Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: U6hrYx4/U9hLtS21F7T6M4MkeAnlH/L0TnAeze6AUHQ=
Subject key identifier: 63:B2:CE:83:01:20:FB:E4:3C:C1:02:72:49:77:47:A1:23:FB:95:42
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 019D333F17090F8176A0FE0320733BAA0945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 09A9
Signing time: Sat 28 Mar 2026 07:01:05 +0000
Manifest this update: Sat 28 Mar 2026 07:01:05 +0000
Manifest next update: Sun 29 Mar 2026 07:01:05 +0000
Files and hashes: 1: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: T2jOL0BzRIqQeHt9hjOjjWVLFkoVh8FAF4ClLqaYYuc=)
2: futCv-J21MxYYna1NlT0XMLEUxQ.roa (hash: Nuw/WTHENdY0hVuqEP9gOdFLaQ350WDyvFQ78Xtrdks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 07:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3f:17:09:0f:81:76:a0:fe:03:20:73:3b:aa:09:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Mar 28 07:01:05 2026 GMT
Not After : Mar 29 07:01:05 2026 GMT
Subject: CN=63b2ce830120fbe43cc10272497747a123fb9542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:7c:ad:3f:24:05:bd:b3:1b:8f:10:9d:5c:
38:fa:cc:69:65:04:1a:ee:29:08:5f:87:36:cb:e9:
ab:41:f3:e2:40:56:04:97:c7:08:07:c3:5d:8e:48:
99:f8:c0:e0:a1:4f:8b:c8:3e:ea:2d:cb:87:9d:fa:
f2:a0:8d:de:ac:d3:21:5f:63:f5:ee:eb:6f:0f:75:
63:74:ed:32:06:95:b3:a2:44:98:00:4a:66:96:41:
d4:5d:d6:e3:58:eb:bd:c4:15:fe:0a:de:99:fd:b0:
a6:8d:3d:89:0c:8c:98:54:76:f0:b3:89:05:68:f1:
7d:51:7b:66:60:3a:1f:28:35:bb:b1:73:41:d6:6b:
36:94:6d:5c:51:86:13:6e:8f:e7:96:8b:34:6c:87:
fa:37:e2:46:b8:f1:b1:7b:09:5d:6a:9e:3f:9d:fc:
34:18:aa:c1:f5:89:b4:f7:d8:26:81:c0:b5:1f:a6:
5a:57:82:2d:32:41:9a:7d:2a:49:f3:54:70:9b:36:
f9:bb:e9:a5:6f:44:67:ae:72:f2:79:39:55:30:9b:
66:14:01:b2:0f:9d:a0:7f:dd:51:cb:42:60:10:23:
d9:bf:7a:6c:aa:81:51:1d:b1:3b:0b:c5:61:81:fa:
61:91:5a:97:f3:ff:b7:c0:fb:34:26:20:6a:a0:f6:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B2:CE:83:01:20:FB:E4:3C:C1:02:72:49:77:47:A1:23:FB:95:42
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:12:0c:44:58:74:ef:1b:f9:00:86:22:b4:96:14:4a:6e:d3:
89:16:cc:3b:50:f2:d1:ce:4f:af:04:24:43:7e:80:f7:af:ca:
e2:ba:a4:d3:07:c4:a1:7b:23:88:31:85:89:1d:5b:a7:03:90:
94:52:fa:a0:de:70:3a:9d:1e:60:95:62:13:6f:86:44:81:12:
97:17:12:5a:55:dd:21:f2:19:0f:7a:fc:b8:97:cc:82:19:b0:
7c:56:66:e2:4d:4a:c3:c3:75:4d:2c:4f:ad:3b:01:3f:1d:e1:
3b:77:e0:8e:4a:bd:05:db:40:35:c3:13:ad:4c:6c:8b:90:c8:
8a:bf:62:96:51:02:58:9c:c2:31:ee:14:71:bc:6c:4b:7f:97:
5b:91:50:2a:3f:7f:68:c6:7e:1f:bc:13:8c:2c:0a:e3:38:c3:
c3:72:0c:06:3c:e6:e4:64:bb:5e:c2:d0:b4:69:83:f2:25:9b:
fc:ab:b2:1d:9e:27:09:71:01:19:57:97:d3:7f:fc:08:e9:c9:
71:a8:bc:52:7d:a3:d2:96:0e:ff:d4:93:52:64:1c:bc:db:9f:
9d:22:1d:14:9e:e3:f5:01:d5:91:11:ce:fb:3f:7d:69:38:a9:
4b:3c:b9:ef:fc:a8:fd:5a:a5:71:73:11:f0:bc:98:0d:08:7c:
25:ca:3c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 18:25:36 2026 by rpki-client