Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: VUGplQoUUsYzvls63Nq9AtpR+XTO4sL/3aR6JQvyjOk=
Subject key identifier: 28:D0:DA:85:F8:B7:9A:61:5B:7A:91:AC:B5:DE:F8:84:BE:38:A8:74
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 019D2628B73390DB79705D75DCE16ED3A673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 07E1
Signing time: Wed 25 Mar 2026 18:01:35 +0000
Manifest this update: Wed 25 Mar 2026 18:01:35 +0000
Manifest next update: Thu 26 Mar 2026 18:01:35 +0000
Files and hashes: 1: T3IIdcu9O4RqtWN63OnvjHlxoHA.roa (hash: mcKH90gzUrsNVUfzI9EqajlTYUwudYLzyU2jnBM19/w=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: UOtYpnwYYkLAoFbnPYt99fPTMytwnb9KDSWtwjv8t1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:b7:33:90:db:79:70:5d:75:dc:e1:6e:d3:a6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Mar 25 18:01:35 2026 GMT
Not After : Mar 26 18:01:35 2026 GMT
Subject: CN=28d0da85f8b79a615b7a91acb5def884be38a874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:65:fe:c2:60:93:3a:0b:22:2d:36:cf:f1:ac:
e2:81:02:ef:a5:c1:40:ff:14:8d:cc:ab:a9:be:eb:
e8:50:62:92:01:42:29:07:4f:14:6c:9f:36:eb:0c:
78:21:33:67:b2:fa:9b:a5:67:79:4b:52:95:5e:22:
0c:0a:49:96:46:b2:17:0e:bc:9b:1f:50:bf:88:21:
54:00:cd:1e:06:c3:bf:ae:0d:55:56:7b:aa:0c:b7:
5a:74:38:fc:73:59:d7:79:c1:2e:96:ec:c3:2a:34:
95:62:bb:bc:0b:ab:5d:17:34:51:c0:cb:c6:4f:59:
b4:5c:e0:0d:69:36:de:09:7d:25:cc:08:6c:8e:08:
78:0f:cf:dc:1d:c2:22:6e:93:96:4f:18:58:09:98:
8d:f6:96:44:6a:45:5b:f9:51:52:77:eb:a7:90:4a:
b9:21:3e:4f:1c:52:66:7d:cf:8e:54:96:97:88:00:
ac:af:41:66:9e:eb:0a:6b:75:48:33:2f:61:dd:f8:
fe:cf:e6:06:ee:65:1d:8a:35:e0:e9:61:6a:c5:62:
16:fc:7e:0f:5b:64:4a:2f:8a:f0:80:5b:4f:ae:a6:
df:b0:0e:2d:06:57:f4:35:34:55:5c:39:a7:c9:e9:
ad:7c:1e:47:fc:e2:a0:29:06:fb:ce:3c:d8:e7:66:
40:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D0:DA:85:F8:B7:9A:61:5B:7A:91:AC:B5:DE:F8:84:BE:38:A8:74
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:d1:c0:3b:7a:52:f2:b8:28:78:8e:09:48:79:1c:5b:27:d4:
9e:c2:d3:66:38:0e:d7:15:d7:05:d4:58:b0:3f:c4:42:aa:1d:
1f:8d:4e:a3:26:64:92:6e:b4:bc:8e:00:7d:4e:e5:b8:9f:98:
f5:95:1e:f3:fa:79:65:45:0f:b0:3d:c1:fe:7d:a8:3a:0a:bf:
7e:8b:45:8b:7f:b8:bc:d0:10:e8:d4:e6:74:6e:7c:d3:e0:34:
11:95:68:47:2c:6c:26:28:d3:49:5d:29:4d:c0:37:5d:9e:86:
ab:d3:ec:99:61:bc:2c:76:56:0a:6a:27:93:b1:9f:ee:5b:45:
31:ca:24:6c:c3:1d:b0:36:c9:fb:9c:8c:20:92:4c:5c:42:c6:
d0:74:61:76:9e:9c:2b:57:a4:ff:dc:a5:03:80:98:a3:64:77:
e2:00:80:08:61:5f:f1:68:cc:80:49:ce:cc:25:d9:22:2c:87:
dc:c6:93:94:31:cc:e9:e8:83:3f:7f:2d:53:39:37:22:75:11:
5b:64:f7:46:cf:db:29:f0:6a:ef:e0:dc:26:23:64:d8:51:15:
4b:d5:01:9f:09:55:d7:39:d8:3b:f9:dd:67:e2:57:df:65:ac:
53:da:d5:8e:74:2f:d4:a0:ea:fa:ba:e0:7f:e0:5e:7e:8d:dd:
dc:13:33:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:24 2026 by rpki-client