Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
File: oYhrwvjZOpz8WoN-LydS7knyJHQ.mft (raw, json)
Hash identifier: 3ILthHs0gbeU7WlwhkNgaKRIBbCPfwwAoTSNR3kk/MY=
Subject key identifier: 6C:68:3B:5D:54:8C:F1:1F:17:5E:85:7D:85:9E:AF:7C:52:92:8A:69
Authority key identifier: A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
Certificate issuer: /CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Certificate serial: 019D38D37B06BCC0B2636A12F947D35D4E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 09:01:16 +0000
Manifest this update: Sun 29 Mar 2026 09:01:16 +0000
Manifest next update: Mon 30 Mar 2026 09:01:16 +0000
Files and hashes: 1: oYhrwvjZOpz8WoN-LydS7knyJHQ.crl (hash: 6Rcvq82m7rrg/3+6LVi1npm+E6QDzJUusLh3fyFofnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:7b:06:bc:c0:b2:63:6a:12:f9:47:d3:5d:4e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Validity
Not Before: Mar 29 09:01:16 2026 GMT
Not After : Mar 30 09:01:16 2026 GMT
Subject: CN=6c683b5d548cf11f175e857d859eaf7c52928a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a2:94:4e:db:c5:9e:8b:7b:fa:67:ba:02:7b:
7c:3b:b0:77:35:a7:73:01:78:f8:91:cd:30:59:e4:
e8:23:94:5e:f3:e3:8d:b3:72:11:cf:00:d7:82:84:
d6:50:e4:a3:8e:88:56:26:d7:ec:df:92:71:48:35:
e3:7b:ee:d9:9e:2d:22:3c:ee:69:d8:90:10:e9:ce:
cc:27:6d:10:93:af:4c:d0:96:ca:96:ca:d4:8e:cb:
d0:38:a9:62:9c:0d:6b:2c:0a:69:67:c2:66:d0:18:
33:f5:1d:81:e5:b5:4f:24:7f:eb:56:19:6e:1d:7c:
c9:80:1e:1b:e8:cc:32:18:26:37:1b:65:78:b7:9e:
35:fd:be:9e:57:42:e6:03:c0:6d:44:9d:a7:12:63:
92:df:4d:a9:6a:78:05:7e:14:e4:76:ec:7c:8f:d6:
5f:0a:57:ee:23:00:d7:88:32:21:76:13:ae:70:6e:
5e:40:82:1f:cf:15:fd:48:5f:bc:f3:3a:d0:83:0d:
7a:dc:9c:f0:34:3e:0d:fd:72:fc:bb:5a:29:7e:34:
28:b8:b0:43:fa:6a:13:67:e7:87:0c:cd:40:24:e2:
6a:e1:a7:cf:c7:f9:8e:ee:1d:75:38:e3:50:93:3b:
9a:40:3f:a1:59:14:34:db:a8:0f:91:8d:28:ca:73:
48:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:68:3B:5D:54:8C:F1:1F:17:5E:85:7D:85:9E:AF:7C:52:92:8A:69
X509v3 Authority Key Identifier:
keyid:A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:79:60:a2:35:35:28:d3:e8:d9:e4:e3:07:19:e9:2c:b7:29:
86:c3:86:7a:e4:07:90:7c:c5:5e:07:7b:80:28:34:8d:fe:9c:
07:4b:db:fb:7d:5b:37:f0:38:e1:9c:ba:03:d5:de:ea:d5:ac:
b6:4b:08:44:d5:e8:4e:f4:a9:cb:a0:68:68:99:6e:70:59:f4:
4c:1e:df:8c:8f:f1:2c:bd:61:03:f6:90:9e:3e:18:9c:91:b3:
f3:b8:24:a9:16:aa:c7:d7:a6:ee:81:e1:0c:4e:68:68:7f:8d:
2f:f9:f9:a4:f5:d5:6b:b8:d3:fa:da:0c:7a:e4:1a:b5:9c:87:
27:6e:fc:e0:42:28:a5:12:4f:82:87:46:72:3a:be:6a:02:7a:
07:9c:b2:73:c8:b6:48:01:81:a8:a6:c5:4a:a5:b8:6f:c0:44:
57:df:20:bf:67:f2:49:1c:fa:8e:b7:ae:7b:c2:04:55:c5:e9:
1f:c9:02:c4:0a:66:12:3c:f6:22:34:bd:44:a1:1c:5e:77:96:
06:39:20:eb:55:37:a8:fb:34:53:7d:51:7c:ca:fb:01:fe:0f:
4d:43:e0:c0:55:52:1b:08:48:60:87:aa:81:05:76:f3:2b:9d:
90:3b:58:c7:9b:9d:ca:8f:e8:3d:62:3c:d7:83:e3:8e:c4:43:
c3:27:a7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:33 2026 by rpki-client