Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
File: ohnbVSO9ORRQqdzPbVDOWfsV360.mft (raw, json)
Hash identifier: PCGJmsI7DA4jupKSGNOHuC8vAbiFkYZo2uhbMaN1u8I=
Subject key identifier: 74:B5:C8:D7:37:37:4B:04:7C:60:05:6F:90:A8:AB:02:D1:A3:80:77
Authority key identifier: A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
Certificate issuer: /CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Certificate serial: 019CE523B45B06E677953CAC5D8E2047E66C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
Manifest number: 7C
Signing time: Fri 13 Mar 2026 03:00:48 +0000
Manifest this update: Fri 13 Mar 2026 03:00:48 +0000
Manifest next update: Sat 14 Mar 2026 03:00:48 +0000
Files and hashes: 1: 4HbGMj--iSuFHvb28GOkJ8Rfj9k.roa (hash: kmfueJIenPQ4kLIaUYdb59+cHEhbnikmEU4eCsrl8uU=)
2: ohnbVSO9ORRQqdzPbVDOWfsV360.crl (hash: EzPn8Tj8++cEbVM3vuBQBFQFSJ4vgSeLimCRebxWMjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:b4:5b:06:e6:77:95:3c:ac:5d:8e:20:47:e6:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Validity
Not Before: Mar 13 03:00:48 2026 GMT
Not After : Mar 14 03:00:48 2026 GMT
Subject: CN=74b5c8d737374b047c60056f90a8ab02d1a38077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:07:af:33:13:eb:b4:be:be:d9:11:cc:da:1c:
86:1c:d2:2c:4b:eb:b6:81:43:5f:88:fc:3d:8e:c7:
1b:2c:20:ee:dc:71:69:00:c4:ad:79:2c:55:c0:cb:
1f:9a:9a:75:b2:11:20:5c:c6:dc:44:53:b2:b4:c8:
b8:10:b3:d7:d8:d9:3f:d5:34:01:42:a8:2b:5e:aa:
f5:7c:f7:1f:fe:78:5e:75:a4:27:d9:18:54:7a:ed:
ab:59:6d:4c:70:c6:32:52:1a:c5:4c:aa:a5:5b:cb:
ee:b2:78:cc:4d:98:ed:ba:76:e4:2a:41:99:72:0a:
a4:7d:5b:8c:01:18:4e:eb:d9:61:62:99:06:00:2d:
6c:fd:bb:11:94:8c:43:1c:7a:fc:38:b1:cc:19:8e:
d2:e3:29:42:51:44:fd:ff:1d:9c:9d:24:ea:b1:2a:
3b:5f:29:75:b3:1c:c7:49:03:6b:10:04:f2:24:ee:
a9:c7:a3:d0:74:27:9d:a4:c4:98:d2:4f:02:5d:94:
8e:66:ff:0a:83:1d:b8:21:9b:0f:d1:3c:e0:12:2a:
ef:91:66:9f:c5:fc:55:fb:08:fa:e1:66:44:f4:45:
6e:00:0f:50:fb:f5:87:54:68:ab:7b:15:5b:e2:a7:
4f:e4:32:30:eb:a8:a1:87:47:b5:6a:81:d1:7f:37:
11:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B5:C8:D7:37:37:4B:04:7C:60:05:6F:90:A8:AB:02:D1:A3:80:77
X509v3 Authority Key Identifier:
keyid:A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:42:eb:e2:c6:e6:72:f0:0a:d3:ce:99:39:1d:2e:5a:88:69:
ac:d7:88:b3:73:af:70:36:fa:5c:21:b0:a9:12:e5:0f:18:70:
67:6f:f3:4d:45:f9:5a:f3:79:44:49:0a:4a:2b:1a:5f:13:32:
56:8b:0d:14:f1:88:59:26:5d:f1:2b:0d:0e:23:6a:ae:9e:67:
f1:40:78:d8:e1:9d:b1:ff:2b:ea:67:cf:5c:dc:74:c6:77:f0:
39:cd:96:ad:7e:cd:76:5e:98:e1:b8:e1:8d:bc:d0:43:d4:fc:
e2:8d:10:e9:5e:c5:86:81:01:58:7b:1a:fe:96:eb:5e:0b:4f:
92:67:36:b1:46:db:7b:2f:49:89:dc:7e:df:bf:df:33:ce:f7:
40:4a:a2:c5:3a:37:34:08:26:6e:d8:5f:47:4c:f5:f5:e8:ee:
dc:aa:50:ba:07:01:e7:cd:f3:a6:69:0d:cc:79:3d:19:0c:d7:
e6:94:a4:66:fc:6f:4f:4c:e2:28:de:95:cf:11:50:92:f0:09:
0a:99:54:80:e7:88:b5:f3:ec:22:d3:cd:18:d2:aa:b1:2c:1f:
94:19:82:8f:ce:38:02:87:7a:aa:35:1f:f0:51:60:81:68:a7:
19:dd:f8:d1:5e:34:7a:fc:a4:14:c8:56:8c:02:f3:74:e0:bd:
7f:0c:f5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 04:55:04 2026 by rpki-client