
8b:79:99:21:f7:43:d0:d4:8f:51:e6:d6:26:94:e8:08:4e:79:
af:0c:0e:3e:f0:24:f6:1d:a4:56:bd:55:cd:c6:51:78:9d:3a:
9f:b0:4e:af:1c:fb:af:9c:f3:c4:57:e7:05:bb:59:d0:db:13:
6f:9a:fa:e4:24:18:7d:86:d2:07:72:48:5d:b9:ba:02:61:f9:
14:d9:36:90:90:ab:59:c3:13:d9:c2:10:a1:01:bd:31:fc:f6:
52:e1:b3:04:30:b1:ea:2a:fc:6b:d9:82:1a:63:a4:b1:aa:70:
85:0f:4e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:01:48 2026 by rpki-client