Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: ANEMiWtBMSCHevLiWCwRRxvzO2yIEnPKYvAKRuHWMpY=
Subject key identifier: A7:1A:82:5D:17:41:78:9A:AB:AE:69:E0:AE:4D:B9:A0:11:30:1C:9A
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019D9A74CD40CABE32174E78D1CDD32F47E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 18C6
Signing time: Fri 17 Apr 2026 08:00:39 +0000
Manifest this update: Fri 17 Apr 2026 08:00:39 +0000
Manifest next update: Sat 18 Apr 2026 08:00:39 +0000
Files and hashes: 1: LKfnJFP3stLPWkjsWhakvnaxplg.roa (hash: 3FNKamFL0cuW1/UK40gTZTnTQ2szlVWiH3Kqp5bB2Jc=)
2: _UAEb8lxXMfLr99B3gLyKpq6SRc.roa (hash: 5fNZHaDxkH+elaL5Caoe2vhcopBQ8ICg8obtjvq1FY0=)
3: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: D1Ud+635BRim5IWpdgDagzXDED9wph6xI4yXMFmC+fA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:cd:40:ca:be:32:17:4e:78:d1:cd:d3:2f:47:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Apr 17 08:00:39 2026 GMT
Not After : Apr 18 08:00:39 2026 GMT
Subject: CN=a71a825d1741789aabae69e0ae4db9a011301c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2f:8d:90:e1:bb:7f:39:a0:64:e3:3d:49:1e:
24:27:4c:6d:7e:e2:7a:81:5f:92:22:31:4e:2d:05:
8c:fb:c5:38:9f:d0:cb:ad:dc:c3:26:f2:72:8c:44:
6b:f9:f7:51:f5:b7:fc:e8:d2:d5:be:c5:3e:72:82:
27:5b:de:85:67:b0:57:56:e4:17:af:ed:11:40:f7:
fc:cf:cc:18:35:bf:45:54:55:e1:43:4a:68:9c:b9:
b7:e6:e0:16:43:3f:02:10:08:93:83:1a:9b:4f:69:
a9:a3:58:ee:84:d3:92:ac:7b:2d:20:1b:ea:6d:62:
55:13:e2:8a:50:ea:44:52:08:00:cb:4d:ec:97:c7:
05:38:a8:b5:08:61:7f:7c:9f:24:f3:aa:78:cc:ec:
d9:df:15:b0:2b:91:91:8a:0a:d7:58:bf:94:ab:d7:
c8:15:20:b0:19:e2:fe:b7:65:75:3c:45:64:89:8b:
eb:c3:f8:4a:4b:1b:e7:7d:7b:76:74:fc:cd:f7:c5:
49:e6:25:98:41:36:ec:20:8c:30:42:15:fb:a6:7c:
3e:06:41:9a:b8:8e:b5:12:4d:85:e1:2f:96:36:71:
72:aa:ac:93:f7:17:62:5d:07:ae:81:ff:c4:a9:c4:
4a:37:65:6e:9f:3c:c7:12:9c:5c:54:6a:bb:4c:83:
88:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1A:82:5D:17:41:78:9A:AB:AE:69:E0:AE:4D:B9:A0:11:30:1C:9A
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:cf:b5:45:c2:3f:ba:ca:8f:26:bc:34:ce:4b:5f:68:e9:3e:
0b:c3:38:f8:b8:dd:cf:5a:97:fa:25:dd:80:28:7b:09:84:ab:
9a:7c:b5:2f:82:ac:a8:35:1c:4c:d1:7a:a7:39:70:0a:90:41:
13:54:16:ed:ed:83:39:60:a1:66:1e:50:fa:87:f8:95:62:21:
71:72:b8:53:a2:d1:0e:05:7d:ef:0a:24:7f:6a:6c:b6:d0:f7:
8e:71:da:77:f8:94:ad:69:d0:be:d4:b1:0d:9c:2d:e2:b8:da:
11:42:3e:f5:75:d8:21:a5:5c:2b:e7:16:ed:2f:16:73:bf:bc:
b8:35:db:70:1f:54:17:8d:50:df:d2:12:59:db:d1:ab:8f:af:
ac:da:e3:5c:03:07:19:4f:27:f3:e3:4b:e2:d0:ef:34:2d:9f:
56:ef:a8:85:3e:92:33:8a:be:e9:83:d5:89:43:bb:16:19:7d:
b2:0d:a7:3e:26:30:7f:70:f4:bd:81:da:b6:01:88:9b:5d:ac:
a8:ef:51:88:23:9e:4d:b5:dd:8c:4d:92:9e:82:b6:1a:d2:c8:
b5:02:b5:9f:80:ae:c5:c5:b8:b8:f2:1c:7c:ed:2a:83:1c:2e:
9f:3d:c2:73:b7:7f:d2:04:c2:24:2f:c3:49:98:09:47:bf:75:
a3:d2:e6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:53:48 2026 by rpki-client