Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: FyZZzYoz9hNz7/vDNG4pCSXURvZ+1WYbhCW7//EhtMs=
Subject key identifier: D0:D6:BA:D6:F7:EF:93:9E:FF:32:05:02:98:D4:D0:FD:DB:28:B0:42
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 019D37F795505E5C46880FD8F226D03489B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0DD6
Signing time: Sun 29 Mar 2026 05:01:05 +0000
Manifest this update: Sun 29 Mar 2026 05:01:05 +0000
Manifest next update: Mon 30 Mar 2026 05:01:05 +0000
Files and hashes: 1: Cyn38xr_aKjpDo4P5qrp-xma_-Q.roa (hash: EIt3b7IJ5biIXSp4ZF9k1ni8CNt6QRDhPAAZE5+8sT4=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: z6+l+FV6rb7UERn+rLlBkGf/1GqwXQxU850M8lIziD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:95:50:5e:5c:46:88:0f:d8:f2:26:d0:34:89:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Mar 29 05:01:05 2026 GMT
Not After : Mar 30 05:01:05 2026 GMT
Subject: CN=d0d6bad6f7ef939eff32050298d4d0fddb28b042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:58:64:26:25:0c:c9:89:88:10:38:2f:8a:65:
f3:16:c9:87:fa:2b:46:c8:12:06:bf:f9:ea:fd:d5:
f6:c6:f4:6d:ff:82:44:a4:5f:15:87:12:cd:56:0b:
c2:ef:2b:32:77:f8:7a:25:7a:0a:c3:13:0a:d6:23:
21:16:11:da:e2:ad:c4:7c:80:e5:d1:a8:7a:b5:c7:
2f:b9:8b:b6:3e:1b:0c:66:b1:86:10:22:2a:6d:38:
3d:a3:34:09:7f:02:bb:55:c2:8e:ae:61:3f:c1:d8:
00:30:47:a6:99:de:26:19:cb:92:2a:9b:06:06:51:
e5:6b:f5:e1:f6:2e:ed:e3:40:85:de:3a:96:45:77:
fb:45:3a:69:94:3e:4f:c3:8a:00:81:66:b5:c0:3f:
83:e0:a0:e7:88:59:64:2b:f9:98:06:2e:79:00:5d:
4c:3b:c5:44:f1:ec:d6:43:d7:e5:f6:df:98:9c:37:
b0:4d:e0:54:f4:6c:30:47:74:53:ec:fd:36:7c:10:
0d:57:f1:0e:44:24:9a:3a:26:ab:55:00:db:59:b1:
0f:34:dc:35:27:be:11:d3:4f:86:9c:04:5f:47:b1:
60:5a:a2:00:7f:1d:03:44:1e:30:e7:bf:59:6d:f3:
72:f1:3e:41:05:c9:2b:c7:6c:8b:a6:29:7f:09:4e:
9c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D6:BA:D6:F7:EF:93:9E:FF:32:05:02:98:D4:D0:FD:DB:28:B0:42
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:79:4e:0c:f9:57:76:72:6f:ed:d8:93:d2:f8:b3:0b:e2:43:
d4:c2:2c:af:78:14:f1:8c:b4:65:79:59:b9:89:fc:4b:9e:e1:
bc:3c:8d:96:58:0c:fc:0c:e0:3c:06:1e:56:4a:01:31:49:09:
c7:e2:29:67:82:ee:5b:84:c1:42:4e:2c:5e:31:04:19:b9:c7:
51:3d:38:41:99:bc:b3:31:07:22:ee:fd:3c:77:e8:bb:cf:a0:
74:1b:85:dd:36:15:eb:47:d7:51:bd:8b:86:9c:4d:3c:01:9f:
d0:ab:e2:cf:ef:01:0a:7e:05:f5:a6:77:7a:73:ab:9c:dd:fb:
aa:68:0d:99:56:7d:71:98:a8:e0:f7:92:f0:27:c0:0d:47:54:
2d:48:68:ea:c9:71:33:98:8c:e9:65:51:4a:d0:54:1b:08:f9:
f8:9d:2f:5a:71:f3:79:e6:e8:06:09:94:70:5d:d6:73:70:b1:
c6:fb:15:91:b2:b5:bc:c6:d6:f0:6b:0c:60:2b:ec:0a:fd:68:
5a:12:66:2f:34:9f:4b:42:b8:99:41:fe:7c:8b:94:05:f5:2f:
9e:2b:14:d4:bc:1b:40:68:6c:b8:75:76:63:d8:eb:8f:22:fe:
62:17:5a:0d:54:73:b5:3e:f6:35:16:87:16:56:aa:f2:e6:42:
3b:f5:6d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:11 2026 by rpki-client