Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: gHZ9iZYGWMhr0PdmLz9WsHgdwGEY6nJ2z5z+744UU3A=
Subject key identifier: FD:2E:D1:80:C5:74:A0:4E:84:8A:1F:DE:EB:62:37:0A:6E:1E:3B:7A
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 019D2C60AD2DEB9FE7D3FCCB8F7F36DBE873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0A9B
Signing time: Thu 26 Mar 2026 23:00:26 +0000
Manifest this update: Thu 26 Mar 2026 23:00:26 +0000
Manifest next update: Fri 27 Mar 2026 23:00:26 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: Glx4anj4PvEdAU1uMOR90AmjywuzcyNSNkABrsXUDhw=)
2: UlsTdR6iXILlELiEa_LKJSYv9dE.roa (hash: TsAC0FSS4xzyyilfdtL8K8wERh4UskS3qmNYtY3fKi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:60:ad:2d:eb:9f:e7:d3:fc:cb:8f:7f:36:db:e8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Mar 26 23:00:26 2026 GMT
Not After : Mar 27 23:00:26 2026 GMT
Subject: CN=fd2ed180c574a04e848a1fdeeb62370a6e1e3b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:0e:b9:11:85:2b:ae:f1:a1:dc:cf:3b:95:
b7:d1:bc:f7:00:27:42:6b:1d:e0:11:f4:46:75:c5:
9f:56:53:56:c9:6a:ab:8f:80:78:08:74:e4:93:f3:
66:f0:e8:71:80:9c:72:e4:4e:56:34:26:e7:0f:16:
f5:65:71:7f:c6:47:93:df:7c:ce:fb:4b:eb:1d:b1:
d4:6c:53:92:22:f2:85:bc:e7:1b:3c:76:9d:35:c7:
bd:74:59:85:48:35:98:51:56:fa:43:92:cd:c4:19:
21:4b:23:ba:34:9e:61:e0:54:54:bb:4e:48:57:10:
e6:4d:c4:54:79:6d:80:c7:a5:df:59:86:0b:fd:13:
fc:b2:5e:c4:91:b7:d0:d4:cf:64:ab:60:19:43:53:
36:cc:e0:91:61:3e:6e:77:25:43:9e:db:0d:84:d3:
a2:15:4f:6e:16:30:3f:0e:42:33:64:f6:e8:01:eb:
51:4f:33:f1:fe:32:4b:e7:78:9f:23:25:71:56:4b:
a6:45:e7:6d:24:40:94:8c:d2:93:f7:9a:38:1d:f5:
5f:34:05:44:34:6d:8a:b1:71:69:8c:3c:ef:75:86:
7d:4b:12:a4:7c:51:5a:9b:65:70:dd:81:fd:7d:97:
75:93:ae:76:c0:83:ec:ef:a8:9a:24:aa:dc:8e:b6:
e3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2E:D1:80:C5:74:A0:4E:84:8A:1F:DE:EB:62:37:0A:6E:1E:3B:7A
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:90:b9:e7:ee:69:52:f6:93:0d:30:fb:23:f5:bb:e7:a7:fc:
75:f7:2d:60:ef:e5:4d:c4:88:b7:81:0f:0a:c6:76:43:ce:3b:
dd:f8:9d:cc:b2:e3:25:39:48:49:86:18:5a:22:88:b4:63:b8:
c1:d7:df:9d:cd:16:6e:13:7d:8e:08:78:eb:88:ab:63:20:47:
95:7c:e9:96:b4:c6:4f:61:ba:4e:dd:26:dd:8d:86:99:f8:0f:
5e:12:9f:f4:5e:e8:81:b5:38:62:90:9f:7a:c1:52:f0:f8:ec:
17:3f:b1:31:2b:7e:bd:8f:2e:3b:22:fd:16:50:84:d7:23:b2:
cb:c5:1a:53:58:50:c0:da:74:d1:f9:9b:12:95:e8:3c:8b:02:
ac:98:48:d8:1e:4a:60:3f:ff:7c:e8:78:fc:3d:e9:eb:26:1d:
ca:8a:d3:22:cd:f1:ce:4d:64:ca:b9:11:19:d3:5a:04:b8:c3:
8d:f3:23:fa:2a:3f:4e:82:50:e0:96:bf:2b:ae:0f:8f:86:71:
98:40:b2:cf:8b:e7:03:37:20:3d:18:b6:29:29:3d:bb:a0:32:
32:16:2e:c4:e5:eb:ed:69:bc:31:d6:63:2a:4d:4c:ee:6f:43:
85:11:47:92:63:ab:19:05:2d:a8:09:13:a0:dd:c2:64:17:88:
8c:ce:c5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:56:59 2026 by rpki-client