Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: 8ydwqCsf2zx9NQx2MdewtV5f33yzlBUpWxmpMvYNFGw=
Subject key identifier: A3:C3:9F:1D:E0:64:FA:D6:9A:6D:B1:ED:04:E3:20:9F:82:44:F2:AB
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019CE4114E931C8A4751914FC2BF25570A9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 0369
Signing time: Thu 12 Mar 2026 22:01:05 +0000
Manifest this update: Thu 12 Mar 2026 22:01:05 +0000
Manifest next update: Fri 13 Mar 2026 22:01:05 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: CH3xhcTSi7KRjnfNcP4/8eD7wsK5OkchBOO50m/DKt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:11:4e:93:1c:8a:47:51:91:4f:c2:bf:25:57:0a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Mar 12 22:01:05 2026 GMT
Not After : Mar 13 22:01:05 2026 GMT
Subject: CN=a3c39f1de064fad69a6db1ed04e3209f8244f2ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4a:4b:27:f6:a0:62:cf:6b:e6:2d:03:61:ee:
38:5c:94:4c:93:69:8d:d4:78:34:42:24:e9:38:54:
38:92:52:f4:c6:50:8b:33:2d:44:a4:3a:f0:10:92:
3e:89:b0:ed:98:c8:43:31:49:3f:07:8c:2c:04:34:
ea:5c:6e:ef:18:4f:1e:55:ba:7b:39:98:77:4a:fe:
d5:53:26:58:84:36:50:47:22:6f:1d:43:8d:de:1d:
c6:c0:cd:71:6b:92:e3:74:44:52:23:6f:1c:f0:25:
6d:37:95:01:c6:01:29:69:ce:50:31:de:3b:0c:66:
6d:70:2f:8a:04:02:22:24:9d:5e:f1:11:a5:6d:8b:
6c:53:f9:dd:2e:6d:39:db:4c:c8:4b:7e:41:f0:92:
38:be:bd:97:d0:e8:14:ab:44:6b:a2:d3:82:f2:1a:
cb:e5:f8:04:7f:b9:86:ed:f1:1d:d2:93:f4:66:46:
46:68:9e:c4:1f:c0:94:23:1c:0c:84:78:9a:44:73:
61:2c:1a:d1:e5:63:6b:83:7b:be:34:2c:05:2c:c3:
8f:e1:7c:2c:e2:83:45:a4:86:74:64:be:1b:5d:6c:
57:a1:cb:0c:5f:6c:cf:d4:10:ce:50:e2:cf:af:1c:
a9:4c:16:48:e1:90:89:63:b8:fd:f5:f7:72:71:86:
e2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C3:9F:1D:E0:64:FA:D6:9A:6D:B1:ED:04:E3:20:9F:82:44:F2:AB
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:a6:0c:69:7b:94:d2:a3:6b:d3:e2:d6:64:e7:e8:d6:cd:d9:
10:45:72:ee:c9:f2:98:14:2f:10:b8:7c:c4:a3:c8:dd:d9:2f:
32:74:ab:59:d7:01:b5:63:c1:91:3c:36:d6:39:f3:d1:e6:53:
5d:5b:ba:4f:15:91:f8:a7:6b:2f:05:dc:bc:1a:42:63:d5:d1:
88:ef:03:d2:c5:36:53:4f:d3:95:87:12:fa:b0:18:b0:a9:30:
ff:50:d5:f8:46:e5:c4:26:2c:25:95:cf:87:9f:30:f1:5b:e8:
34:52:d0:1a:8f:8e:5b:17:93:d7:f3:5a:ce:3b:c6:6c:3a:0e:
43:e6:b4:f9:3c:61:48:1b:45:4e:c0:2a:75:e7:5a:c5:16:79:
09:8e:17:ef:d5:54:3b:01:82:bc:91:89:50:d2:3d:3d:98:6a:
00:2b:89:7e:c7:44:90:91:d0:a0:c0:9f:b0:93:60:33:e7:2a:
be:87:b0:57:a2:94:81:a2:34:d1:27:86:93:71:a3:a7:12:a0:
1b:64:1f:30:3a:64:45:6a:bb:27:61:7d:db:74:67:0b:5c:e8:
bd:50:23:88:17:4c:e8:07:f5:0a:58:ea:cf:54:e3:4a:98:c1:
06:61:00:d8:8d:7a:77:4e:6a:7f:a0:cc:ca:96:1c:46:b6:b8:
d3:0e:dd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:50:57 2026 by rpki-client