Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
File: OitQeZsxwLFFEkZQ1xG844PWcDk.mft (raw, json)
Hash identifier: nHLs4mO9D8oi/l8QTpJyMDnm+ebIqSGrjDEfbL/Fjww=
Subject key identifier: 74:AA:44:17:8C:C5:82:D1:FF:0B:DA:94:DA:0C:16:35:F6:0D:E8:8E
Authority key identifier: 3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
Certificate issuer: /CN=3a2b50799b31c0b145124650d711bce383d67039
Certificate serial: 019D37C105E87B0BDB31E190CE86261F3BD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
Manifest number: 0CE0
Signing time: Sun 29 Mar 2026 04:01:29 +0000
Manifest this update: Sun 29 Mar 2026 04:01:29 +0000
Manifest next update: Mon 30 Mar 2026 04:01:29 +0000
Files and hashes: 1: OitQeZsxwLFFEkZQ1xG844PWcDk.crl (hash: sOys2szH17mB4hLzaZxkMj6fzpeDjTaExFflI+UJd94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:05:e8:7b:0b:db:31:e1:90:ce:86:26:1f:3b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a2b50799b31c0b145124650d711bce383d67039
Validity
Not Before: Mar 29 04:01:29 2026 GMT
Not After : Mar 30 04:01:29 2026 GMT
Subject: CN=74aa44178cc582d1ff0bda94da0c1635f60de88e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f2:6c:f4:49:48:6e:8e:a9:a0:a0:ff:31:74:
da:0d:c0:64:d1:98:33:a6:d1:75:57:6b:be:00:ec:
e3:04:13:40:79:fd:5f:4f:08:1a:23:34:30:9c:c1:
58:cf:6b:13:87:f5:59:a6:91:f2:a0:f4:fb:6c:9d:
73:b6:d3:57:d1:ca:6e:21:24:96:3d:f5:db:5d:4c:
76:d2:36:8b:40:b3:e9:16:03:fd:97:6d:72:c0:5d:
2d:a9:21:26:80:94:a0:e3:5f:5a:2d:67:ed:64:60:
76:c2:81:6f:a3:da:1e:ac:14:92:fa:f3:4d:ab:06:
d1:4f:e9:6f:7d:25:6a:d6:5d:e1:69:00:1a:20:df:
01:cd:2c:4e:61:42:9a:97:b9:b3:75:b7:63:6e:88:
18:12:27:7b:60:63:63:bd:aa:47:76:94:ab:c0:40:
d8:f2:2b:55:76:de:2a:45:23:6f:a9:4b:27:0c:83:
7a:a4:ad:2a:4d:fb:52:ea:a0:46:5c:bd:4f:7f:65:
b6:86:9a:32:97:7a:f0:f2:43:b2:40:2c:2c:ef:72:
05:59:12:a1:8b:42:0c:4d:bb:f1:2a:80:c6:75:ea:
0a:d2:7a:d9:ed:04:24:61:3c:67:e1:5c:1d:ce:21:
ee:7a:fb:0e:c2:15:f7:1d:b6:f1:db:ff:7f:b1:db:
92:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AA:44:17:8C:C5:82:D1:FF:0B:DA:94:DA:0C:16:35:F6:0D:E8:8E
X509v3 Authority Key Identifier:
keyid:3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:63:b6:09:ab:10:b1:85:b5:fb:68:fc:3b:12:7d:39:3f:de:
84:3b:ae:66:61:96:64:97:68:19:2e:dc:26:c7:87:45:dd:5e:
ec:92:b4:0e:08:08:36:6e:96:8e:66:04:00:47:a2:a3:7e:6d:
c1:32:06:87:06:72:52:09:99:3f:13:ed:d5:c2:ac:79:f4:35:
18:79:21:63:1f:7a:b2:c7:5f:8d:2b:7f:9d:8f:a1:e6:11:ca:
2c:96:bd:6b:fa:e0:70:d7:76:26:5a:ea:fa:be:80:d4:44:9e:
7b:a9:d0:aa:45:22:ce:27:56:05:87:60:53:78:46:b7:b6:59:
28:62:03:4e:6f:fe:6e:c3:6e:ff:ca:1d:69:22:41:01:eb:61:
07:9d:c0:4b:32:f6:c1:96:b4:7b:9a:ac:62:62:f0:8e:75:24:
d7:91:d2:65:6d:08:37:94:c9:cb:5a:69:fc:95:27:7b:52:55:
14:eb:84:ef:7a:b4:00:89:55:b7:f9:22:d9:f5:98:d0:d4:2a:
58:48:44:35:03:da:69:f2:73:e2:e8:8a:1b:66:df:20:cd:6a:
8e:fd:6f:67:6f:25:1c:f9:ef:78:33:65:35:f0:55:76:98:35:
bf:37:dc:2b:06:d6:aa:e5:11:3a:f5:a3:5b:8b:b9:be:52:e0:
a5:92:a5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:53 2026 by rpki-client