Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: aMo6L7RfXPhGhYT/XnoC95RLujqlR5AR2H9bds7r1tc=
Subject key identifier: FB:44:52:7E:33:B4:4D:1A:A2:AC:1A:E4:4D:88:49:24:4F:1E:4A:F7
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019CAFEC937BDAC5A9FBDAF252E79D0FF498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 183A
Signing time: Mon 02 Mar 2026 19:00:42 +0000
Manifest this update: Mon 02 Mar 2026 19:00:42 +0000
Manifest next update: Tue 03 Mar 2026 19:00:42 +0000
Files and hashes: 1: 58FQk9XlWFWt_nTgS_BZ-o3ufG8.roa (hash: HV8V9oTjMmtSDQrOPyii7uMO61tXElSbpadVB9OFkKU=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: o8kSWUh+tWzPtcEiqY46JmAHU87vnWjVxSTVU+pZypE=)
3: alsVPKZrpQmUXj0uEcZT1N8yiVg.roa (hash: 09uKm4BmAwWDMsqvYSjsTw7MlQ2Dn7dIn/6Gf+Scpew=)
4: ts8WeGjGg3wwHGhPi2mxnwkcFTw.roa (hash: xg5lwYc2/XUF5liNH+ui3OtMGbwyGCJPDg20ByKgo34=)
5: zGS1iGBGVdelcYyC8IZVLuo4YF8.roa (hash: xNhCCvgxABfH6yRt+p+v0793m+1n0z/VA8lzriBuOf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:ec:93:7b:da:c5:a9:fb:da:f2:52:e7:9d:0f:f4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Mar 2 19:00:42 2026 GMT
Not After : Mar 3 19:00:42 2026 GMT
Subject: CN=fb44527e33b44d1aa2ac1ae44d8849244f1e4af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:66:2a:f5:cc:d7:f1:87:20:f5:79:c7:60:
9d:ff:5e:b6:16:6e:43:ee:78:5a:20:b3:40:13:8e:
f7:f6:6e:76:b9:6b:2c:bf:b2:03:48:6a:f9:15:1e:
5a:38:9e:d3:61:d9:6c:a5:48:37:a5:df:0b:73:db:
ba:e1:c3:2e:87:57:48:ae:26:ce:19:b2:d7:f6:e4:
55:43:60:f3:bb:1a:33:31:8f:8a:a2:7c:f8:ba:6b:
b5:5a:80:d8:76:d4:d6:26:9e:38:a0:3f:af:e6:61:
4d:d4:13:9a:e9:cb:61:b8:12:cf:f5:e6:c5:72:7e:
85:ba:ec:70:94:62:6e:f9:b5:a0:d9:40:e1:f8:3a:
6d:00:1f:5d:c0:b0:6f:5a:bf:14:45:e3:ef:ee:9c:
58:df:f3:90:38:9f:90:dc:ae:0a:17:cd:2b:3b:2b:
89:0d:d7:51:af:07:38:4c:04:fe:0c:44:a6:ce:20:
2f:14:b7:50:3c:dc:7e:dc:a4:92:d1:f3:d1:c1:4a:
38:9a:21:1e:4c:eb:8a:ae:99:a0:ad:5a:23:c8:6a:
c7:aa:17:43:aa:80:6e:02:95:1d:d6:6c:f3:78:53:
34:89:8f:b3:6d:2a:07:e5:8c:bb:6a:ad:fb:29:1f:
8d:c4:f3:8e:4d:84:78:4a:37:b7:20:11:1d:9a:c7:
13:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:44:52:7E:33:B4:4D:1A:A2:AC:1A:E4:4D:88:49:24:4F:1E:4A:F7
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7d:21:ed:58:a2:b1:5a:90:4f:83:c2:9d:19:bf:2a:b0:98:
b9:42:57:dc:f5:ef:16:66:d5:06:be:92:bd:82:9c:b5:a7:09:
95:54:5f:d3:c2:8c:09:11:c4:3c:c8:b8:f8:0a:96:34:91:37:
48:8e:49:3d:91:d0:61:c3:ee:16:21:49:d7:28:6b:8a:18:fd:
24:9b:9c:06:94:83:97:22:8b:cd:da:22:de:64:66:26:2e:0f:
b6:41:b6:ea:8c:d1:52:bc:d7:ff:35:42:b2:7b:b4:6c:09:f0:
c9:8e:96:63:c6:7d:fd:be:40:cc:b4:4e:a8:0c:65:60:45:5d:
a4:1d:d3:6d:ee:04:8c:af:fe:54:c6:e5:8c:57:e2:ad:c5:b9:
fd:dc:45:40:2d:1e:51:ec:4e:5c:d3:0b:1e:70:86:d2:62:bc:
de:25:6f:12:9d:6b:c0:35:99:1e:9f:29:7c:01:cc:97:25:ab:
0d:98:e1:2b:b6:37:6b:bd:75:6e:25:96:b4:e5:88:2f:48:50:
8c:f4:fb:3d:70:06:d1:8f:6b:3b:29:14:8c:71:6f:ab:a0:80:
bc:7d:1b:9a:2f:b6:ee:3a:79:0c:a5:0c:c3:00:7f:b0:30:52:
03:00:31:fe:a2:85:63:2d:91:33:de:38:89:43:ed:76:fc:02:
4a:12:68:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:08:01 2026 by rpki-client