Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: /DHOtApMWcjQxqRaotEZLj7++xdss+k+5GLqfoZQX/g=
Subject key identifier: ED:24:68:44:84:1E:B8:8E:99:B9:2A:A8:7A:73:A8:0F:77:1A:6C:32
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 019D98F4800BD0C1E8A5F6EBD3841A88F13D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 18C6
Signing time: Fri 17 Apr 2026 01:00:53 +0000
Manifest this update: Fri 17 Apr 2026 01:00:53 +0000
Manifest next update: Sat 18 Apr 2026 01:00:53 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: FwFSzIObFCJxGju8I8UeHrbOLHmo95Dno4JDXumUKso=)
2: WeJgs7A95jwqtwLgB758IcXv4EU.roa (hash: 84hLdtwmT7VOnkUt9Z3ak3sP5MNYReF+bmVuaSuUp4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:80:0b:d0:c1:e8:a5:f6:eb:d3:84:1a:88:f1:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: Apr 17 01:00:53 2026 GMT
Not After : Apr 18 01:00:53 2026 GMT
Subject: CN=ed246844841eb88e99b92aa87a73a80f771a6c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:78:45:e9:6a:ef:54:90:4e:37:4f:1f:92:
be:2e:9d:be:40:c7:8d:18:22:50:6f:9f:0f:c6:42:
e4:1e:47:16:ea:29:5d:23:31:ad:93:b3:01:46:99:
34:cd:d9:bc:10:fe:d8:d5:41:b0:dd:0d:e5:38:fa:
86:d8:8b:3d:4e:53:a8:11:74:03:be:ef:7f:68:2a:
5c:0f:3f:7d:f3:24:8f:57:17:41:65:a2:92:cf:4f:
f4:e9:24:ea:7b:ee:2b:19:9c:13:61:c4:0b:f6:a6:
9b:8d:e4:e3:f4:13:be:97:2d:c5:15:53:f3:da:7e:
14:44:a5:14:64:da:25:21:3f:df:9f:b7:25:08:c7:
13:f5:f0:e4:b0:54:0c:87:dc:0e:12:43:6f:7e:68:
cf:2a:19:89:23:f8:e0:1d:72:3b:4b:28:d1:68:39:
95:ba:26:2c:0a:a9:e6:d2:ce:77:3e:fc:c7:a9:06:
97:8a:e1:46:01:0d:5c:02:63:27:cc:eb:af:2f:47:
30:82:6b:f1:89:9e:13:9a:b9:d3:83:d5:f5:ae:3e:
0e:28:79:e8:2f:a7:5c:87:f9:be:17:b8:0d:a5:80:
08:54:16:3e:16:64:2b:93:66:f8:2d:e2:b6:54:e9:
7d:d1:a8:de:75:77:11:2b:72:32:12:5d:77:1f:23:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:24:68:44:84:1E:B8:8E:99:B9:2A:A8:7A:73:A8:0F:77:1A:6C:32
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:0d:b3:1f:63:ee:00:8c:33:fa:f2:8b:3e:d8:08:84:6d:4d:
fd:6b:c0:dd:58:87:d2:82:63:ee:18:73:2d:bb:d1:91:9d:de:
28:a9:f7:31:d5:36:e2:2d:48:40:83:40:61:a8:41:4e:82:48:
1c:b3:74:bb:09:5a:fc:0e:cf:0b:41:03:dc:a4:29:6d:c7:72:
53:f8:88:c4:77:37:8b:96:97:e1:56:ac:31:66:af:95:cd:3d:
53:24:e3:e1:f6:58:20:dc:1d:fe:87:78:c8:a8:b1:7c:8e:f8:
eb:a2:2f:6c:06:89:76:96:c0:47:03:fd:fe:84:83:a9:16:b8:
1b:a4:91:8b:ae:29:98:6b:19:2e:92:70:54:88:ce:f8:d9:0a:
78:0b:f3:19:bd:4c:21:36:95:d5:24:63:fd:18:a2:8d:ee:e1:
8e:18:04:9f:a9:0f:ad:22:f0:d0:f5:31:42:91:9b:b5:93:d8:
cf:41:9e:cd:ad:10:12:12:b9:d4:97:b6:4f:7d:80:ad:aa:38:
c8:99:bc:6f:67:03:f6:4d:9a:a1:70:57:64:e5:bb:95:69:a5:
5f:82:bf:7c:a3:0b:14:29:41:4f:20:12:01:a9:0a:a6:bb:12:
6f:5f:22:59:18:54:79:02:09:d7:cc:71:af:36:26:c9:7a:08:
c3:8b:8b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:52:33 2026 by rpki-client