Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: tXApVqUqn3HZ+3vK1V/PzurqtitQwFBr0dHxtfCUpcI=
Subject key identifier: 37:77:BC:D2:C9:3F:4D:41:1C:55:EA:06:98:14:D7:7C:18:DC:89:92
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019E9B848F5D501AC6530528FEC61BD79E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 1945
Signing time: Sat 06 Jun 2026 06:00:16 +0000
Manifest this update: Sat 06 Jun 2026 06:00:16 +0000
Manifest next update: Sun 07 Jun 2026 06:00:16 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: z94dU69mpWSlXdtEPznKNANAezsUSY2vnNLyRdlLHMY=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 06:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:84:8f:5d:50:1a:c6:53:05:28:fe:c6:1b:d7:9e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: Jun 6 06:00:16 2026 GMT
Not After : Jun 7 06:00:16 2026 GMT
Subject: CN=3777bcd2c93f4d411c55ea069814d77c18dc8992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:5e:e5:4f:19:32:d5:74:d2:39:65:aa:cb:
9e:42:ba:2e:26:4b:9b:f4:8e:c2:8a:56:09:4b:97:
28:7d:d2:ca:e4:75:a6:6c:e3:fa:ad:e9:c0:ec:09:
f7:37:02:77:ac:48:a5:d2:12:63:05:73:8c:9c:de:
1d:e8:67:08:94:80:e6:3e:5e:1c:38:2b:c3:69:e9:
f8:fe:db:1a:3e:63:7b:69:b2:2a:18:0c:02:74:95:
c4:24:95:54:e4:04:df:d3:84:39:3d:38:ad:f2:39:
a6:48:41:03:df:29:39:e0:ec:f7:1d:30:2a:95:3f:
e7:c6:4b:78:28:b1:a2:ab:d2:eb:60:3c:3b:5e:6f:
e3:a4:f3:78:c8:2a:f8:f2:90:a7:a4:cb:d9:8e:c9:
17:f6:00:12:d0:da:36:6c:1a:11:18:4e:3c:cf:37:
38:01:21:72:27:6b:a8:70:16:6d:34:1f:61:54:4d:
11:35:93:b1:62:4c:2b:e3:5a:cb:01:04:fb:c2:b7:
c0:bf:cf:3d:6c:ee:82:3e:1e:91:9c:12:27:12:2d:
e0:29:48:7f:be:99:c8:60:5e:cf:12:9b:36:da:0e:
d1:0c:2c:07:bb:c4:a0:ec:3e:9c:b8:a1:ce:e4:c6:
d4:ae:88:46:43:c1:40:b0:49:6d:e5:91:32:95:2d:
c7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:77:BC:D2:C9:3F:4D:41:1C:55:EA:06:98:14:D7:7C:18:DC:89:92
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2d:f9:30:c4:eb:f7:90:ee:84:c5:4e:b8:db:9a:57:d5:14:
0e:76:be:76:fc:03:38:7a:bc:b5:c5:b5:bb:d0:78:e7:de:2e:
78:c8:11:10:45:56:03:89:d2:bd:1f:82:6c:64:62:ff:b0:ca:
94:e5:4d:69:88:b6:7d:23:65:46:ea:3f:8e:27:c1:e0:f6:a5:
0c:ca:48:ff:80:0a:31:53:39:74:13:7e:33:c8:0b:11:76:2d:
ab:2f:df:6d:ff:8e:1b:a4:34:b0:b8:b7:96:c4:37:18:ca:80:
63:97:3c:1b:ce:e3:c6:89:47:b7:92:1c:11:09:ef:b4:b6:0c:
39:7a:8a:a9:53:fd:6a:c4:3d:ef:3a:1d:38:31:bd:b1:f7:25:
8d:96:de:16:e6:61:24:3a:fa:a9:9b:25:5b:28:7e:9b:d8:3a:
eb:26:e3:24:3a:67:10:9b:91:4b:df:c7:5e:30:2b:b6:0c:95:
c0:12:6e:85:20:c0:9b:f5:e3:ef:a1:11:4d:c1:17:34:1c:4e:
56:8e:24:11:a2:da:29:34:65:2c:60:a4:c1:bd:c6:3a:3c:70:
2f:74:3c:1c:7a:4f:da:64:f5:a4:f0:cc:13:31:52:e7:f7:15:
de:89:53:71:bb:ba:f8:a3:f3:c7:7c:68:06:dc:ce:23:76:d9:
4e:9b:c4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 14:44:03 2026 by rpki-client