Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft
File: OXBHadCH2f6PeQplVctPvvzSTTg.mft (raw, json)
Hash identifier: rGcvmq/Mpt+dk6Ofw5A9a/pa9bBx2Lt0do2pSRRuEi8=
Subject key identifier: B0:2B:00:BE:55:AD:E2:EB:43:60:0A:F0:3C:FC:7A:A3:22:C8:01:1B
Authority key identifier: 39:70:47:69:D0:87:D9:FE:8F:79:0A:65:55:CB:4F:BE:FC:D2:4D:38
Certificate issuer: /CN=39704769d087d9fe8f790a6555cb4fbefcd24d38
Certificate serial: 019D37F70C29A3285C66974CEDE9AA187446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft
Manifest number: 0544
Signing time: Sun 29 Mar 2026 05:00:30 +0000
Manifest this update: Sun 29 Mar 2026 05:00:30 +0000
Manifest next update: Mon 30 Mar 2026 05:00:30 +0000
Files and hashes: 1: AgJDjffcx13iFGg7O-6BTWa5Mi8.roa (hash: F0nKF0WSY8oAZJYmoA/vzmlCpRXcrLqKk16YPUwPz6o=)
2: OXBHadCH2f6PeQplVctPvvzSTTg.crl (hash: r2sNbALqcaiPeQ2DXI6uvN5jqmnZZ5iCXikRMRnw8s4=)
3: _oWKFee77v9hsdPrrddU5tQ-R0A.roa (hash: RjU3IT8W3Ea39zUeKnm2sOei/TN9Q78ucxQb3LukHT4=)
4: xiMdBnBAVbzMONM7bWyZSTHXags.roa (hash: R9sPzPBlp0RJe+m5WxmViRNBW2hNOa0kbVaZ9zt/4VA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:0c:29:a3:28:5c:66:97:4c:ed:e9:aa:18:74:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39704769d087d9fe8f790a6555cb4fbefcd24d38
Validity
Not Before: Mar 29 05:00:30 2026 GMT
Not After : Mar 30 05:00:30 2026 GMT
Subject: CN=b02b00be55ade2eb43600af03cfc7aa322c8011b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:25:27:4c:fe:39:3c:8d:63:d9:b2:6c:b1:5c:
67:33:0f:58:60:92:e4:6c:04:e9:5d:e4:1c:93:e0:
dc:16:9d:53:8e:62:4d:65:67:dd:ee:92:db:1e:d5:
1e:73:47:23:a3:47:bb:9b:20:51:ab:dc:e6:df:69:
f9:55:7e:7b:a8:78:d3:41:52:04:32:14:4a:44:2f:
9a:0e:12:3d:a7:17:cb:38:3c:46:c7:a4:be:f2:73:
72:66:d7:53:ed:eb:af:18:ab:27:74:18:0e:15:77:
ac:3e:28:5e:7b:67:54:4e:e2:17:eb:fa:5d:f8:56:
4f:3d:7f:8c:a7:b5:83:8f:c6:d2:ee:e1:9e:dc:b7:
32:46:5a:2b:0e:6f:6e:a0:7f:31:59:e7:ef:03:4e:
fa:6e:37:40:f3:bd:ce:b4:74:d5:8a:b3:ee:73:b8:
b0:e2:70:e2:dc:28:40:0d:21:27:dd:30:68:9f:cd:
eb:de:5b:46:af:34:aa:16:7a:8e:9e:46:f5:d3:3e:
2e:4c:f4:75:00:d0:4b:8f:df:7d:06:be:fe:5f:c6:
e2:a9:e0:2f:ec:dc:1d:18:16:0c:43:f1:85:cc:92:
47:84:d0:b0:3e:ea:48:0d:26:9d:44:45:44:42:64:
00:66:84:7e:f8:47:a6:ca:d1:8f:9e:04:7a:72:62:
2f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:2B:00:BE:55:AD:E2:EB:43:60:0A:F0:3C:FC:7A:A3:22:C8:01:1B
X509v3 Authority Key Identifier:
keyid:39:70:47:69:D0:87:D9:FE:8F:79:0A:65:55:CB:4F:BE:FC:D2:4D:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:63:9a:1d:51:44:c4:ab:f0:27:07:aa:bd:f7:91:7a:50:9c:
85:9c:47:87:45:f7:13:f5:58:c9:5d:9a:45:43:4a:ac:2e:96:
f7:48:00:e3:01:57:1b:a2:df:03:27:e7:0d:b6:68:21:ff:47:
33:67:ad:de:a1:54:db:e0:04:19:cf:00:55:3a:f5:dd:e3:d3:
68:db:32:61:cb:a1:f6:da:1e:7c:cd:f8:ec:29:20:9e:8a:b1:
fa:ed:d8:44:28:04:67:0a:1b:40:f8:d2:34:3f:c6:c5:7a:ea:
38:bb:37:34:f7:62:1d:0d:71:24:0a:af:f8:65:2b:96:5c:35:
a2:6e:9d:f6:26:5c:f2:81:74:93:8b:70:6a:07:b0:00:de:68:
6e:81:56:d5:64:e6:3b:9b:1d:d7:f2:11:71:c3:61:1a:b7:a2:
30:52:0c:21:e4:5b:91:e7:c4:d8:ac:97:46:93:61:ef:8f:0d:
41:f2:26:cd:47:e7:88:83:12:c0:41:05:98:03:3a:4b:f4:e3:
ac:3f:78:d0:0c:a1:ca:d4:7e:c3:b0:48:bd:95:53:42:3b:d6:
07:ae:bc:8d:42:de:5d:cc:03:eb:91:72:22:ce:e2:71:db:ee:
86:fd:c8:69:53:87:c5:e6:c6:7b:f2:68:e9:83:e1:9c:15:d7:
80:24:d7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:40 2026 by rpki-client