Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: nR5PfdltPRvB9JGp4I/1A9RhMI0/bzz7GO7/xQGd9zo=
Subject key identifier: 69:D9:A0:EA:69:41:3A:AE:98:1E:94:C5:F1:E1:89:8F:30:13:E2:F2
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019D375323FABD1B61858AD1C09EC4C242EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0859
Signing time: Sun 29 Mar 2026 02:01:28 +0000
Manifest this update: Sun 29 Mar 2026 02:01:28 +0000
Manifest next update: Mon 30 Mar 2026 02:01:28 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: /JpwDoBexS1iv44ls4j/xCDLjZHqOTLIZZwpiRlwNRw=)
2: PMdpUUy3N8aucFQis2EHtpFZuIY.roa (hash: 4gf7AvqhQ7Z0YpFJcEQijaezm8f7LNn2p+OXg9bnpFY=)
3: y2_r5sbY9Lv_uRDh7BVz6TP_Rqk.roa (hash: elggw6C3t4Wz+4yMu7U0O34nBVY/GyhPWM7xDo4hWNU=)
4: z1DkqtK6bhv2xKbEFbpfSZsh_Yg.roa (hash: x3T0qFMVxxd2FdR3A4LaLQ4+c2t85rP2XyfqD4Q6wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:23:fa:bd:1b:61:85:8a:d1:c0:9e:c4:c2:42:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Mar 29 02:01:28 2026 GMT
Not After : Mar 30 02:01:28 2026 GMT
Subject: CN=69d9a0ea69413aae981e94c5f1e1898f3013e2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:07:a3:eb:ab:cc:2b:2f:84:b9:b3:35:ff:b3:
a8:df:c0:85:cc:79:e4:91:09:2b:56:8a:ff:5e:74:
7c:15:53:e5:ae:f4:01:05:b1:d2:73:90:f1:c6:5e:
53:7a:cc:40:4d:9f:f6:7c:1d:23:e9:02:89:e0:6f:
07:68:f8:7a:2d:dd:c9:98:c6:34:0c:30:cb:fe:e1:
cf:19:3f:0f:1b:1d:cb:2a:8b:8f:85:58:79:11:63:
0e:f4:c5:0c:c2:0d:e1:b1:9e:31:7e:7d:4a:10:e1:
42:bc:d5:74:30:cf:df:30:e9:59:ab:0d:57:9e:b3:
fa:f4:27:dc:e6:b5:36:88:e9:ba:9a:61:3d:fa:3c:
7c:98:7f:08:38:27:aa:3f:46:af:b8:d9:92:b9:42:
46:0c:ca:8d:dd:40:a3:09:6d:27:87:d1:90:0e:fe:
7d:44:d5:c2:e4:c3:c9:c8:11:2c:45:bc:b7:8e:cd:
95:50:10:22:63:8e:00:4e:80:6c:16:82:1b:22:1e:
33:dc:bc:14:48:03:a6:d6:63:19:a1:90:e8:2f:21:
1a:2c:d8:1d:ec:35:80:56:3c:ec:63:57:71:b3:ab:
2b:a1:1f:92:52:78:3e:4a:9d:f8:02:56:cd:02:82:
90:73:4a:07:3f:b1:07:1e:46:d0:cf:29:83:8e:fa:
32:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D9:A0:EA:69:41:3A:AE:98:1E:94:C5:F1:E1:89:8F:30:13:E2:F2
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b6:e8:28:5e:26:fa:ad:14:16:a9:58:95:dc:66:b9:dc:87:
d3:4f:99:5d:8e:e3:e4:a6:2e:cf:1d:78:70:60:cf:bb:dc:fe:
cf:91:08:0c:f3:59:dc:ab:03:39:3e:47:5d:37:64:16:e6:f8:
33:3a:86:9a:d9:30:b0:76:c4:7e:09:13:48:9f:37:e4:ff:d2:
85:01:e6:21:2b:b3:ec:b7:89:2b:d1:65:26:ae:3c:49:d3:3a:
df:ec:0b:31:57:f3:be:96:ee:74:fe:c9:1a:48:94:3b:bf:d7:
d0:e3:fd:df:3e:f3:36:de:cd:87:58:d4:5e:93:0e:56:4f:ad:
49:57:b4:a4:45:d7:32:af:cd:b2:79:02:60:e6:a3:7a:d3:59:
e4:31:67:70:35:0e:d5:93:45:2d:c3:6c:68:9b:4c:de:04:71:
ba:e5:49:d9:db:1f:80:f1:86:ca:06:ac:b2:0b:65:35:62:19:
a6:57:e2:7e:63:ea:fe:22:88:57:ac:32:73:40:eb:a9:cd:b9:
3b:62:b6:0d:fe:22:29:73:a6:03:0a:53:35:bb:62:7a:29:7d:
83:ed:8d:28:e0:e5:9b:a0:82:19:ea:22:20:49:97:ec:36:3b:
00:5b:43:da:ed:9f:35:26:14:5d:51:f8:9e:a0:f3:a8:9d:7f:
c6:0d:90:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:45 2026 by rpki-client