Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: Vyi+LHZee9X6AhxPrys5HCzRGNOCa+B8Xy3jHeiN98U=
Subject key identifier: 15:76:38:27:0B:14:2B:CF:C5:B3:93:76:F3:EB:D8:D2:3E:61:DD:67
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019D26CCD096BDFD1A6556E43B3A2543AE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 21:00:50 +0000
Manifest this update: Wed 25 Mar 2026 21:00:50 +0000
Manifest next update: Thu 26 Mar 2026 21:00:50 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: E/5qhCKB+4pdd1loYH9PKKAvPTeI8ELe19SIQNDOT88=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:d0:96:bd:fd:1a:65:56:e4:3b:3a:25:43:ae:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: Mar 25 21:00:50 2026 GMT
Not After : Mar 26 21:00:50 2026 GMT
Subject: CN=157638270b142bcfc5b39376f3ebd8d23e61dd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:0e:fa:10:56:1d:0a:75:70:e0:74:59:8b:
fa:3e:e1:b8:9a:fd:42:1c:90:ae:3b:f3:b1:9a:a6:
dc:c8:2c:e8:ad:c6:4d:96:11:d8:cc:8b:3c:d8:c0:
2e:dd:1b:3d:2e:be:ef:e5:5a:e4:ff:95:eb:47:38:
c2:ab:d2:75:f1:67:c8:25:e3:91:8b:4e:c9:e2:7e:
eb:14:aa:3c:74:2c:14:4b:e6:cc:01:41:0d:e1:74:
f2:39:00:ac:5a:ac:7a:d8:55:77:57:b5:48:de:0c:
67:13:14:47:b9:a6:69:af:aa:4c:02:f5:43:17:e1:
a3:66:bf:76:7f:c7:4c:d0:9a:b1:4b:d4:3f:62:97:
85:13:1e:98:35:eb:2a:f9:66:66:9d:54:07:b3:b1:
da:c3:de:e0:5a:7b:68:e5:04:50:99:34:b0:35:4a:
0b:e9:aa:0c:da:44:ca:e3:18:16:c6:45:61:6e:02:
4a:2f:3d:bd:25:2e:f0:a5:f3:34:2b:21:0b:ad:ec:
bf:89:21:28:c4:ad:2c:e5:5f:80:9e:0e:c7:cf:b1:
c9:ce:16:18:2f:92:f3:4f:33:19:2f:95:28:a3:12:
5d:54:ae:c2:a3:93:02:61:82:5e:18:de:88:9f:98:
17:a4:ec:13:7a:84:6f:50:08:e6:77:f4:94:aa:83:
9f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:76:38:27:0B:14:2B:CF:C5:B3:93:76:F3:EB:D8:D2:3E:61:DD:67
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:22:29:c7:37:2b:06:7c:7a:e2:30:76:89:c4:64:1b:56:bc:
8e:1d:53:7f:3f:ad:2a:80:fd:54:45:4e:39:ac:19:eb:b5:4f:
b3:30:dc:83:2a:62:7c:88:94:72:eb:87:e5:c7:e2:7a:63:d7:
85:dd:ae:18:8d:f4:aa:ec:67:da:d4:ef:53:7d:36:14:70:84:
6c:c1:3c:1a:61:c7:f5:47:14:b1:4c:1f:45:06:c9:73:7d:4e:
25:96:fd:3c:dc:1b:e5:5b:0e:28:57:58:22:0b:69:f6:97:3c:
09:e5:b8:af:75:2b:a3:2d:fb:59:cd:87:45:47:97:0e:b3:a2:
23:0b:69:30:c8:f0:4a:68:4b:04:1a:4f:b8:2e:ca:33:12:01:
86:2f:78:8c:7f:6f:d7:c1:5c:3d:9e:53:84:10:72:7c:8c:a1:
88:e4:87:a0:aa:21:b3:34:d2:e6:72:51:62:89:38:1e:58:dd:
fc:fb:bc:62:d0:9b:46:37:cc:20:a9:7e:be:b7:30:6a:e4:02:
b6:42:fd:44:6d:2b:40:8c:b5:2b:43:be:a4:75:a9:b8:ac:7a:
8a:b4:c7:8d:7b:2a:18:47:75:16:fb:29:68:b1:06:b3:54:8d:
46:02:44:e9:ea:09:64:79:f1:59:c3:7d:3a:8d:81:ce:4c:f9:
be:a0:10:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:05:31 2026 by rpki-client