Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
File: OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft (raw, json)
Hash identifier: 1B5qbo63gj+LbTkZmWDApga6FbWediXKyouJaOfd3sE=
Subject key identifier: DB:78:26:A4:C9:D3:07:21:88:80:52:BC:16:F9:0D:5C:0D:33:72:78
Authority key identifier: 38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
Certificate issuer: /CN=389755423f832a528c93136110f0fe4b10453582
Certificate serial: 019D9C2C776E1798CD381F93A338A22E7B64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
Manifest number: 0F59
Signing time: Fri 17 Apr 2026 16:00:52 +0000
Manifest this update: Fri 17 Apr 2026 16:00:52 +0000
Manifest next update: Sat 18 Apr 2026 16:00:52 +0000
Files and hashes: 1: OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl (hash: UXW9CR4Km69cJ7vBPsx1qE/hENOCOOP03c1jAv3B81E=)
2: dvF-ax6xW9w6QlzjTOaIlgyWKik.roa (hash: E53mXDTZAgvYtLPLUqhUWEPa5aOM6nnfYCB3KgCjcD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:77:6e:17:98:cd:38:1f:93:a3:38:a2:2e:7b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389755423f832a528c93136110f0fe4b10453582
Validity
Not Before: Apr 17 16:00:52 2026 GMT
Not After : Apr 18 16:00:52 2026 GMT
Subject: CN=db7826a4c9d30721888052bc16f90d5c0d337278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:cb:7d:c5:91:a1:32:76:87:1f:6e:ff:89:
91:ff:b1:ba:97:07:44:76:f1:c0:10:74:b7:5e:97:
b2:ec:62:d4:30:36:0e:76:ad:3a:f5:68:1f:f8:f4:
bc:b1:b1:22:1a:fb:d3:fc:f1:49:52:bb:b2:e9:4c:
b8:ea:2b:e1:cf:3e:cc:96:f3:e1:e7:81:7f:3e:c6:
f3:1f:67:6b:f5:63:2a:7c:d4:cd:b7:87:86:a4:98:
ce:e0:15:c7:d9:f4:56:62:9d:f1:ee:97:a2:b6:04:
09:10:00:2d:e0:a2:b2:e9:49:44:24:d3:d1:7e:db:
0c:c1:97:77:fb:99:db:0a:3a:84:3f:7f:02:9f:58:
bd:59:e2:3b:7d:91:df:c4:4a:ad:2b:46:ac:bf:39:
a4:26:42:07:23:b7:f1:f3:98:00:7f:77:7a:14:87:
0d:4d:a3:57:84:fc:7a:10:c8:2b:a1:ed:6d:ae:e7:
05:cc:46:67:4b:4f:79:5d:26:b9:e1:b4:2f:70:1f:
89:04:ee:66:b1:72:db:ff:25:ae:0f:67:80:57:6c:
fb:22:81:69:b3:5e:74:06:ba:e2:f3:5d:c3:d3:3e:
e2:df:9b:2a:1b:7a:0c:33:d0:34:ee:6f:48:f6:33:
ff:11:af:85:c2:87:cc:03:e0:a9:5b:31:b9:38:0e:
5f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:78:26:A4:C9:D3:07:21:88:80:52:BC:16:F9:0D:5C:0D:33:72:78
X509v3 Authority Key Identifier:
keyid:38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:0f:81:8e:b9:5e:e3:2e:cb:77:9b:02:5d:f1:5a:83:ce:0b:
51:45:2d:b4:8e:c5:3e:b2:9c:17:ee:ff:93:39:7e:6c:2a:63:
d6:ce:b9:36:de:dc:59:6d:c6:77:32:c8:37:d7:6b:a7:4c:de:
ae:a2:4c:60:2e:32:bc:ee:8d:18:f7:24:83:c0:9c:14:59:4b:
76:ef:8b:7a:e7:9b:81:87:6e:1f:65:84:f4:48:be:ed:f2:14:
07:03:76:78:67:eb:34:3a:4e:a3:19:33:66:49:9b:b5:6f:a6:
ce:b7:c3:2c:2a:5c:5e:1f:34:9c:75:bb:c8:70:a1:bd:e3:d2:
20:4a:e7:bb:17:57:a6:d6:09:ac:c9:b8:da:8c:cf:36:a2:0e:
2f:5c:8c:ca:af:be:91:34:cd:95:0f:07:8a:ca:60:1a:41:f8:
9f:ea:7e:ca:e9:b6:55:eb:0e:01:2b:d9:1f:62:75:c3:f9:68:
de:ef:42:63:46:73:df:91:5b:bd:24:60:e6:e0:f5:b0:99:5b:
b1:f6:ab:82:be:f8:a1:14:3c:90:ac:4f:6a:40:19:44:2d:8a:
8f:79:26:3a:b3:42:a5:84:cf:98:54:50:b4:0c:e2:ef:b1:9c:
79:b2:3e:7d:26:88:57:6a:20:1e:e6:b0:f9:6d:2a:33:e8:50:
15:19:4b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:46:23 2026 by rpki-client