Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
File: oGqOPGol1GOfOUWtFszF6Yo6kqY.mft (raw, json)
Hash identifier: mdp1ZBN+4YrFdrUO+ZjOzWmiWLf8F/G89QoJSlf8+ZQ=
Subject key identifier: 3D:51:51:FC:EB:DA:CB:87:4A:F3:A1:94:73:8C:CA:FC:97:5E:0E:02
Authority key identifier: A0:6A:8E:3C:6A:25:D4:63:9F:39:45:AD:16:CC:C5:E9:8A:3A:92:A6
Certificate issuer: /CN=a06a8e3c6a25d4639f3945ad16ccc5e98a3a92a6
Certificate serial: 019D98F4BA35713949A4C9D86E53F4723990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 01:01:08 +0000
Manifest this update: Fri 17 Apr 2026 01:01:08 +0000
Manifest next update: Sat 18 Apr 2026 01:01:08 +0000
Files and hashes: 1: oGqOPGol1GOfOUWtFszF6Yo6kqY.crl (hash: 8o04CfwxnZ1xCwd3fQ92MDWiLmwBhWXtgX+Bk/kF1yE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:ba:35:71:39:49:a4:c9:d8:6e:53:f4:72:39:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a06a8e3c6a25d4639f3945ad16ccc5e98a3a92a6
Validity
Not Before: Apr 17 01:01:08 2026 GMT
Not After : Apr 18 01:01:08 2026 GMT
Subject: CN=3d5151fcebdacb874af3a194738ccafc975e0e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9d:05:de:b3:c4:f1:29:e6:82:2c:20:db:d7:
0b:87:ac:a1:4e:b3:a6:83:d2:f6:8f:57:f7:7e:cb:
73:bc:9c:b4:43:f7:e1:44:cb:b7:f1:d9:cf:d2:d4:
19:6d:83:fd:dd:f3:9b:7e:54:41:1e:0a:cc:9f:ed:
2e:08:e9:03:77:a3:df:14:98:75:44:c0:ad:54:d3:
25:c5:28:8a:bd:7c:fc:01:2f:f8:26:07:2a:62:f7:
63:ce:50:ab:c1:fb:94:a9:22:ec:bc:a1:f5:cc:dd:
e2:12:66:e4:56:1c:2f:36:9c:29:d5:46:66:91:18:
9e:52:0f:78:88:f2:f0:87:01:92:d1:b2:15:fa:0a:
e0:38:ad:87:62:9a:5c:84:93:85:c4:43:4e:f7:89:
00:75:12:15:e3:af:7e:57:31:69:39:eb:a0:f2:d0:
0d:fb:d4:bb:fd:8e:78:22:35:9a:52:ea:2e:88:9f:
94:fe:65:a3:7f:83:3c:61:17:d5:8d:a9:a1:37:53:
fd:2c:fc:c1:ab:c6:a6:67:21:b0:7a:8f:8b:21:24:
be:2f:69:aa:bc:8e:3a:88:bf:fa:a2:31:15:bc:64:
af:9c:e6:3c:42:16:17:52:a8:d1:9f:fd:ad:7c:4d:
2c:b5:b4:64:d7:02:08:d3:28:ea:55:78:b0:57:37:
32:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:51:FC:EB:DA:CB:87:4A:F3:A1:94:73:8C:CA:FC:97:5E:0E:02
X509v3 Authority Key Identifier:
keyid:A0:6A:8E:3C:6A:25:D4:63:9F:39:45:AD:16:CC:C5:E9:8A:3A:92:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:0b:44:a8:b2:da:25:ff:d8:b6:56:9a:6b:b4:8d:33:21:da:
65:5a:23:72:09:95:0e:08:f8:0b:f4:ae:2b:be:86:53:9c:f4:
81:c3:4b:e1:a1:e5:b8:4b:8b:ad:91:c0:f5:b7:d6:e6:fb:3d:
19:b2:2b:87:96:1e:e7:cc:08:58:9b:b7:f0:52:98:7c:3c:14:
ef:2a:3b:4e:74:2f:fc:a7:f4:34:36:47:0d:68:b0:e9:f6:4f:
de:d1:2c:3f:25:7c:93:c0:0d:b3:ea:f8:dc:95:a0:38:5b:42:
95:9b:7c:52:00:d2:73:84:b8:ab:4e:64:aa:dd:25:88:a7:9f:
c9:00:bc:d7:5d:a3:62:a3:51:03:78:72:7c:b8:64:98:a4:c4:
a2:96:98:7f:91:aa:88:03:2a:34:25:0b:fa:62:8c:7d:2d:86:
d4:ef:c4:e3:8e:64:fc:80:85:e1:f9:64:48:2a:da:44:68:b9:
d6:dd:c2:de:9e:b7:83:c2:bd:ea:da:18:c5:8a:e1:91:2b:ee:
3f:af:65:3c:d9:78:b0:d1:2f:58:b9:fd:bb:50:b6:e9:32:43:
e7:5a:f1:1f:96:e3:76:f5:e1:4a:15:6d:7b:5a:be:1b:47:c6:
f8:40:a6:b4:de:a4:1e:13:91:e4:2f:49:b0:c5:c4:4e:c2:ee:
86:f8:eb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:09:56 2026 by rpki-client