Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: MEp5h+vtoSclUCBlM5Cs5zZtc5ayXDfBrdGimN66eiU=
Subject key identifier: 22:08:2B:44:A1:F4:53:BB:F7:2B:EF:08:AE:D3:25:AA:EF:F9:9E:C2
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 019D37F757F586EC1DDC75579BEB03A66E82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 178F
Signing time: Sun 29 Mar 2026 05:00:49 +0000
Manifest this update: Sun 29 Mar 2026 05:00:49 +0000
Manifest next update: Mon 30 Mar 2026 05:00:49 +0000
Files and hashes: 1: Nda1eBhsJwT4E7HRchbC4K3iiqs.roa (hash: IyraCeQZ++qiXcc0IC+bQds8y+BEFwAlU5YYks8WhRk=)
2: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: MTMqsiViPOgr5CZAPORjP7K6djrJhuTXuAwhiMxzxTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:57:f5:86:ec:1d:dc:75:57:9b:eb:03:a6:6e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Mar 29 05:00:49 2026 GMT
Not After : Mar 30 05:00:49 2026 GMT
Subject: CN=22082b44a1f453bbf72bef08aed325aaeff99ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:25:7f:8a:e4:01:82:84:c6:49:7e:68:a7:9d:
26:e9:aa:83:85:df:4b:12:e2:99:35:81:89:67:0a:
96:75:78:4f:83:19:c3:31:49:4d:30:7b:74:bd:39:
b0:72:5e:9e:0d:89:71:7f:80:2a:58:15:06:3f:d9:
b4:b7:ad:79:37:f4:b9:52:04:b7:7d:8f:36:4c:a6:
35:47:40:51:94:be:34:c8:4f:ac:48:4b:f2:b2:1b:
29:30:d8:a4:fe:13:6b:38:43:31:2a:24:bb:52:f4:
26:72:f9:66:d1:f5:af:98:c8:3a:ea:f1:f1:9e:94:
3f:6f:9c:9e:67:21:95:3f:4d:cb:ad:a1:0f:67:91:
80:a1:3d:0b:e1:30:f1:15:39:e6:53:fc:00:22:97:
06:75:41:cc:94:53:83:d8:c8:19:95:5a:a1:6b:3e:
d6:4a:6b:cb:cd:34:5d:fb:bc:5d:64:0e:52:f7:92:
fb:a3:99:1b:f7:83:71:e4:0e:1d:cc:bc:12:9e:cd:
18:5a:a4:8b:7c:5b:ee:3c:51:42:c3:6b:b5:19:3d:
ab:fb:0c:7e:4c:9c:ce:14:7d:4d:4c:97:a9:f6:a4:
5e:9c:b0:8e:9a:2c:ff:0f:b1:e9:7e:1f:52:1d:10:
7a:50:77:e9:25:70:83:ad:b1:ac:03:81:18:00:de:
56:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:08:2B:44:A1:F4:53:BB:F7:2B:EF:08:AE:D3:25:AA:EF:F9:9E:C2
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:21:39:39:e9:d6:03:19:b9:d8:3f:91:7d:62:d3:e2:f9:06:
57:1a:ce:d9:13:25:f9:16:72:de:bc:83:57:80:e6:f0:58:11:
8b:44:12:e5:18:0b:c0:ad:ae:74:d8:07:85:b8:b1:a0:d4:73:
4f:f9:cc:46:92:04:1a:cf:27:ae:17:a6:7e:6f:c3:da:03:67:
23:1b:33:56:64:91:9f:f4:6d:6e:e3:f0:28:67:ad:ec:19:9e:
4d:3f:a0:69:f0:25:60:02:e5:b1:bb:51:30:06:a5:08:79:ff:
86:c4:8b:66:1e:72:a8:af:5c:a5:be:54:d7:f4:b8:4e:6c:00:
09:82:c6:53:af:be:99:22:f3:e8:2d:9a:b9:dc:32:11:3c:33:
09:46:e3:fb:7f:c9:6a:ff:9f:06:6c:48:40:1b:19:86:88:af:
fd:66:81:dc:73:bd:43:46:a3:db:37:77:cc:52:49:b1:85:33:
ef:8a:aa:16:b9:3c:8c:99:a1:61:fa:68:6a:86:e7:27:dc:59:
aa:d4:54:bf:96:35:ae:49:e0:b2:8a:b8:c4:0f:7c:58:37:a1:
64:d7:e3:db:af:14:51:5a:ed:97:80:d9:be:60:43:8b:a7:72:
db:75:d0:7d:e2:91:99:45:90:70:8f:8d:e2:21:15:f4:28:eb:
99:d6:0f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:47 2026 by rpki-client