Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: Fl5vJiai8M/6wq1CmtXpEvlueV7NEY+hLLECsSntNaU=
Subject key identifier: 89:F5:97:D2:5C:19:E4:28:72:1B:46:9C:09:99:7B:83:D8:03:DE:47
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019D25F1FC56858F6DD66FA1C7923E00AACB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0850
Signing time: Wed 25 Mar 2026 17:01:48 +0000
Manifest this update: Wed 25 Mar 2026 17:01:48 +0000
Manifest next update: Thu 26 Mar 2026 17:01:48 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: JVil3e4S6etJrj3O8XDY4V9y1wURL/jjnzvhQBtZbfk=)
2: PMdpUUy3N8aucFQis2EHtpFZuIY.roa (hash: 4gf7AvqhQ7Z0YpFJcEQijaezm8f7LNn2p+OXg9bnpFY=)
3: y2_r5sbY9Lv_uRDh7BVz6TP_Rqk.roa (hash: elggw6C3t4Wz+4yMu7U0O34nBVY/GyhPWM7xDo4hWNU=)
4: z1DkqtK6bhv2xKbEFbpfSZsh_Yg.roa (hash: x3T0qFMVxxd2FdR3A4LaLQ4+c2t85rP2XyfqD4Q6wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:fc:56:85:8f:6d:d6:6f:a1:c7:92:3e:00:aa:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Mar 25 17:01:48 2026 GMT
Not After : Mar 26 17:01:48 2026 GMT
Subject: CN=89f597d25c19e428721b469c09997b83d803de47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:f3:fd:ae:da:ff:8a:46:ef:ad:50:52:8f:
d4:03:d7:05:5c:6f:d5:f9:9e:69:9f:e7:b2:6d:a7:
b6:ed:3f:15:e2:2e:38:01:98:68:1a:86:f7:1e:8e:
f8:18:04:fb:85:f8:fb:55:22:86:5f:ca:a7:5e:6f:
fd:56:01:59:dc:8c:37:35:67:20:b7:84:26:29:d9:
b5:31:22:79:b3:38:65:7f:9a:40:22:5a:8f:fc:76:
fe:c3:50:64:03:18:d9:04:c2:fc:37:db:7b:32:13:
69:65:98:c9:e9:e9:5f:6d:74:ca:f3:c7:81:f7:ee:
9e:59:b8:55:1c:f7:92:d7:b0:62:c7:81:67:31:4f:
92:9f:81:e1:3c:28:29:66:08:49:29:66:44:b5:df:
91:79:7b:54:2a:67:13:39:5e:52:03:fd:39:32:78:
a4:9c:0e:9c:b3:55:e0:b0:00:7e:c5:c2:97:e1:ef:
5b:8d:52:99:64:1d:a4:0c:d4:ab:f5:1e:f7:ed:65:
df:c4:21:92:14:6f:ac:6c:83:81:7e:83:20:a4:7e:
a4:8d:f6:a3:68:72:ee:83:c3:88:5b:8c:34:42:3b:
92:9b:b2:af:61:b8:a7:3a:94:d9:bd:99:29:bb:35:
38:d0:12:40:05:39:6d:9d:ca:af:5b:9b:82:9a:f9:
90:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F5:97:D2:5C:19:E4:28:72:1B:46:9C:09:99:7B:83:D8:03:DE:47
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:85:8a:54:4f:54:0e:91:fd:21:c3:18:55:b0:2d:65:20:fe:
b9:f5:b7:3a:61:3c:53:11:e8:e2:58:34:e2:89:94:2d:79:22:
4c:0f:3f:77:28:80:0c:5b:f8:b3:f7:6c:f0:8d:5c:2b:11:dd:
83:c5:1f:06:15:56:fa:38:d9:f3:74:6d:a7:a5:96:95:b4:76:
c3:92:d5:83:24:c1:e1:0f:a6:73:17:9a:e3:0e:62:cc:91:ed:
77:fd:fb:c2:08:6a:57:60:69:1f:d3:5a:60:e3:7f:64:b4:c6:
6e:bb:52:42:b6:ad:bf:7e:45:a2:b0:f1:83:67:3a:74:a0:7c:
99:d8:ce:d9:98:e7:72:8d:15:35:38:88:ad:80:aa:5d:0b:aa:
84:4b:26:6c:3e:f3:1b:a4:82:41:db:38:93:da:ad:ee:8d:4a:
93:0c:d7:df:8d:13:12:fc:1c:2c:78:8d:5d:20:b1:d6:97:7c:
5d:56:7b:cb:22:ce:e5:ac:6b:ff:80:f9:a9:06:3a:ce:99:0b:
83:9f:35:cd:46:60:2d:e7:0a:05:f0:cf:1e:13:12:a4:86:b8:
e8:c7:5d:e3:b0:e1:54:0e:84:49:00:0b:b7:94:c6:79:ee:de:
02:45:98:5f:4d:2d:94:21:77:20:25:ab:66:67:45:70:e6:44:
23:59:c0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:27 2026 by rpki-client