Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: lPHmCsr7Iz/zX/lHi3s2052UMtONc3OClRNpUGa87z8=
Subject key identifier: 90:7B:8B:5D:79:AA:A7:EE:B4:CD:31:58:DE:06:23:AB:17:6B:38:04
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 019D27A91C1DA668D9D358E7B0E03EA07893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 01:01:27 +0000
Manifest this update: Thu 26 Mar 2026 01:01:27 +0000
Manifest next update: Fri 27 Mar 2026 01:01:27 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: ygZWwt/Zb+BBtp5BDGvEqQrNUw2GnotdPLJdmEeOrx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:1c:1d:a6:68:d9:d3:58:e7:b0:e0:3e:a0:78:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Mar 26 01:01:27 2026 GMT
Not After : Mar 27 01:01:27 2026 GMT
Subject: CN=907b8b5d79aaa7eeb4cd3158de0623ab176b3804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7a:91:5e:8c:87:35:c3:67:0b:b3:7c:a7:9a:
24:8b:f5:87:07:94:4d:f7:78:1d:88:98:55:a1:c1:
70:5a:41:01:cf:34:20:7b:65:08:77:3f:5c:4b:40:
9d:a1:d9:86:38:2d:2f:17:1c:8d:f1:f8:a3:ab:c6:
98:1f:e5:5e:bb:1c:e6:00:c0:fb:7d:3e:50:f0:17:
28:f6:6f:90:aa:bb:22:95:0c:00:e3:a2:97:0e:b5:
c9:de:04:e2:a7:2a:0e:ca:c4:59:5c:2c:4f:de:7d:
99:ef:3d:94:17:e5:91:20:fc:aa:5f:a8:9c:36:92:
5f:5b:0f:2b:5c:1b:4a:d2:32:e9:73:04:0a:c6:8c:
dd:6f:a8:1a:15:d1:1d:1a:4a:37:29:8a:27:e5:c3:
66:01:01:c6:dd:50:23:7c:37:94:40:57:80:0f:6f:
0d:e5:2e:2b:12:e0:8b:cb:b4:fe:bf:74:41:a3:0d:
06:e5:f2:84:92:fe:fd:84:75:f2:3f:30:5d:3e:ce:
de:ad:e7:3d:de:b8:d8:5e:1f:d3:9c:df:27:58:15:
70:63:c7:d8:e2:9d:50:7e:0c:d6:c1:41:11:3d:9b:
c5:59:dc:7a:d0:6b:8a:9f:ad:36:e3:cb:f9:77:e5:
99:45:7d:c0:5c:b2:1e:8f:45:af:6e:b7:86:57:75:
52:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:7B:8B:5D:79:AA:A7:EE:B4:CD:31:58:DE:06:23:AB:17:6B:38:04
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:68:c1:0a:70:58:41:0b:77:31:77:15:4c:b5:8d:1a:ce:d1:
b5:dc:81:2f:82:e0:43:af:a3:88:64:31:fd:f4:4f:a2:46:83:
22:f5:e3:81:a2:2f:4c:f6:ff:44:65:84:e8:9e:e5:c4:e9:6b:
0b:a9:94:98:fc:0c:94:d8:bb:e1:87:94:3e:df:f7:af:6f:8c:
e7:7c:a8:0e:77:20:71:0f:2a:39:dd:16:10:2e:c4:94:3c:97:
6a:cd:04:f0:f4:11:6a:35:7b:4b:cf:72:cb:10:41:5d:b9:b9:
66:4f:bf:17:38:3a:91:25:76:86:86:31:5f:6f:f0:da:cd:de:
21:3b:3a:c0:ee:06:02:92:4c:b4:c2:a8:da:7b:4d:04:eb:2b:
d5:17:01:76:30:9a:55:ef:c7:c7:c3:80:09:93:64:f1:0a:7d:
11:3e:8c:91:9a:1d:bf:8f:7e:94:91:15:5a:37:27:35:08:8f:
84:32:94:c6:34:69:4f:9b:4c:6a:ad:6d:cc:73:44:4c:f1:ad:
7f:fb:d6:01:a7:27:16:ef:d9:21:03:ea:ce:58:3c:da:e1:d4:
90:03:8d:94:ac:32:2f:db:d5:14:e4:39:3e:f2:11:d4:c4:37:
e2:45:d5:2a:86:d8:42:da:40:52:ed:a9:2c:8e:45:c3:72:29:
d6:7e:d9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:54 2026 by rpki-client