Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
File: oHkxBpr_ycmd5RjIJgYOGctHWmo.mft (raw, json)
Hash identifier: vbYCQ+a0YEkd9w1Nuo8gtQUCnWsM0D4krksszOvTsRM=
Subject key identifier: 00:D9:0A:B6:12:01:A8:0A:7C:03:A6:0E:0B:EF:09:0D:11:D6:B4:E1
Authority key identifier: A0:79:31:06:9A:FF:C9:C9:9D:E5:18:C8:26:06:0E:19:CB:47:5A:6A
Certificate issuer: /CN=a07931069affc9c99de518c826060e19cb475a6a
Certificate serial: 019D39AF08E481E070A03384ED4D8A07DD95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
Manifest number: 39
Signing time: Sun 29 Mar 2026 13:01:05 +0000
Manifest this update: Sun 29 Mar 2026 13:01:05 +0000
Manifest next update: Mon 30 Mar 2026 13:01:05 +0000
Files and hashes: 1: 2nCCDGIY-zgjtBGd6Ratic4BUZk.roa (hash: ypGUracRtSQozaYCuAAYU3ve4jp+TLuRdz+sdn4iE+c=)
2: oHkxBpr_ycmd5RjIJgYOGctHWmo.crl (hash: QHcn967f4f0T4cN1kIOWcSuLdG/vr3Ehz4UFETkzbMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:08:e4:81:e0:70:a0:33:84:ed:4d:8a:07:dd:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07931069affc9c99de518c826060e19cb475a6a
Validity
Not Before: Mar 29 13:01:05 2026 GMT
Not After : Mar 30 13:01:05 2026 GMT
Subject: CN=00d90ab61201a80a7c03a60e0bef090d11d6b4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ef:a4:4a:c9:2e:86:09:47:6d:35:c9:e0:d2:
c4:ae:22:48:7c:8b:8c:e2:d6:31:30:f8:ae:17:6f:
39:3e:17:cd:f8:85:62:dc:36:77:4e:f4:96:33:ee:
f5:50:04:12:a4:a1:86:a8:23:86:dd:ab:63:83:e3:
29:81:99:31:02:c9:ae:21:5d:aa:15:54:34:df:a7:
62:7b:4e:89:6b:7e:d9:85:50:25:60:1a:ca:2d:c8:
86:22:69:31:14:aa:5d:14:82:ff:a2:63:bb:12:94:
e1:b0:a2:75:00:aa:7c:25:55:1f:35:70:eb:63:e0:
c4:b5:54:72:01:46:25:78:ec:7a:b8:5a:08:9e:ad:
6e:68:84:6b:08:04:ba:0e:ee:04:03:52:3a:c8:6f:
62:20:7c:0c:b2:5f:cc:2e:a4:83:6a:49:30:ab:94:
97:bc:27:5e:aa:2d:e9:1e:01:3f:2b:46:6f:49:51:
a2:ba:2b:23:9f:8d:2c:5d:aa:da:5e:cb:e2:e8:5d:
09:7b:8e:bb:5b:2a:93:f4:11:61:6c:97:8f:b2:92:
7d:73:37:ab:3d:23:05:1e:f8:7a:f8:ce:b1:82:d6:
95:08:57:09:c6:e2:8c:d4:51:ca:34:ec:fa:f4:56:
98:24:23:6f:2a:b5:b6:7c:a7:67:f9:84:b4:95:fc:
c2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D9:0A:B6:12:01:A8:0A:7C:03:A6:0E:0B:EF:09:0D:11:D6:B4:E1
X509v3 Authority Key Identifier:
keyid:A0:79:31:06:9A:FF:C9:C9:9D:E5:18:C8:26:06:0E:19:CB:47:5A:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:b3:c2:0e:1c:ad:96:24:39:9c:d1:42:99:61:c5:64:71:5b:
c8:7e:48:c5:fa:ca:37:d7:95:c5:4b:3e:44:74:f9:b0:96:03:
7a:26:7a:ca:7a:f4:68:2d:94:d5:7b:30:78:49:f9:5c:0a:46:
2f:bc:05:6e:14:eb:8a:7f:c8:05:33:c3:06:12:e1:75:3b:95:
72:b8:20:5b:13:e3:56:62:12:76:d1:ae:0e:6b:aa:88:87:97:
f2:f2:fc:66:a3:eb:c9:c0:a0:a2:b8:5b:a6:e3:2e:78:da:7c:
10:b3:bf:c3:54:c9:e8:b4:37:c7:7c:15:77:5d:c3:06:6a:85:
dd:b2:c0:ed:8c:9b:76:99:f5:34:f8:23:d8:bc:5c:f7:b6:e8:
44:1a:21:da:b9:3d:b5:27:ab:96:6c:55:7b:07:ff:af:45:c0:
24:4e:e2:9d:8a:5a:73:3d:60:e2:f8:6f:34:10:3d:ea:98:c6:
7c:1c:6c:ec:85:cd:28:9f:21:dc:a2:5e:16:05:6b:fb:1f:e4:
55:7d:3a:d6:2b:73:4f:f4:be:17:c9:e0:2e:c1:74:8f:e4:fe:
a3:c3:d5:9a:ae:4f:b2:32:79:38:45:60:86:cf:46:e8:13:8a:
fc:a1:41:5f:7f:b8:fb:7f:36:a9:53:81:49:b7:2d:b0:f7:9f:
f2:db:a2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:23 2026 by rpki-client