Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft
File: OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft (raw, json)
Hash identifier: cOaIn5o8MHRfcRnHLAggS722rfN0lfgh8dRNh4A/xf0=
Subject key identifier: 19:D7:4D:3F:1A:C7:C3:9E:24:4A:C5:75:2F:D3:C3:59:38:5F:C0:F2
Authority key identifier: 39:F8:73:CD:39:39:20:3C:77:8A:8E:AA:F1:68:3E:94:64:AC:34:00
Certificate issuer: /CN=39f873cd3939203c778a8eaaf1683e9464ac3400
Certificate serial: 019E1D2304E1122EBFB6A9F31290EA76B281
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft
Manifest number: 0483
Signing time: Tue 12 May 2026 17:01:34 +0000
Manifest this update: Tue 12 May 2026 17:01:34 +0000
Manifest next update: Wed 13 May 2026 17:01:34 +0000
Files and hashes: 1: OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl (hash: jRf+qWezG4bHHe4ZCQQaqGgQDD1o3atsEDHymGoYV/8=)
2: XO3NtH2XUUrbu3EZOVQJj7vU_gU.roa (hash: uxHwXjPpL13fWGLwP3WFIzZ1V+yUDv8CRXMBodsfHIc=)
3: aiiRtiYyMK2pR69dLCHHrDF9gJE.roa (hash: GHDYFSzrpoLIOpX6iS/EkCdY5TaFBOcxhHWzm9AoCPo=)
4: eXXm1Ulp8umzvbta5fLxp-PY-MY.roa (hash: crFjalMvsl9i/+rOJNU/pdcqz+sZdkcxyLZdz71JwLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:04:e1:12:2e:bf:b6:a9:f3:12:90:ea:76:b2:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f873cd3939203c778a8eaaf1683e9464ac3400
Validity
Not Before: May 12 17:01:34 2026 GMT
Not After : May 13 17:01:34 2026 GMT
Subject: CN=19d74d3f1ac7c39e244ac5752fd3c359385fc0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f8:67:96:68:8b:cd:cf:00:64:9b:b9:8f:4e:
e9:20:92:ac:41:04:96:d7:74:ad:38:9c:48:30:11:
ae:6a:49:60:4c:12:40:65:2c:e3:d8:37:6b:c3:e8:
e4:da:e8:c3:f4:a8:e0:25:14:df:3c:78:f4:70:ca:
94:6c:1b:b2:a8:91:6c:35:e5:03:07:9d:04:b8:b2:
7a:eb:43:35:5d:7a:60:69:b6:df:ed:10:c8:f9:ec:
67:56:e2:a3:d4:d9:d9:09:85:3a:7c:81:75:55:68:
6b:9b:83:bf:12:22:4e:a9:f9:ca:60:2b:40:4e:2b:
5c:4f:2e:84:9d:15:a4:a3:fd:b6:9a:cc:0b:f6:23:
b5:71:dd:b6:bf:11:83:d3:6e:46:2e:28:55:8f:c3:
37:06:63:94:9c:01:6c:13:46:09:4c:16:66:2e:fd:
95:4a:70:a9:f8:bc:45:63:7b:3c:f9:2f:d8:60:d4:
4d:ae:f1:c5:34:db:74:24:a6:c5:e6:f4:fc:56:18:
67:4d:1e:dc:a0:22:13:b0:27:44:9b:b4:7d:0c:1b:
a6:15:79:50:97:4f:39:f1:a4:74:64:46:8f:d6:72:
dc:09:ad:68:48:0f:5f:0d:1a:55:80:23:f2:00:e4:
09:a1:07:1d:95:a2:4f:92:5f:64:c1:6c:27:60:5e:
d9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D7:4D:3F:1A:C7:C3:9E:24:4A:C5:75:2F:D3:C3:59:38:5F:C0:F2
X509v3 Authority Key Identifier:
keyid:39:F8:73:CD:39:39:20:3C:77:8A:8E:AA:F1:68:3E:94:64:AC:34:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:b4:79:45:a1:e1:df:8a:dd:54:dc:f9:d1:20:70:9e:44:86:
c0:24:40:02:2b:0c:9e:23:7b:78:54:e8:9c:2d:98:f3:21:c8:
b8:73:2d:a5:41:d3:71:4b:a2:c9:b3:f6:e6:a4:f9:67:a2:90:
02:9c:75:f3:94:12:11:23:ae:bd:5c:1c:54:a4:27:6d:c6:80:
ff:f4:71:d2:86:a3:e4:26:37:c3:a2:c0:fa:89:fb:8f:08:55:
e8:27:1c:0d:d0:6c:8c:c9:73:de:d1:70:3f:d0:e5:17:bc:0f:
70:68:a2:13:74:05:03:ca:5a:59:23:89:65:1d:8e:d0:10:ef:
41:73:d2:51:f8:2d:26:e7:be:23:ac:e5:7a:d8:a6:f4:98:49:
18:ba:f6:13:4b:e0:5b:5c:8a:2c:00:c2:e3:6f:7d:0c:5e:43:
ec:e6:96:d2:b7:50:08:ed:90:da:94:ba:41:23:07:9e:b5:04:
92:88:af:07:47:94:ed:53:9a:c5:a0:d0:0b:82:b5:ca:76:7d:
4b:24:82:2e:62:bb:81:cb:f2:49:a6:28:19:45:ea:e8:37:99:
dd:51:52:10:dc:1c:cd:c3:c7:7e:13:29:b1:7f:76:cc:1d:6c:
fe:9b:13:77:71:b5:f5:8a:55:e5:49:59:a4:fb:ce:d6:12:02:
e3:03:fe:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:08:13 2026 by rpki-client