Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: RIi4XJp05NqqfwnKewf6mdPZiN9HJFBttGAMxsnGW2s=
Subject key identifier: 2D:AA:35:96:3A:25:4C:E2:DC:F9:D5:02:F0:A7:08:53:29:44:38:47
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 019D265F1C1AC4038DDE497C29260FC73028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0F68
Signing time: Wed 25 Mar 2026 19:01:00 +0000
Manifest this update: Wed 25 Mar 2026 19:01:00 +0000
Manifest next update: Thu 26 Mar 2026 19:01:00 +0000
Files and hashes: 1: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: eQwPcnSDu7vAzHOn5fig0/WqcTmY2Nu4abMpabk0eOE=)
2: etED6K0Bs3O83m7tnMviEpCCv3s.roa (hash: mSfzIWvqw8wBOviQQ25BRfy+WgkAD9TswxPf1xc86M0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:1c:1a:c4:03:8d:de:49:7c:29:26:0f:c7:30:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: Mar 25 19:01:00 2026 GMT
Not After : Mar 26 19:01:00 2026 GMT
Subject: CN=2daa35963a254ce2dcf9d502f0a7085329443847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c9:90:27:49:35:ee:fa:10:d8:81:bf:76:9a:
92:4e:54:b4:16:f7:6e:4b:6d:f8:58:1a:e1:03:84:
e2:28:c1:4e:c4:ac:1a:0b:d6:14:a4:c5:ec:ae:38:
96:c0:a9:d9:8f:9f:cb:de:b9:ed:85:b1:06:5c:a6:
a4:ae:71:83:07:e4:5d:47:19:da:b5:df:9d:7f:a9:
5d:2c:63:30:e8:08:41:8f:f5:7d:ab:33:5d:6d:97:
0c:a7:98:1b:d2:26:f4:10:7d:a6:4b:bf:ef:1f:97:
d7:7d:81:77:ad:eb:22:42:3e:af:c1:27:5e:e4:50:
d3:be:f6:f6:18:06:22:69:8e:b3:04:e8:40:fa:dc:
71:5d:73:ab:8c:61:72:41:c4:0b:45:72:5b:16:c0:
a9:0d:17:8c:83:85:6f:2f:8c:3c:08:51:b9:a5:a8:
53:9e:cd:2c:a8:74:6b:f6:18:88:35:0e:a8:8b:3d:
86:ba:6f:b6:21:b1:60:8f:c3:19:df:c6:5c:b3:09:
08:9e:d8:49:41:fe:0f:58:dc:1b:97:08:5a:7c:3b:
89:08:25:50:d4:1f:ff:59:5c:b3:16:44:c6:d5:67:
d8:30:0e:e2:91:6a:64:10:a3:d6:47:80:53:2b:e7:
5f:ac:6a:4b:96:66:38:86:41:b7:fd:91:49:b2:79:
2d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AA:35:96:3A:25:4C:E2:DC:F9:D5:02:F0:A7:08:53:29:44:38:47
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:2b:da:13:07:35:25:43:82:bb:d0:a0:c7:50:93:1f:34:38:
0c:8f:65:39:60:97:9c:89:66:db:dd:23:57:11:bc:f8:1d:7b:
51:f7:82:ca:5b:c9:4e:86:be:6d:2a:46:db:24:15:f6:a8:98:
f8:ab:d6:29:70:ea:61:4c:91:e6:18:f2:52:52:cd:39:e2:75:
a3:98:6e:8c:e2:14:57:d0:e6:f7:eb:37:2f:97:67:06:51:7a:
6d:f1:db:8e:fa:53:40:79:c5:70:4b:83:cc:54:6d:e1:b9:a4:
e5:cb:ee:33:2e:78:3a:5e:ed:74:32:c0:66:f5:d8:2e:87:97:
18:3d:1d:7d:2f:9f:7b:12:64:82:74:cb:20:84:45:88:db:2d:
da:e7:56:2a:d2:80:34:15:b8:a7:da:af:1f:54:d2:68:50:53:
f9:9d:63:c3:8e:a6:4c:c3:49:54:c0:31:04:3f:bf:8e:7b:17:
35:7b:cb:d7:46:80:05:96:1b:f0:65:c5:34:fa:1c:04:34:36:
a7:50:df:da:0d:5a:3e:6a:db:6b:c4:90:04:79:b7:55:4c:7f:
42:93:f4:ef:fe:33:da:58:fd:c3:0a:bb:8a:30:4c:a7:e6:26:
ed:c4:35:06:40:03:d8:ab:cd:23:e6:ab:bf:f5:5b:61:ca:98:
31:05:9e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:07 2026 by rpki-client