Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: sR4t6nNHJ14wWVpWOVbW++VMQudTTFgMasxS3xOXvWE=
Subject key identifier: 65:14:12:A3:57:62:DA:5F:E1:88:E5:80:40:04:6B:53:3E:F6:D6:EB
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 019D2A724B9F1686BB15AD9E6121677D6263
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0A9A
Signing time: Thu 26 Mar 2026 14:00:26 +0000
Manifest this update: Thu 26 Mar 2026 14:00:26 +0000
Manifest next update: Fri 27 Mar 2026 14:00:26 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: fKUygvSUbJpL8wVgiHoVNOCwjPKZfrfVUIgXqjTeoHs=)
2: UlsTdR6iXILlELiEa_LKJSYv9dE.roa (hash: TsAC0FSS4xzyyilfdtL8K8wERh4UskS3qmNYtY3fKi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:4b:9f:16:86:bb:15:ad:9e:61:21:67:7d:62:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Mar 26 14:00:26 2026 GMT
Not After : Mar 27 14:00:26 2026 GMT
Subject: CN=651412a35762da5fe188e58040046b533ef6d6eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f9:0c:b9:dc:16:e3:01:62:86:47:84:a3:14:
e4:93:3b:b3:7f:f9:22:30:27:4c:da:6b:00:c4:f0:
9f:db:18:0c:5c:c0:e3:6e:80:cf:58:14:86:7f:87:
dc:3c:97:ba:9d:ce:81:f6:b8:60:0d:d4:ef:41:95:
39:aa:75:c2:ab:fb:c0:81:e5:f9:a9:55:81:84:a2:
3e:ff:a7:32:44:03:94:51:fb:33:c8:f7:ec:c6:69:
36:f0:8d:ba:86:99:68:cc:e8:3f:93:2e:3b:9b:69:
57:2e:33:d2:a1:d0:f3:ab:13:c3:fd:9a:34:e3:eb:
b6:2b:31:13:f9:59:e4:05:47:c1:38:61:31:b4:4f:
ff:91:51:bf:0a:5d:26:a9:b5:ea:ba:4f:ab:ee:fd:
6d:b0:3d:cb:6d:60:5b:22:e5:5c:d9:06:87:1d:31:
8d:35:41:0b:16:ca:b4:af:d4:38:1f:d6:38:35:1c:
f3:c8:06:4e:33:69:dc:df:65:55:ba:a7:64:2e:5f:
e0:cf:d0:33:d4:eb:ce:32:93:5e:57:89:00:db:c2:
8e:fb:d2:fc:9c:c1:ec:f3:97:3c:a8:7c:a6:58:b2:
d8:2f:87:bd:b6:1e:1d:83:8b:c4:31:70:b5:3b:a6:
e7:89:87:4a:63:2d:c5:83:4b:c7:aa:e2:87:ce:c0:
81:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:14:12:A3:57:62:DA:5F:E1:88:E5:80:40:04:6B:53:3E:F6:D6:EB
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:e4:15:1f:6b:6a:2b:b8:3e:bc:71:a4:5c:7e:71:53:5a:57:
df:2f:6b:7c:a0:d4:89:1b:b8:70:84:8b:65:e0:77:97:8b:eb:
c7:3a:ae:7a:13:57:72:e5:7e:9b:53:a9:7c:45:bc:bb:cd:31:
05:ff:ef:85:52:ce:cb:8e:fa:29:84:3a:7a:b1:cc:61:4f:fc:
cf:49:8c:2f:c8:99:b2:fc:53:6e:b0:e9:92:1e:75:4c:dd:99:
18:fb:45:22:f5:7e:ff:8e:c5:69:48:b4:73:ee:cc:53:0e:d5:
60:72:a4:31:f4:e5:f2:11:ef:de:a1:9b:3c:55:3e:65:91:69:
4a:a3:c0:cb:48:05:60:b3:53:57:06:6f:49:36:a2:d8:a9:43:
df:b7:94:5f:44:58:e8:11:9d:8c:05:1d:22:70:d2:6d:be:52:
00:97:0d:5e:04:10:16:20:f6:5a:f0:0e:a7:07:e8:40:aa:e1:
aa:54:b0:68:34:2c:f6:46:3f:57:ed:c3:9e:e4:e3:3d:db:37:
81:5a:7f:ba:c7:14:ce:59:36:c6:f8:ec:48:7c:38:cf:4d:b2:
e9:9a:1c:09:46:1a:65:ca:55:15:ab:65:ce:5e:b9:87:0f:84:
ae:4a:1c:f4:79:d3:15:07:06:d4:76:79:cd:c1:66:c1:91:42:
9d:51:07:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:44:10 2026 by rpki-client