Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: 41LWTeACwnws0T7Q/E8TWdFk9gZuu3bcpBpQ/nhyJaE=
Subject key identifier: 28:6E:88:CA:31:E0:1F:58:29:DC:87:37:49:78:D7:33:6E:2D:56:E4
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 019D27E05BF63A6E0899A6DF80EF6EB28409
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 074C
Signing time: Thu 26 Mar 2026 02:01:48 +0000
Manifest this update: Thu 26 Mar 2026 02:01:48 +0000
Manifest next update: Fri 27 Mar 2026 02:01:48 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: pmbefnIrInggz1r88C/otznp30oyHByKZwmk69C+2IE=)
2: fNqRbWyjIOtwuzHNSk9Hs2wT9kI.roa (hash: TAPoBqnNsjTw5YArcEk7ui0KobVxF5Zv4qTLQwSW0tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:5b:f6:3a:6e:08:99:a6:df:80:ef:6e:b2:84:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: Mar 26 02:01:48 2026 GMT
Not After : Mar 27 02:01:48 2026 GMT
Subject: CN=286e88ca31e01f5829dc87374978d7336e2d56e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:05:d0:56:62:1d:8e:d9:9c:f5:c2:1d:d9:b2:
e6:c5:1c:94:64:b9:33:ed:c0:f6:6b:b6:43:0e:81:
83:9a:41:18:03:9a:86:ed:0f:8a:77:e1:b8:ea:ec:
c9:9c:9d:4a:57:f3:b6:66:75:88:a5:17:24:c8:f6:
86:42:3d:87:31:9e:0a:8e:df:69:76:4f:0c:7e:bb:
b8:0d:ba:5f:da:aa:4f:f1:2b:75:3c:41:1d:a2:ce:
07:59:4c:8f:12:a5:2a:6e:ed:e2:3d:35:3d:23:4f:
e6:19:52:07:40:12:99:7f:d4:99:04:ae:f3:5d:58:
2a:49:16:79:ea:04:f2:27:bd:ed:57:e1:fe:97:4e:
6c:e9:f7:f6:04:4a:83:db:c3:3b:70:98:13:c1:4f:
4e:6d:20:cb:b5:56:c2:d7:e6:0b:19:a4:74:89:78:
37:73:47:f6:d7:94:c5:4e:53:af:55:1e:e7:fa:36:
ba:75:44:cb:24:a5:34:92:e1:3d:26:e7:af:f2:85:
c7:bc:54:4c:9a:23:e1:11:60:d2:9f:cd:07:65:24:
64:6d:45:da:05:9a:44:66:5d:a2:29:50:92:de:0c:
be:a8:a9:aa:4c:f6:d5:da:eb:e8:34:76:53:46:14:
41:16:01:21:5d:c3:79:93:b5:86:8f:c5:6f:64:34:
2a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6E:88:CA:31:E0:1F:58:29:DC:87:37:49:78:D7:33:6E:2D:56:E4
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:65:27:82:a0:40:b7:d8:17:6a:05:c2:5a:47:f0:d5:73:96:
97:21:0c:e5:a2:e8:54:a5:0d:09:59:94:71:ca:f8:00:28:96:
b1:f0:57:a4:0b:a8:62:3c:ef:9b:47:47:50:fe:20:81:95:7a:
67:95:e2:1a:57:42:e5:5f:72:35:d2:29:44:51:13:2f:7a:e2:
20:ef:5d:53:ac:41:b7:f1:36:85:bf:99:fc:4b:3d:ed:14:58:
78:86:6e:5f:5b:06:53:8d:20:4c:94:f5:ee:99:7d:72:d9:ae:
42:e8:7b:6d:1e:38:11:80:36:6b:d0:19:f2:de:42:f2:89:78:
16:2f:06:17:27:0a:18:3b:d3:e3:44:8a:13:1b:d0:3f:c5:ac:
b0:12:d8:03:08:96:b7:d1:41:35:fb:09:b3:41:51:db:00:ee:
d7:30:2d:8c:24:34:f1:87:bf:f7:87:6a:8c:a4:0a:43:fc:fe:
fd:d8:3d:1c:6b:1d:53:25:f5:31:0e:56:c4:51:8e:8f:6a:dd:
80:d6:b9:c6:31:33:4d:82:29:67:a4:0a:00:57:f9:05:aa:3f:
e0:55:89:4c:5c:91:9d:cb:3c:03:7d:fc:3a:1d:58:d1:4e:d4:
c6:42:4c:24:d9:0f:75:eb:a4:77:29:50:32:af:d5:c2:82:74:
9d:4d:a1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:38 2026 by rpki-client