Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft
File: OdAejKCv5BTBV-H7-1OUhnzlHts.mft (raw, json)
Hash identifier: qsPJ50CIWmjV5JbQZ7xeaGwS2QTK7Xe44cRt1zmpVr0=
Subject key identifier: 78:4C:7E:0F:A0:DF:F7:6C:14:0B:08:99:D4:9F:A7:25:93:54:E2:6D
Authority key identifier: 39:D0:1E:8C:A0:AF:E4:14:C1:57:E1:FB:FB:53:94:86:7C:E5:1E:DB
Certificate issuer: /CN=39d01e8ca0afe414c157e1fbfb5394867ce51edb
Certificate serial: 019D2884C16811213411C6A8A5BAAF184B5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft
Manifest number: 0150
Signing time: Thu 26 Mar 2026 05:01:21 +0000
Manifest this update: Thu 26 Mar 2026 05:01:21 +0000
Manifest next update: Fri 27 Mar 2026 05:01:21 +0000
Files and hashes: 1: OdAejKCv5BTBV-H7-1OUhnzlHts.crl (hash: RQ6VfKh79v27F9zzJWX6sq+7OfGV+s8ORrSKou5OhRc=)
2: QcsUaaoKRPUBylV1-Fbk0DFfN80.roa (hash: gVbE2LpxkXM42NWeJiCGY1tC1aB+7n0+0yKW+mHCt6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:c1:68:11:21:34:11:c6:a8:a5:ba:af:18:4b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39d01e8ca0afe414c157e1fbfb5394867ce51edb
Validity
Not Before: Mar 26 05:01:21 2026 GMT
Not After : Mar 27 05:01:21 2026 GMT
Subject: CN=784c7e0fa0dff76c140b0899d49fa7259354e26d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:a5:6b:b0:1c:4b:09:05:f4:70:e7:0d:c8:
5b:56:04:35:99:9d:f5:b8:3c:89:c7:ea:04:4b:c0:
64:e4:40:33:bd:18:ea:ec:27:3b:76:1d:82:3f:e5:
d8:47:4c:cc:b5:d2:03:80:26:45:66:d7:13:36:52:
38:53:0b:56:6d:26:63:34:70:f5:10:67:be:43:a4:
e6:ff:59:67:ca:f1:fd:58:74:0e:12:75:bb:2c:c2:
7d:ef:40:db:36:fe:18:11:03:7c:79:f5:07:62:d9:
49:69:82:5b:f3:d6:55:84:dd:ab:a0:95:cc:2d:ad:
70:6e:ee:72:58:9e:d7:84:5a:dd:43:4d:1e:c7:5a:
1a:e9:93:ef:e8:65:85:51:f3:cc:ad:4f:b0:fa:0f:
57:7f:63:11:95:06:c3:4e:a6:b0:ab:46:13:04:c0:
b4:c9:12:c8:9c:61:bf:5c:6a:ce:1e:0e:f4:72:06:
ef:d6:35:84:d2:df:35:74:bd:83:47:1e:6c:b4:bd:
fb:2f:1f:1a:4e:9d:b7:3c:13:66:17:8b:d0:2b:45:
c0:2b:1e:d5:14:e9:ae:c5:14:ee:2b:32:21:22:24:
8d:c3:98:d1:c9:43:74:69:02:af:83:7f:3b:a5:e7:
72:4c:50:93:03:02:50:e5:f1:06:be:15:77:ae:8f:
81:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4C:7E:0F:A0:DF:F7:6C:14:0B:08:99:D4:9F:A7:25:93:54:E2:6D
X509v3 Authority Key Identifier:
keyid:39:D0:1E:8C:A0:AF:E4:14:C1:57:E1:FB:FB:53:94:86:7C:E5:1E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:a8:f4:c1:0b:05:f6:14:0b:b4:26:99:09:a7:9b:ae:36:27:
10:0d:19:aa:3f:1c:fd:7f:0d:ae:64:60:41:33:da:10:77:36:
cd:2e:c0:96:95:c9:57:bc:7d:cc:79:9d:e0:f0:fb:64:10:3e:
22:a6:48:a3:06:08:f0:cf:32:60:52:e6:81:c5:43:97:b5:75:
f4:dc:4f:8b:16:75:8a:81:e3:78:7e:dc:16:28:b9:89:35:4a:
91:48:9d:81:28:06:d0:12:b2:29:20:94:5b:4d:57:4c:a8:ce:
ce:00:a5:a7:af:68:43:f2:f7:6a:60:a4:62:bc:c2:19:31:85:
3a:c9:95:b6:08:b9:a9:01:52:17:da:32:73:37:3f:31:fc:2f:
93:c6:fa:a2:55:0e:b3:1f:f1:ac:b8:74:12:40:ee:67:7b:40:
12:28:31:2e:b0:98:03:65:f1:fb:07:49:a4:69:2b:69:34:62:
3f:8e:99:ed:85:93:8d:73:98:8c:77:07:5f:2f:c4:b6:1b:d9:
20:f7:3b:09:75:a9:67:0b:b9:3d:4c:2b:09:3b:c1:a6:6a:ca:
76:75:fa:ea:94:12:b9:58:f2:7c:84:a4:36:7b:ba:1d:dd:0e:
47:d6:8a:46:5d:e4:8d:02:ac:65:94:fd:ea:f4:1a:26:e8:d9:
fd:77:fa:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:55:27 2026 by rpki-client