Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: 0hcG/bRIAGJuoBIEmxStJPKv2dB1WJNyWEUfe/jGeak=
Subject key identifier: 64:76:71:E2:0F:EC:C4:83:29:94:E2:FB:20:CD:CB:6E:80:7D:79:73
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019DCDBD8F5AEB5C639809FB9405CD1F9827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 03E2
Signing time: Mon 27 Apr 2026 07:00:45 +0000
Manifest this update: Mon 27 Apr 2026 07:00:45 +0000
Manifest next update: Tue 28 Apr 2026 07:00:45 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: 4J72i3nBgRwX+Bk3shqOxU4FzAUSvZdTfJdctB3SHcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:bd:8f:5a:eb:5c:63:98:09:fb:94:05:cd:1f:98:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Apr 27 07:00:45 2026 GMT
Not After : Apr 28 07:00:45 2026 GMT
Subject: CN=647671e20fecc4832994e2fb20cdcb6e807d7973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:78:71:20:69:66:45:78:76:2c:e6:91:18:46:
da:77:44:d4:2e:f8:18:a3:19:e7:50:c9:73:7c:d8:
c8:1e:eb:13:f3:57:67:c5:24:ac:45:50:c8:c6:3d:
96:80:d7:c2:dc:b2:0f:6d:87:a7:7a:a4:17:57:d5:
12:a0:41:a1:ab:6f:df:68:13:9c:0e:10:4a:0e:37:
80:db:54:4d:d2:1a:ec:24:b4:78:e6:ff:77:dd:f5:
d8:60:2d:e4:10:de:1f:9c:a1:51:8c:73:cd:26:0e:
bf:50:a7:89:93:8a:5a:cf:ec:c2:cb:bc:3f:ea:ad:
cd:b4:c9:af:3e:cc:0a:0f:df:55:1d:c4:2f:b6:b9:
6f:b6:c6:bf:c6:7d:c0:59:4e:07:ea:ff:4b:53:d0:
86:1a:12:07:a8:87:c3:90:61:9e:2b:aa:1f:90:73:
26:4c:d5:3a:d5:31:0f:51:61:39:63:b7:c5:ae:1e:
18:54:c1:ed:f7:96:2f:e1:39:9e:ce:3a:ec:83:7e:
51:60:1f:05:de:3a:85:68:12:4f:57:2c:3f:12:f9:
ed:1d:b4:c1:e6:b3:17:40:e9:2b:27:4c:3d:d3:f2:
ab:02:19:5d:13:12:1e:40:a5:0d:89:04:0f:af:22:
42:a3:24:b0:cf:dd:d8:1e:f3:dd:36:15:44:ba:9b:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:76:71:E2:0F:EC:C4:83:29:94:E2:FB:20:CD:CB:6E:80:7D:79:73
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:05:1d:57:bc:6f:19:e3:db:68:60:89:90:76:44:d9:ce:6b:
db:a9:51:bf:0e:45:1d:85:c7:2a:25:00:f7:62:2a:d4:25:5d:
ee:bc:9e:73:80:32:a0:f4:03:e6:4c:44:47:15:cf:2a:05:77:
21:e4:24:67:8a:a9:35:23:4f:58:aa:73:5a:8f:33:b3:78:fb:
e5:06:57:a8:ac:46:83:43:e1:c8:57:c4:61:3d:0f:61:8c:7b:
45:44:38:5a:89:41:7e:05:75:2f:b2:36:11:ba:b0:95:13:8a:
79:0f:be:7b:f0:32:a8:e4:77:28:52:60:73:59:9d:12:c0:7d:
f6:cc:ad:03:fc:21:0c:3e:b3:d8:de:b6:57:eb:af:02:a2:68:
07:3f:38:27:45:8c:e6:8c:9c:10:24:9f:74:21:89:b0:c8:8c:
12:fa:7a:db:c6:71:42:db:0f:4a:f5:3d:0d:3c:7c:3c:78:e1:
0f:00:3a:10:70:5d:f5:77:36:91:ad:b3:c7:0f:de:1f:0b:84:
11:39:46:3c:f6:09:cc:2c:a3:3e:2b:78:f4:0e:f0:be:43:37:
79:7b:90:f8:9d:a1:62:0d:11:4f:4c:35:98:d2:89:fb:4d:c4:
82:b5:42:9a:b2:ef:3c:b4:d8:bc:fc:2d:0c:82:f1:08:72:40:
3a:22:53:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:04:16 2026 by rpki-client