Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json)
Hash identifier: A8QLSBDVqlG/i7K1EDSFCYFDET5sEYVoancPqrPxJJo=
Subject key identifier: CA:91:9B:3D:2F:3C:A0:08:2A:50:51:D5:B8:40:C1:4E:DF:26:7D:B4
Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Certificate serial: 019D2772B500B9A9D3C67CC5695C125FC5BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
Manifest number: 15D1
Signing time: Thu 26 Mar 2026 00:02:02 +0000
Manifest this update: Thu 26 Mar 2026 00:02:02 +0000
Manifest next update: Fri 27 Mar 2026 00:02:02 +0000
Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: AYYZ/Ijyd3LWklY2FGI1JfWGIS8696pWfv3upvNaPTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:b5:00:b9:a9:d3:c6:7c:c5:69:5c:12:5f:c5:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Validity
Not Before: Mar 26 00:02:02 2026 GMT
Not After : Mar 27 00:02:02 2026 GMT
Subject: CN=ca919b3d2f3ca0082a5051d5b840c14edf267db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c2:1b:f2:72:5e:c2:5c:8c:29:8e:55:66:cf:
c7:88:c6:f5:07:24:9c:c3:08:f0:9e:82:be:4f:8e:
85:a0:a7:da:b4:cf:6c:56:86:ae:3c:5c:ab:46:85:
59:12:bc:85:82:61:8a:98:dd:cf:13:81:14:d7:65:
55:db:7d:86:3c:e7:a3:44:4c:1a:90:45:ec:d8:3c:
cc:e3:34:10:82:b5:0b:a1:5e:a9:e1:98:05:86:0c:
78:e3:aa:a9:18:c1:c2:3e:40:bf:ab:87:8e:ec:b4:
f7:99:f4:fe:e8:29:9e:85:61:a9:d1:93:72:2b:0d:
a2:b6:1c:96:e0:d7:47:dc:06:01:61:8b:8f:e6:e8:
f8:3b:68:ef:54:c7:55:cc:8d:4d:cd:1f:08:e5:5a:
a1:b4:c3:d1:87:7d:86:09:37:a7:d8:84:4e:00:b5:
bb:d5:eb:99:66:f4:ce:49:d7:a8:8f:ec:5e:53:2e:
08:e1:78:9a:46:9d:5d:69:6c:e2:bd:48:e6:21:e9:
8e:e8:fe:05:2c:91:46:19:93:ec:78:75:27:1b:cc:
65:fb:f4:43:ac:ee:d7:ae:6a:23:7c:5e:ca:83:fd:
f3:ea:55:cc:cb:45:99:db:bb:5a:78:0a:5d:37:f2:
0a:92:a8:f3:47:7e:c4:9b:a3:3a:0e:b3:dd:4d:1c:
18:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:91:9B:3D:2F:3C:A0:08:2A:50:51:D5:B8:40:C1:4E:DF:26:7D:B4
X509v3 Authority Key Identifier:
keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4d:96:91:13:1e:fd:88:55:3d:1b:7c:20:0d:5d:1e:3c:3f:
21:6e:4c:7c:51:7f:26:e9:25:47:b2:a8:48:a4:06:e5:d9:72:
d8:93:b3:2f:c2:12:74:91:cf:55:be:24:9d:df:52:9f:fb:d0:
46:49:9b:e1:5e:d4:5a:5d:22:a6:89:8a:f6:16:a8:00:22:e5:
c9:f2:f3:71:36:12:3b:1a:bb:53:10:74:bf:da:65:f5:3a:3f:
ee:45:ef:bd:04:fe:8e:6f:bb:4d:ca:ab:17:79:3b:fc:22:37:
93:fd:4f:e0:0f:26:45:a9:c3:7b:a8:78:19:55:9e:b1:20:86:
68:60:ac:37:99:ad:59:9a:54:27:26:db:30:bb:a5:07:21:16:
e8:9b:a0:38:ed:f8:b2:af:71:9f:82:47:18:a3:9a:ff:d5:42:
67:02:a8:77:0e:e4:2b:c1:4e:e6:62:4b:8f:03:1a:f4:8b:c3:
2a:1e:6b:0f:bc:e5:86:d8:9d:4b:5c:07:b5:b6:40:76:d8:fa:
ae:7d:00:20:f2:1d:5c:d0:f0:e8:20:89:e8:e9:29:06:4a:bd:
8d:b5:81:93:fc:89:31:bc:e1:c6:6d:fb:d7:88:8b:25:d0:b3:
34:af:bb:0f:eb:62:1b:34:2a:1a:c5:89:41:ce:df:e8:a5:f7:
6c:40:26:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:55:51 2026 by rpki-client