Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: olosK66OdSwr5bT3iYIgOg5Lxaz3yE+pc6hYilSPX/o=
Subject key identifier: C6:B6:13:DD:89:2E:37:73:F8:21:47:F4:80:36:EC:4B:DA:C2:E3:DC
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019CADFE8431462EAC3AD327C4DEC06B57DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 1839
Signing time: Mon 02 Mar 2026 10:01:04 +0000
Manifest this update: Mon 02 Mar 2026 10:01:04 +0000
Manifest next update: Tue 03 Mar 2026 10:01:04 +0000
Files and hashes: 1: 58FQk9XlWFWt_nTgS_BZ-o3ufG8.roa (hash: HV8V9oTjMmtSDQrOPyii7uMO61tXElSbpadVB9OFkKU=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: nSwJK5GggICpUuT+2JUGTjBMl+vySPRqrm8WiCyo4b0=)
3: alsVPKZrpQmUXj0uEcZT1N8yiVg.roa (hash: 09uKm4BmAwWDMsqvYSjsTw7MlQ2Dn7dIn/6Gf+Scpew=)
4: ts8WeGjGg3wwHGhPi2mxnwkcFTw.roa (hash: xg5lwYc2/XUF5liNH+ui3OtMGbwyGCJPDg20ByKgo34=)
5: zGS1iGBGVdelcYyC8IZVLuo4YF8.roa (hash: xNhCCvgxABfH6yRt+p+v0793m+1n0z/VA8lzriBuOf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:84:31:46:2e:ac:3a:d3:27:c4:de:c0:6b:57:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Mar 2 10:01:04 2026 GMT
Not After : Mar 3 10:01:04 2026 GMT
Subject: CN=c6b613dd892e3773f82147f48036ec4bdac2e3dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:86:05:56:3e:42:4f:03:9d:74:6d:1c:b0:81:
7c:73:65:b8:40:85:80:19:1f:c0:a1:4e:8f:33:de:
e9:a2:a5:73:3a:e2:20:3b:7e:50:59:1e:7a:cd:48:
e4:e9:8a:f2:29:69:3f:0c:92:73:7c:0d:e2:3a:e7:
21:be:4d:f0:50:a2:57:3d:8d:d0:4a:99:30:b4:de:
e4:18:35:08:f7:bb:85:de:9d:63:62:0e:3b:33:47:
ac:60:17:12:d6:b2:85:e6:de:da:3e:e4:b8:5f:8b:
c8:86:dd:61:d4:b4:a6:7e:08:a9:01:3e:e3:b1:8a:
11:df:60:f6:05:4a:51:8a:89:b8:e7:86:d7:2d:27:
02:bf:c3:ea:16:26:09:c2:80:34:6f:b4:c0:21:3e:
d7:ae:5a:18:ab:8b:69:23:bb:8c:5c:56:94:e2:62:
37:d3:21:91:a5:2d:7e:9b:81:ff:d2:cb:c5:41:9b:
d9:1f:02:94:4c:1a:15:e6:29:65:f3:16:e3:47:4c:
ae:80:39:73:fc:f5:e3:d7:6c:f3:56:98:4a:1d:2d:
fc:ec:b9:d6:9d:dc:ca:30:ca:c7:76:eb:24:d0:43:
44:6f:58:ff:a2:8c:8e:be:6f:02:fe:15:3c:57:66:
50:c9:87:64:0a:a9:07:27:29:1b:57:fd:cb:40:9d:
36:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B6:13:DD:89:2E:37:73:F8:21:47:F4:80:36:EC:4B:DA:C2:E3:DC
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:65:4d:f2:0c:97:6a:17:07:96:be:3c:d0:c6:a1:e1:73:0b:
8a:7c:1b:e0:30:ae:2e:a9:3f:83:df:a1:f8:7e:f6:6d:f5:61:
77:46:30:b4:e8:fa:8a:04:58:58:91:6d:ba:16:0f:b0:20:96:
e1:8d:af:00:d1:1f:17:f0:28:4b:34:2e:38:2e:02:27:cb:82:
86:75:b3:3d:84:aa:a6:6d:96:50:54:2f:6c:b7:54:65:d3:7e:
0f:92:b8:20:63:b1:89:da:49:93:02:f8:dc:66:a8:8a:f8:ea:
ed:e2:e6:0c:d4:8e:68:1a:ab:9d:e0:33:fc:69:2d:c2:bf:26:
72:fa:c7:b9:59:00:6f:2b:75:71:a2:b8:50:c8:5f:0a:2e:d1:
38:d0:fb:92:db:be:61:5a:4c:75:53:01:d2:01:e9:85:0f:50:
1c:97:69:b4:52:65:3a:a0:8c:95:7a:f1:6a:eb:dc:90:ce:5d:
3a:09:f1:19:3b:bd:eb:66:26:b5:06:cb:1d:83:cd:83:89:2b:
c3:4b:3b:90:cc:df:12:03:59:81:d9:b3:db:0a:e2:b4:72:05:
11:d1:1e:e7:f4:f2:f4:5d:cb:f9:0f:8d:3f:ee:e8:93:18:b5:
a4:51:ed:32:d0:02:1d:0b:e4:3f:47:e4:d6:f7:97:80:82:ec:
0d:6a:81:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyt/oQxRi6sOtMnxN7Aa1faMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi
ZTg5NTgwHhcNMjYwMzAyMTAwMTA0WhcNMjYwMzAzMTAwMTA0WjAzMTEwLwYDVQQD
EyhjNmI2MTNkZDg5MmUzNzczZjgyMTQ3ZjQ4MDM2ZWM0YmRhYzJlM2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIYFVj5CTwOddG0csIF8c2W4QIWA
GR/AoU6PM97poqVzOuIgO35QWR56zUjk6YryKWk/DJJzfA3iOuchvk3wUKJXPY3Q
SpkwtN7kGDUI97uF3p1jYg47M0esYBcS1rKF5t7aPuS4X4vIht1h1LSmfgipAT7j
sYoR32D2BUpRiom454bXLScCv8PqFiYJwoA0b7TAIT7XrloYq4tpI7uMXFaU4mI3
0yGRpS1+m4H/0svFQZvZHwKUTBoV5ill8xbjR0yugDlz/PXj12zzVphKHS387LnW
ndzKMMrHdusk0ENEb1j/ooyOvm8C/hU8V2ZQyYdkCqkHJykbV/3LQJ02XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMa2E92JLjdz+CFH9IA27EvawuPcMB8GA1UdIwQY
MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt
ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw
LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmmVN8gyX
ahcHlr480Mah4XMLinwb4DCuLqk/g9+h+H72bfVhd0YwtOj6igRYWJFtuhYPsCCW
4Y2vANEfF/AoSzQuOC4CJ8uChnWzPYSqpm2WUFQvbLdUZdN+D5K4IGOxidpJkwL4
3Gaoivjq7eLmDNSOaBqrneAz/Gktwr8mcvrHuVkAbyt1caK4UMhfCi7ROND7ktu+
YVpMdVMB0gHphQ9QHJdptFJlOqCMlXrxauvckM5dOgnxGTu962YmtQbLHYPNg4kr
w0s7kMzfEgNZgdmz2writHIFEdEe5/Ty9F3L+Q+NP+7okxi1pFHtMtACHQvkP0fk
1veXgILsDWqBZQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:57:17 2026 by rpki-client