Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
File: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft (raw, json)
Hash identifier: P2bq23XlpjDaUh1qfd5DTMmFCoRfHvLVBwlBX8411H8=
Subject key identifier: F5:E5:FB:DB:D5:D7:94:C0:FB:FC:85:2A:7F:28:C9:44:64:15:95:D1
Authority key identifier: C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
Certificate issuer: /CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Certificate serial: 019D99D035A6AD2B777A4E7DE9DEA4B8E536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
Manifest number: 0618
Signing time: Fri 17 Apr 2026 05:00:52 +0000
Manifest this update: Fri 17 Apr 2026 05:00:52 +0000
Manifest next update: Sat 18 Apr 2026 05:00:52 +0000
Files and hashes: 1: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl (hash: i/ltAvjtasHEWy8TSvafj09xb0l7jWyQBZ7LLmlsLoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:35:a6:ad:2b:77:7a:4e:7d:e9:de:a4:b8:e5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Validity
Not Before: Apr 17 05:00:52 2026 GMT
Not After : Apr 18 05:00:52 2026 GMT
Subject: CN=f5e5fbdbd5d794c0fbfc852a7f28c944641595d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:41:a8:d1:58:99:98:c1:0c:88:b6:b8:33:
93:a3:72:1b:f3:fa:45:99:19:a1:f7:07:61:20:a1:
e8:34:cc:0d:a4:6a:e6:a9:07:a3:f0:7f:f2:7e:94:
fa:69:17:fa:06:4f:e4:ad:bc:68:0b:31:bf:29:20:
3d:10:64:b2:e9:e5:a4:0e:f6:9c:2b:5b:a1:23:7c:
c7:b2:78:2e:50:20:8c:c6:8f:8f:3e:89:69:8d:b8:
de:b2:fb:7a:31:19:bf:fd:1e:25:e2:18:3d:86:ef:
0a:1f:51:48:69:43:54:94:98:3e:e1:4d:4d:64:47:
97:0d:36:0e:ae:07:1f:b7:58:69:8f:c7:cf:6c:8f:
de:bc:ac:4e:b3:9d:f4:2f:a0:ba:10:b8:6e:42:ff:
8e:4e:8b:2d:73:82:15:22:50:e7:e1:06:dc:3a:0c:
7e:3a:38:5e:cc:5f:28:e7:64:15:f3:5f:f5:88:e9:
cc:c8:ef:06:c3:52:22:72:ca:cf:3c:f7:d8:ab:c7:
d9:28:83:81:7d:4d:4b:31:69:2d:d0:3c:71:03:23:
11:56:20:04:0d:ea:e5:9b:42:16:89:9a:82:92:38:
75:6a:a7:42:ed:ea:3a:99:37:c5:a3:26:60:eb:31:
ae:c8:c4:32:20:fc:39:72:2b:71:56:fb:7d:1f:61:
ff:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E5:FB:DB:D5:D7:94:C0:FB:FC:85:2A:7F:28:C9:44:64:15:95:D1
X509v3 Authority Key Identifier:
keyid:C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:09:9a:31:e7:5e:23:98:20:77:30:25:4a:bc:c4:d9:5c:00:
5d:8c:20:b9:b1:da:9e:fe:8f:ae:1e:48:21:8d:e4:1a:3b:f1:
00:ef:78:16:83:2e:72:82:1d:92:f0:f7:58:2e:5f:bc:ed:c9:
a3:19:bb:d9:67:e7:42:7a:8f:47:22:15:dd:31:e9:be:94:d5:
ed:7f:8b:f4:1a:5e:21:2e:4e:55:a0:ef:eb:9e:e4:69:1d:36:
12:15:61:d6:c9:bd:2f:56:e0:9e:83:3b:27:8d:a3:ac:4f:12:
9b:68:ee:63:a3:f9:58:2f:9e:01:26:8e:38:bf:fb:37:45:d0:
6f:cf:33:ba:0a:8f:f4:53:1d:3f:25:9a:f8:54:86:fd:fc:ce:
e2:bf:0e:f4:2c:63:19:08:eb:97:85:96:ac:5d:8f:0c:61:1c:
1f:90:a8:a9:72:c4:98:87:ad:cd:b6:f1:cf:2d:08:12:a7:24:
69:41:cd:1e:da:00:ee:7d:e7:ce:57:c8:a0:bc:5e:b3:84:a4:
d8:b1:82:76:76:8f:f1:f1:11:a3:ef:1d:65:e2:ac:ff:61:74:
15:2c:9c:89:e4:62:37:7f:d9:3b:2a:e0:a4:0d:f0:09:09:1a:
7e:a2:b8:8d:b7:7c:e7:37:66:3a:ac:e6:33:0a:bb:c1:01:43:
e9:37:a3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:01:12 2026 by rpki-client