Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: LlumwysPm4NGES7E6+bG+YbOZiQBjr/bGqfushw8ayY=
Subject key identifier: 97:05:41:D5:10:56:4C:99:32:55:C5:2C:B5:0E:B1:DB:AA:62:29:5F
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019D9BBEA665C64F68626A895B4968514331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 18CD
Signing time: Fri 17 Apr 2026 14:00:56 +0000
Manifest this update: Fri 17 Apr 2026 14:00:56 +0000
Manifest next update: Sat 18 Apr 2026 14:00:56 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: KAzx36DNimAxF0m3BtuWeqO3S39byxV+dijNm0IaYjI=)
2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:a6:65:c6:4f:68:62:6a:89:5b:49:68:51:43:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Apr 17 14:00:56 2026 GMT
Not After : Apr 18 14:00:56 2026 GMT
Subject: CN=970541d510564c993255c52cb50eb1dbaa62295f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:b0:d6:7e:2e:7b:46:35:b7:19:e0:d1:50:
67:bb:05:ec:75:09:f2:3a:b0:f9:66:82:df:d8:99:
76:e9:39:3e:2d:ba:ad:2e:40:bc:a5:ef:d0:69:cf:
60:78:82:86:dd:00:03:f4:8e:27:37:e3:bf:d3:26:
c3:69:0e:ce:c9:80:df:c4:f0:b2:7e:8d:b5:c8:11:
3a:a3:5b:65:75:b0:73:d7:ea:de:75:03:c6:cb:45:
2c:09:3a:2b:97:56:02:e8:ab:df:7a:d5:fa:f1:3f:
74:2a:d3:b1:a7:25:7e:15:20:7f:0f:e6:23:68:30:
38:0d:c0:45:c2:b7:e0:ec:4f:b2:31:1a:cc:fa:92:
f9:b0:77:ef:09:5f:53:48:52:98:2b:45:a5:7d:94:
ec:f5:28:96:00:fa:b2:8d:78:50:c7:32:d2:df:20:
55:0a:68:7e:7b:82:dd:d4:ec:b2:b6:4e:fd:7a:c3:
71:d2:69:23:d6:f2:08:5f:c5:54:e5:3c:ec:10:5c:
ec:e5:0b:b6:e5:fb:11:b9:1d:87:15:2a:2c:8f:40:
c2:1d:d0:31:07:8f:fa:a7:79:23:c0:c1:b0:56:28:
44:9b:e9:9d:d7:5c:37:34:08:41:b8:fb:8d:96:2d:
44:5c:30:43:a3:bf:f6:06:56:29:26:58:af:94:78:
b3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:05:41:D5:10:56:4C:99:32:55:C5:2C:B5:0E:B1:DB:AA:62:29:5F
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:20:e1:5e:aa:af:02:5b:80:0c:e5:d6:3f:bd:d3:dc:ba:e3:
cd:f6:0c:23:a7:c0:41:a5:0b:a1:7c:43:91:63:94:bd:2e:b0:
88:a1:ad:31:76:26:57:60:00:0f:1b:32:3d:2c:ab:82:a2:6a:
8e:04:bf:3f:c9:3a:54:b3:db:7a:e4:f0:35:2d:41:7d:e8:69:
5c:f9:fb:70:8f:f4:7b:ea:10:8b:80:8c:2a:2a:77:cd:ab:0e:
a4:9a:74:d0:e5:79:4e:23:bf:2a:fb:37:09:05:51:ca:c8:9e:
2a:09:21:44:14:e4:2c:9e:b3:b9:be:10:ce:8c:8d:57:af:1a:
f8:fd:c6:0e:0f:d5:f8:9e:3e:e6:a5:2b:ec:63:b9:e0:20:14:
f5:95:ca:df:c5:53:4e:29:48:ee:63:30:76:e0:d8:b9:52:b9:
c8:36:be:a8:19:98:7c:30:8b:61:94:d9:86:ca:1a:c4:e1:60:
4b:53:05:e4:b6:ff:5f:31:3c:8a:8b:6b:6f:57:b2:b7:5a:a9:
b4:a9:ca:9f:96:66:5d:8b:6e:88:d7:e7:0d:be:ea:97:cc:ac:
54:30:7b:24:93:5e:7b:95:2f:23:c4:87:81:ea:f3:7a:73:5c:
c9:c5:26:8a:dc:fb:39:74:ae:ca:e9:04:8c:55:f1:81:4e:93:
ba:26:95:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:54:13 2026 by rpki-client