Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: jCmmtIXqK9DG/HLcS8Yb3ue86FtdiLYVSihO0gcEjsE=
Subject key identifier: F0:38:62:A3:BE:25:6E:D6:42:64:68:86:3C:1E:74:8E:14:72:61:FD
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019D9D75FED74B4861059550BF2C977C1C0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 18B5
Signing time: Fri 17 Apr 2026 22:00:48 +0000
Manifest this update: Fri 17 Apr 2026 22:00:48 +0000
Manifest next update: Sat 18 Apr 2026 22:00:48 +0000
Files and hashes: 1: 58FQk9XlWFWt_nTgS_BZ-o3ufG8.roa (hash: HV8V9oTjMmtSDQrOPyii7uMO61tXElSbpadVB9OFkKU=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: ZS99ZQUXkoDshx0kZkS/ov77ADy8wi5PS7fgqVWRJ6Q=)
3: alsVPKZrpQmUXj0uEcZT1N8yiVg.roa (hash: 09uKm4BmAwWDMsqvYSjsTw7MlQ2Dn7dIn/6Gf+Scpew=)
4: ts8WeGjGg3wwHGhPi2mxnwkcFTw.roa (hash: xg5lwYc2/XUF5liNH+ui3OtMGbwyGCJPDg20ByKgo34=)
5: zGS1iGBGVdelcYyC8IZVLuo4YF8.roa (hash: xNhCCvgxABfH6yRt+p+v0793m+1n0z/VA8lzriBuOf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:75:fe:d7:4b:48:61:05:95:50:bf:2c:97:7c:1c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Apr 17 22:00:48 2026 GMT
Not After : Apr 18 22:00:48 2026 GMT
Subject: CN=f03862a3be256ed6426468863c1e748e147261fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:b4:c5:9f:9a:9a:7b:db:5a:d6:fb:d5:eb:
92:79:15:e3:b1:1e:85:69:8c:de:62:e7:e8:1b:f3:
28:a5:9d:da:80:7b:35:f4:d9:f3:d7:6b:59:16:09:
79:13:1e:5c:a0:88:34:80:4d:d1:3a:70:97:8b:8d:
6e:cf:6f:bc:78:8a:ab:c5:3b:da:1f:d2:d9:ef:80:
42:35:86:94:e5:c6:36:4d:34:cb:01:c0:84:e9:92:
6e:2c:58:a1:29:1e:22:e7:ac:b0:32:4f:95:f7:0b:
62:93:e6:26:e7:2e:77:d7:d5:da:32:95:4a:ca:c0:
c6:2a:ca:c6:73:28:e5:19:f1:31:9e:08:f3:03:da:
67:1c:94:cd:42:7c:5b:ca:74:00:5d:a3:24:07:79:
e5:65:82:06:3a:62:2f:97:ef:57:02:59:c0:b5:13:
f1:8a:10:98:dd:a9:b4:74:6a:ae:7f:70:d3:55:6b:
0e:97:db:87:ff:13:9d:ab:eb:b9:2a:df:cb:c6:2e:
f7:2e:21:d1:7b:bc:9f:59:1e:62:60:d7:e3:09:78:
4d:c4:ac:d9:c6:8b:74:7e:6c:3a:c0:2a:ed:ca:84:
9e:aa:60:cd:1a:b5:1d:7a:f7:3e:e9:51:ea:b5:60:
01:00:14:21:9f:5f:ea:52:d6:af:80:c6:ae:92:52:
1c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:38:62:A3:BE:25:6E:D6:42:64:68:86:3C:1E:74:8E:14:72:61:FD
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a2:2d:7d:f7:d7:04:ff:f3:93:c3:30:f5:ba:c6:5c:d1:b5:
f3:58:d7:08:b1:ac:ea:f0:52:d8:8f:5a:8f:84:53:9e:b2:52:
3c:f8:3b:2e:dd:e0:a2:1e:39:9d:9d:fd:11:7e:ce:1f:0e:d0:
84:85:81:cd:54:2b:08:05:c7:3e:d6:f5:0a:fe:a8:30:ac:d2:
4d:af:6d:b3:ee:0d:a4:00:1c:dc:a6:10:c8:3c:e1:4e:5c:f5:
5c:02:df:bc:2c:ac:dc:fa:84:05:0f:68:1a:43:7c:00:49:0a:
3d:4c:b0:60:a0:1c:34:80:41:76:a5:8f:19:5a:6a:72:71:4f:
f8:3f:44:8c:c3:e2:36:2f:c9:af:e1:82:83:85:f5:e4:de:e0:
d6:cc:85:db:83:ee:62:26:45:79:64:69:4e:cb:a3:8b:0e:6e:
ed:af:a9:58:1f:e7:71:ab:d4:ff:97:08:78:ec:d4:77:3d:c7:
03:17:9b:f9:21:48:d5:91:6d:ad:25:3c:d9:d3:b6:24:2b:65:
b0:23:0f:20:34:2a:9f:c7:59:fd:c1:3e:c0:93:9b:51:84:d7:
85:08:58:db:8b:5f:cc:8e:a6:11:48:76:68:e2:48:7c:9d:62:
30:8c:40:4c:a2:2f:b5:c9:13:9e:c9:4d:cc:bb:d4:a6:db:c1:
f3:5a:8f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:44:16 2026 by rpki-client