Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: nFtg38r2y5MWXQYolbNMNAULbB3xdgzXNiGxCSC+dD4=
Subject key identifier: DF:63:E0:F4:17:6A:54:68:FA:D4:9C:B0:9A:EA:77:2E:86:B1:8C:CA
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 019D2A3B5FCB3793881A6403D7178EC7CEE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 1024
Signing time: Thu 26 Mar 2026 13:00:27 +0000
Manifest this update: Thu 26 Mar 2026 13:00:27 +0000
Manifest next update: Fri 27 Mar 2026 13:00:27 +0000
Files and hashes: 1: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: 83LRkEsMFZ3A03IwKVGMMl2n28hzYthuhSBecv7GOwc=)
2: TEmzgEgKyQo96Gqk3OCXyu8JaO8.roa (hash: w2y72ko+lJjiVlRbZd4qD2G3W4qa+BLqf6Sn4G+/dow=)
3: XWcYfudW_fCjYcND3H407xe959o.roa (hash: hWyo7JRjc5zRnP54qNBVfiEpztNdLDDxrtX9abLg7Ps=)
4: ge5kxbikwrvAEUuIO3lNRkFxLmw.roa (hash: eEJ79T/++oL5XPtUGIItjARG2jFvNlWqvTqYFtL6EkY=)
5: rTgC7PLBMFHhdpl3fBHWaPGZP_Y.roa (hash: ng9lqabxlxHQ1G6hpIjPJfi43vHsrt3ed7Cyb0T70ss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:5f:cb:37:93:88:1a:64:03:d7:17:8e:c7:ce:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Mar 26 13:00:27 2026 GMT
Not After : Mar 27 13:00:27 2026 GMT
Subject: CN=df63e0f4176a5468fad49cb09aea772e86b18cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:14:5c:9d:b3:13:fc:07:c6:e4:84:13:db:b7:
6c:ed:4f:3a:d8:e6:36:10:1c:28:fd:8f:01:9d:1b:
53:42:b0:c1:e2:3f:1a:15:dd:12:32:91:4c:93:07:
e7:24:d3:2e:7e:d6:f6:fe:d5:91:15:e5:44:30:c9:
08:af:81:7f:33:5c:8a:79:ff:46:ab:7e:b1:47:1c:
bd:2e:c7:83:89:9c:16:63:27:c7:fb:fa:a2:56:2e:
4e:96:33:d7:7d:0c:25:eb:72:b6:90:d1:8d:4f:03:
7c:6e:60:e5:83:0b:50:99:7e:55:ff:5e:1b:24:6f:
ea:79:54:a7:61:22:5c:86:fe:42:1c:64:b7:0c:49:
fc:2a:73:90:34:6b:7a:5b:40:57:48:a8:c9:fc:8a:
58:13:d0:b6:aa:1e:ea:61:b8:8d:b0:f2:9e:8c:7a:
8f:9f:2f:8f:75:6d:1c:80:c6:cf:be:02:28:94:0a:
bd:46:88:d8:af:bc:b0:28:f7:7b:f1:3a:f6:f5:d0:
0d:ba:0e:27:c9:e6:05:d6:5e:02:fe:02:c6:89:73:
78:11:c8:52:93:53:f1:bc:ce:be:85:28:31:0b:60:
b6:3f:fb:dd:19:96:4d:89:b6:4c:fd:3c:83:c3:cd:
10:3c:4f:b8:38:65:8b:a9:ea:78:b3:4d:1e:e5:ac:
c5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:E0:F4:17:6A:54:68:FA:D4:9C:B0:9A:EA:77:2E:86:B1:8C:CA
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:58:2e:71:c8:d8:d6:d6:b3:0e:59:93:67:5d:94:f1:42:97:
41:c4:77:af:0e:aa:cb:ac:ee:8c:2c:ea:4e:fa:c8:48:88:44:
86:08:0b:47:94:89:56:2d:f6:ba:4a:ca:13:a7:75:27:8e:e7:
3d:e8:9e:91:03:9e:14:13:0d:0d:04:d7:e8:3d:67:13:cb:bc:
64:7c:5a:79:da:87:7a:e1:98:d0:b1:d8:d8:5c:b6:69:f7:ef:
36:19:9b:54:4c:c7:9e:7a:a7:49:a6:42:78:d4:1e:ea:a2:7d:
8f:50:4c:51:f8:0a:85:b6:cc:65:ea:df:60:09:e7:85:88:1c:
96:6d:49:12:0e:50:2e:42:39:3d:11:d9:8c:bf:52:1c:ff:f2:
f8:be:88:8e:64:f8:7e:b9:59:4c:14:fe:f7:40:21:40:a5:a2:
96:eb:44:73:c1:43:e5:4a:6f:1a:59:aa:5a:1d:23:e2:76:fd:
f6:f3:4a:ec:8f:56:55:c4:0c:cf:4f:60:45:03:98:03:d3:2c:
bd:52:c6:da:78:eb:2a:2f:04:d1:2b:31:5f:22:33:02:f8:9e:
bb:88:a9:a6:db:39:b7:7b:f0:bb:b5:94:d8:db:4b:0b:c5:2c:
97:86:38:f0:04:dc:79:53:14:2c:e3:26:a3:9d:12:4a:a6:b7:
d1:6c:af:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:47:24 2026 by rpki-client