Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: iFZprK13ZxOerYGQw64+N7Q1o4CJlLUvxME0d4Wpkxo=
Subject key identifier: 4A:63:91:5B:EE:89:72:D1:91:33:DF:3C:0B:03:D5:11:2A:ED:D7:FE
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 019D98F4B2A7177140F2E5C1B0CD9F55053D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 01:01:06 +0000
Manifest this update: Fri 17 Apr 2026 01:01:06 +0000
Manifest next update: Sat 18 Apr 2026 01:01:06 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: JHAsnp6V90FwbDYeKZGt8gOoj5RXrZqssRJvkTWzQqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:b2:a7:17:71:40:f2:e5:c1:b0:cd:9f:55:05:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: Apr 17 01:01:06 2026 GMT
Not After : Apr 18 01:01:06 2026 GMT
Subject: CN=4a63915bee8972d19133df3c0b03d5112aedd7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2e:11:e4:88:79:f3:1e:2a:d2:1e:a1:a7:14:
01:3f:6c:bf:5a:a6:57:5d:a7:bc:78:45:99:7b:54:
83:38:e6:c5:ed:88:ac:2c:59:99:32:91:91:f7:5e:
b7:92:9e:0d:65:34:df:70:e2:0e:bf:09:3e:f0:a1:
68:eb:1f:de:9f:c2:a1:86:03:c5:d5:49:c6:4b:ee:
49:e1:ee:73:cb:2c:c4:e2:c6:f4:85:0a:38:bf:b8:
c1:64:82:ba:69:1f:ab:1e:13:0a:2f:b4:a8:53:ab:
2f:3f:ff:75:27:07:50:1a:a0:c7:58:fc:0d:a0:f8:
fe:5f:c3:85:2b:37:e9:ba:12:a8:df:9d:fa:6b:bd:
59:62:e1:90:3f:18:02:c3:d0:8e:eb:1a:18:4e:12:
91:53:00:3b:68:81:57:2b:c1:ab:df:17:6e:14:7f:
cb:91:37:2e:52:c3:10:45:a4:20:75:a9:1d:74:83:
80:8e:81:a8:48:d1:93:2d:15:0f:ef:be:cd:ca:0d:
16:93:41:de:8d:e2:11:f1:22:8f:52:8b:42:61:ca:
38:c2:eb:39:b2:75:4c:78:3e:a4:fa:9f:69:4a:b3:
10:cb:02:da:58:33:db:63:fc:3c:8f:a0:f4:92:cf:
3b:e1:be:11:d7:7a:2a:3a:d3:8b:be:49:46:21:92:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:63:91:5B:EE:89:72:D1:91:33:DF:3C:0B:03:D5:11:2A:ED:D7:FE
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a9:74:7e:a1:fe:16:93:4a:01:c8:a7:f5:61:6e:0f:9c:a2:
36:55:c7:36:84:19:89:85:b9:6b:7a:ef:2b:cc:e2:9c:f5:3e:
7f:cc:b6:69:4e:43:21:f5:27:9e:a2:5b:56:79:e5:69:a6:c4:
24:44:22:e4:7b:24:18:f5:61:48:8a:dc:23:6e:37:f5:17:0c:
07:3e:a7:8e:ea:9a:63:ea:16:59:7d:47:ba:85:1c:8a:c8:00:
8f:03:4b:6d:b4:9c:56:8a:89:1a:3e:62:81:65:28:14:e8:1b:
ca:a0:d6:bf:7b:23:2c:a4:50:db:fc:28:5c:c1:e1:32:a8:7a:
9d:74:6c:b0:d9:d0:f8:98:82:b0:68:55:08:c7:1c:3c:e5:82:
c6:d2:4a:fb:eb:f1:99:5c:14:09:1d:2f:5d:2f:da:c6:ff:5c:
b2:b5:30:f4:71:a9:35:a6:f0:39:e6:40:29:f7:b0:f3:a7:9a:
b0:94:66:d0:42:02:6a:c0:6d:24:8f:b1:ca:cf:40:eb:7f:45:
15:be:5c:c2:b9:c7:5b:24:d6:12:77:1e:98:aa:c2:b7:1e:ed:
bc:a9:8c:3a:a3:a2:c7:ac:f4:7d:26:c3:44:a2:04:42:2f:6f:
26:32:98:20:15:61:79:47:02:e6:92:d2:0c:1d:f9:5b:c3:eb:
a7:bc:dc:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:58:55 2026 by rpki-client