Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: Tin3bkDK/o4Hd+f6vhE6FcNl+0SPpVWf0au31ykKGNA=
Subject key identifier: 28:FB:14:C3:19:BF:A0:40:7E:E4:1E:2C:83:05:1C:52:B7:B9:F7:FC
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019E1F109451858481FE96BEDC83BF163D29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 08D1
Signing time: Wed 13 May 2026 02:00:40 +0000
Manifest this update: Wed 13 May 2026 02:00:40 +0000
Manifest next update: Thu 14 May 2026 02:00:40 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: XyWHkgiWLyhwnqjJYjkbAN2sohiKOUPXtew/QF7y+Sg=)
2: PMdpUUy3N8aucFQis2EHtpFZuIY.roa (hash: 4gf7AvqhQ7Z0YpFJcEQijaezm8f7LNn2p+OXg9bnpFY=)
3: y2_r5sbY9Lv_uRDh7BVz6TP_Rqk.roa (hash: elggw6C3t4Wz+4yMu7U0O34nBVY/GyhPWM7xDo4hWNU=)
4: z1DkqtK6bhv2xKbEFbpfSZsh_Yg.roa (hash: x3T0qFMVxxd2FdR3A4LaLQ4+c2t85rP2XyfqD4Q6wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:94:51:85:84:81:fe:96:be:dc:83:bf:16:3d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: May 13 02:00:40 2026 GMT
Not After : May 14 02:00:40 2026 GMT
Subject: CN=28fb14c319bfa0407ee41e2c83051c52b7b9f7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:22:13:21:38:5d:90:a3:d7:4a:35:2b:c5:
a9:99:e3:01:45:92:0a:b1:71:0c:57:78:0d:f5:90:
95:65:15:9c:02:12:f3:f2:10:06:28:9a:36:e2:ca:
48:08:a0:4c:a1:e6:8e:a0:91:d9:97:0f:a5:05:68:
f0:8c:43:50:fa:40:7e:47:a6:55:3c:16:4f:8a:78:
5c:80:18:9a:f0:db:d5:15:43:d9:e6:83:e2:25:5d:
d8:75:2a:12:78:c2:f0:ca:fa:94:45:26:9c:52:b3:
31:cd:e7:f7:21:0e:e4:21:e7:67:ef:99:15:79:b4:
15:ae:27:96:d4:22:a8:e6:45:82:f5:f1:af:70:a6:
f5:40:ff:bf:d9:0a:d0:19:5e:99:d6:44:04:52:06:
68:9d:8b:d1:ea:84:19:0e:58:98:35:09:68:4b:a8:
62:ea:ff:9a:97:5b:f7:6f:8c:28:15:4d:40:98:70:
2a:45:22:1f:68:ed:bb:7d:40:4a:a5:0f:d6:96:87:
66:3a:71:b6:72:9f:e5:36:a3:37:8f:e4:cf:b1:78:
fd:68:a8:78:4c:70:39:ec:84:47:46:a3:b8:e0:70:
70:ed:64:3c:35:4c:6e:48:dd:09:a1:4b:37:dd:88:
20:c2:43:5a:ee:c5:86:df:70:7f:d1:9f:2e:7b:e5:
d4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FB:14:C3:19:BF:A0:40:7E:E4:1E:2C:83:05:1C:52:B7:B9:F7:FC
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c6:18:8e:43:e2:67:c3:34:0c:8a:28:0a:24:5b:b7:ce:68:
80:3b:f0:c2:75:7f:4b:4d:a8:67:0f:68:12:bb:1b:f7:58:48:
8d:f0:d3:2c:39:fe:dc:0f:21:45:ab:4e:50:bd:20:31:6e:3e:
d3:de:c0:f3:75:43:7c:57:c3:d6:53:66:59:89:e5:fc:bd:60:
59:c2:93:ee:c4:91:b2:ce:a9:ed:8c:c1:c5:7b:34:a6:d3:d9:
cb:3e:2e:df:ac:69:09:52:3a:b6:f9:1f:41:30:56:b6:17:d4:
6f:4c:66:79:81:4a:a8:d3:a4:ad:9a:ac:cd:10:2c:e0:01:bc:
59:f9:3b:a1:9e:58:bc:78:94:0e:10:f9:c6:44:87:1b:1a:a3:
9a:f5:12:a5:89:db:cb:c8:20:1f:73:4c:b9:64:9d:81:29:a0:
49:02:4d:f9:4f:4b:d5:ff:ef:52:b6:e1:6e:05:42:7e:a1:18:
70:2b:f5:8b:5f:38:cf:d1:db:1d:df:20:13:7b:79:3c:19:2a:
4e:93:40:93:08:ca:72:58:92:83:43:f9:81:e6:d1:c8:8c:a6:
59:7c:de:71:ad:79:b8:f9:04:56:02:62:28:e4:93:e9:12:c3:
16:56:92:ac:44:de:09:7c:2f:c7:0e:a6:dd:fb:e7:61:90:0e:
40:17:b1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:16:25 2026 by rpki-client