Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
File: OhoMABa5sz-T6Kejk9CRkNXhhJk.mft (raw, json)
Hash identifier: lyryQ1hx3uG5pl1v2PANEYaPBNQjCgve+MlCr02iAPo=
Subject key identifier: 3C:B9:B7:B7:4E:B8:9E:31:E4:3E:B8:63:72:30:2B:08:87:F0:A8:55
Authority key identifier: 3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
Certificate issuer: /CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Certificate serial: 019E20C898C5606404CB69B1462DCD81BCA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
Manifest number: 0EDF
Signing time: Wed 13 May 2026 10:01:17 +0000
Manifest this update: Wed 13 May 2026 10:01:17 +0000
Manifest next update: Thu 14 May 2026 10:01:17 +0000
Files and hashes: 1: 45gfhpJZ3iP87aZz2FMKvnMEh6s.roa (hash: aLw8J27Q+seOL2Fs5LjCfydMw9YG+QyzWZaIPCmtZ80=)
2: OhoMABa5sz-T6Kejk9CRkNXhhJk.crl (hash: SH+/beT8FpvJdG3J6O2u8I4vzWACVLZbWVxVo/1XiLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:98:c5:60:64:04:cb:69:b1:46:2d:cd:81:bc:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Validity
Not Before: May 13 10:01:17 2026 GMT
Not After : May 14 10:01:17 2026 GMT
Subject: CN=3cb9b7b74eb89e31e43eb86372302b0887f0a855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:32:01:2a:c0:03:86:43:84:a5:66:09:f7:a6:
4a:e4:20:02:40:56:58:fa:ec:6c:68:b3:c2:06:b7:
83:cb:87:88:09:51:8f:ce:45:fb:51:56:47:19:ff:
55:db:42:32:f8:6b:4e:bf:c8:1c:ad:c7:6f:19:5a:
b1:a0:ee:4e:d2:ef:65:4c:e2:92:4a:a9:89:ba:5d:
92:93:f6:e2:88:92:51:f9:96:2e:5d:6f:dd:61:1c:
0b:95:34:b6:45:a5:9f:5c:8e:c6:1d:6a:eb:f5:f1:
69:62:32:c5:eb:e5:e6:9f:fb:6b:b7:61:27:cb:56:
ee:e7:18:4c:4e:d0:f7:40:2e:73:6b:06:2d:a4:b0:
84:ca:a9:ee:77:c5:97:20:10:61:56:fe:49:91:5f:
31:3a:88:69:2b:1d:a7:9e:f7:f2:ac:85:be:98:3e:
40:45:25:93:ca:81:1c:ac:34:22:c1:d6:ac:84:98:
6d:8b:fc:8f:67:44:ce:e8:65:db:c5:ae:c0:2e:39:
22:10:49:9b:43:6d:97:26:ab:57:03:89:85:83:1b:
55:06:fe:0c:32:54:34:61:8b:7c:25:98:c0:74:50:
e3:3d:8f:95:09:42:a2:ae:33:b5:28:8b:de:18:8a:
b9:3c:a4:ad:43:6d:c5:80:30:78:72:9e:f1:ab:4a:
cd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B9:B7:B7:4E:B8:9E:31:E4:3E:B8:63:72:30:2B:08:87:F0:A8:55
X509v3 Authority Key Identifier:
keyid:3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:8f:6d:0f:01:8c:94:ce:1d:79:dc:24:f3:77:fe:b4:2d:5c:
14:42:8c:e0:5e:27:e0:be:05:f8:81:c5:8b:e3:d7:c1:eb:0a:
1d:5d:45:ee:41:4c:84:b8:b0:d2:cc:02:94:72:49:eb:40:e0:
7c:56:34:10:e7:7f:15:4d:0d:67:15:ce:3f:41:d9:1d:93:a8:
94:8d:3f:b1:6a:bc:19:47:4a:e0:f6:98:1e:e4:40:60:71:93:
71:bb:62:3e:6d:9b:d2:a7:9e:dc:36:7d:51:ba:0f:a5:08:e3:
75:1e:17:4b:ae:e3:a7:c8:f1:7f:a7:6f:fb:eb:e9:f3:30:81:
26:5d:b4:ae:05:9d:2f:f6:59:fe:2f:dd:3d:c3:b1:90:6a:2d:
22:84:d9:4f:af:12:67:40:95:72:44:2e:84:8b:93:5b:f0:ed:
84:7d:9c:90:a4:fb:a3:d2:61:3d:2f:52:7d:15:45:bd:59:ed:
6e:a8:45:e1:69:1b:8a:8a:cb:45:d6:80:db:d1:43:19:64:2f:
a5:d2:53:9f:ae:3b:46:57:13:f6:e1:6e:e2:8e:9a:3f:a4:9e:
75:33:64:ca:3f:93:8f:22:fa:0b:00:4e:38:39:ca:99:19:60:
79:6d:5a:e2:b1:c2:c8:24:42:c9:1b:a9:5e:0e:8b:cf:01:c4:
21:94:52:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:22:30 2026 by rpki-client