Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
File: OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft (raw, json)
Hash identifier: TA7ZHdlQ/xYBzwJWsKaRB6DkdItRymB9eyKKs3pVFL8=
Subject key identifier: 72:24:1B:F2:51:21:FA:85:E2:63:10:7A:E9:5E:FB:FE:30:F6:55:A0
Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Certificate serial: 019D265F7E4F0019D18B5559E8DCC56B0293
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
Manifest number: 0EC3
Signing time: Wed 25 Mar 2026 19:01:25 +0000
Manifest this update: Wed 25 Mar 2026 19:01:25 +0000
Manifest next update: Thu 26 Mar 2026 19:01:25 +0000
Files and hashes: 1: O4mhqRGKIoCKcIMKacGidJQTeig.roa (hash: o44fh95pYU44LJ84noRE8s+3KorVfsnK8XoKEFDXt+c=)
2: OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl (hash: kzf50kgDCwqa/bvrE6igYtFjStl+vwqfpHMaYSqJrtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:7e:4f:00:19:d1:8b:55:59:e8:dc:c5:6b:02:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Validity
Not Before: Mar 25 19:01:25 2026 GMT
Not After : Mar 26 19:01:25 2026 GMT
Subject: CN=72241bf25121fa85e263107ae95efbfe30f655a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:bd:25:9a:80:ab:1a:ba:3c:7c:43:ac:1f:ee:
cf:ce:5c:48:66:02:ff:0a:d1:fe:98:ec:74:dc:4b:
6e:51:40:56:bd:d4:73:2c:b3:d4:ad:5d:04:59:65:
f3:5d:d3:09:01:70:a9:da:5f:d3:5d:56:d2:c7:b8:
42:6c:95:0d:7e:43:11:c4:91:1b:25:10:34:81:a9:
37:bd:6f:f8:41:54:f8:8d:5a:1e:d1:9c:d8:66:22:
03:c9:e1:b0:d9:5d:e3:4a:13:21:63:49:66:68:7f:
ce:1f:ea:31:b8:13:49:60:9e:7c:90:86:bb:dc:c8:
93:3b:95:2b:b1:b9:c7:db:38:b6:4f:19:cd:2e:e2:
39:43:45:80:8f:91:e6:a8:d8:3b:70:be:8c:0a:1c:
e5:c9:ce:66:97:c7:01:3b:dc:3a:92:fe:92:5f:39:
cf:bd:fa:0e:ba:88:87:b8:45:03:02:0d:03:53:82:
90:24:44:f5:82:63:18:de:c2:3d:be:17:56:91:76:
90:e2:7c:d3:0c:4b:30:12:3a:8c:af:4b:fa:cd:a4:
47:e6:da:2a:81:63:ca:d9:a3:ae:7a:79:de:29:c5:
b1:9d:15:f9:12:5c:03:9d:84:f7:ea:45:cf:e0:f2:
a2:d5:1a:0f:0a:c7:95:83:92:a2:8c:d0:87:66:35:
91:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:24:1B:F2:51:21:FA:85:E2:63:10:7A:E9:5E:FB:FE:30:F6:55:A0
X509v3 Authority Key Identifier:
keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e5:87:60:57:1f:90:20:20:15:55:99:b6:9e:2d:7e:85:07:
23:4e:64:c5:07:fb:7e:22:26:33:5c:24:26:09:c0:4d:df:37:
ef:8b:c0:c8:18:89:b9:a2:f5:26:e3:2a:7a:a6:af:c2:06:e1:
03:bd:5d:73:1f:5a:e6:3d:46:6c:18:18:19:af:21:23:65:06:
08:d4:12:b3:f6:67:6f:56:c0:01:5b:7c:59:f0:74:cd:e5:e0:
a7:14:83:71:c3:26:df:0d:4d:2b:8c:d9:59:0d:74:3e:e2:74:
a2:40:29:9a:07:e2:1f:0b:c4:0a:27:71:30:9b:ad:3e:6e:f7:
93:34:b1:f1:8e:ba:f7:a5:5f:bc:56:33:9a:d9:86:18:30:48:
2b:6e:de:a8:eb:66:46:e2:4b:02:a7:18:b3:cc:fe:57:51:ee:
ca:3b:23:0e:89:54:5d:e1:3b:c8:aa:02:21:80:a3:1c:64:2f:
df:d5:03:7c:4f:7f:b3:7d:1c:6d:ff:20:04:0f:f1:2d:70:e9:
90:00:ed:9f:ec:5d:65:01:6a:2e:c1:97:de:e3:db:24:e6:5f:
d5:55:82:e7:bf:6a:98:cd:7f:4b:cf:fa:7a:71:d5:cd:0c:c3:
86:55:5a:d4:34:76:f5:e5:64:da:8f:83:c3:27:4a:02:cc:89:
3a:46:bd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:32 2026 by rpki-client