Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: cf4Zve4PZ3OK1shpn4ZA46gVkIdYfFuKHSXYEBkqdIY=
Subject key identifier: 24:E9:78:9C:B6:D3:B8:99:11:3D:BB:B0:1E:EE:D7:29:13:40:1E:4B
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019CAC46C90D1E04A7058836499E4541586C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1851
Signing time: Mon 02 Mar 2026 02:00:45 +0000
Manifest this update: Mon 02 Mar 2026 02:00:45 +0000
Manifest next update: Tue 03 Mar 2026 02:00:45 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: zON4jflTQKNwTsv6X4VhvK6X14BO0ojoAHw4LM7Bcvc=)
2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:c9:0d:1e:04:a7:05:88:36:49:9e:45:41:58:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Mar 2 02:00:45 2026 GMT
Not After : Mar 3 02:00:45 2026 GMT
Subject: CN=24e9789cb6d3b899113dbbb01eeed72913401e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4f:8f:c0:2e:01:ae:c2:9b:21:4b:03:09:28:
25:cd:b5:52:99:5d:03:67:e2:8e:00:f0:bd:eb:37:
24:8c:36:3d:61:55:2f:a5:0a:d4:42:3f:5e:44:15:
88:33:8d:72:d5:2e:4a:59:c3:13:e3:47:44:76:d4:
61:25:bc:fd:8b:16:8e:bc:59:f6:e1:97:51:2c:a3:
ee:46:fc:ee:51:97:6e:93:d7:43:9a:16:71:e9:b6:
30:c4:59:84:8d:76:66:38:8e:2a:be:91:f3:c1:8e:
2e:dd:69:a9:b5:76:0e:bb:2b:16:1d:6a:d8:1c:93:
e3:70:1b:d1:3f:43:5e:fa:e6:45:6d:77:a5:9c:5f:
1c:bd:f3:21:14:d3:9b:1a:65:15:ae:3f:c2:52:a3:
9c:cd:4c:ba:c8:1b:3f:7b:69:58:9d:c4:56:9c:0a:
96:50:8c:29:57:8a:0e:62:d0:45:c0:40:1b:6b:e1:
ab:a8:9e:f0:cb:a3:de:e5:36:0c:b6:3c:f5:1f:47:
02:75:b4:2c:c3:5c:1a:28:a3:bc:1d:28:d6:84:43:
ce:57:f2:8a:5b:9b:e5:39:e1:46:09:e6:3a:63:b9:
d1:ab:4c:e4:5a:a3:3a:af:36:55:ce:6e:86:88:ca:
fd:b8:92:07:0f:22:3b:c9:d3:29:a7:c0:14:7d:8d:
d5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E9:78:9C:B6:D3:B8:99:11:3D:BB:B0:1E:EE:D7:29:13:40:1E:4B
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:d2:e9:65:3a:01:d1:10:7f:96:67:53:84:dd:c7:c0:cc:b3:
6d:c4:28:39:2b:1d:6b:f5:f0:c2:dc:a4:e0:f4:b3:76:c6:02:
2f:14:fa:67:56:7e:9c:34:1b:20:30:bc:78:2f:20:bc:8b:b3:
fb:6c:1b:bc:e8:b0:d9:bf:c2:77:17:1c:db:af:3d:4c:26:3f:
4f:fd:de:da:17:1b:18:de:8f:ef:86:42:a5:d3:d3:5a:6f:bb:
b4:25:76:31:4b:8d:3e:04:4a:96:7b:da:14:cd:0d:80:b9:0f:
06:38:91:93:09:19:f8:30:a8:2d:a9:a2:66:dc:42:11:e7:a5:
92:a9:f5:ce:09:17:4d:99:81:ef:ec:d2:78:9d:18:4b:16:5f:
65:da:fc:77:e4:68:4f:dc:24:54:6f:cb:df:92:e0:c6:fd:00:
62:73:61:3f:4e:12:1f:27:86:79:b5:ec:40:8e:d0:df:3d:c1:
f4:df:ea:fb:d4:98:70:1d:5e:f8:13:95:b2:75:3e:d7:96:e1:
25:f4:d3:cb:58:39:e8:44:7f:23:cc:de:b0:bc:bd:6a:23:d4:
bd:9f:0f:32:7f:98:11:fc:0c:5d:42:a5:6b:a9:f3:0e:fe:69:
9c:d9:bb:39:74:c2:aa:d3:25:92:0c:7d:bb:d0:2e:31:b7:24:
12:c7:fc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:33:37 2026 by rpki-client