Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: GruYC8bqMhbTfYPQDcQao32fIThwYvofqmaGyNPcfsc=
Subject key identifier: EF:27:6F:05:36:41:13:F0:8D:31:6F:90:A3:5F:D6:E3:DC:73:A1:64
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 019D37C046D8C3E724D330CC1821E4E4CC8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0F71
Signing time: Sun 29 Mar 2026 04:00:40 +0000
Manifest this update: Sun 29 Mar 2026 04:00:40 +0000
Manifest next update: Mon 30 Mar 2026 04:00:40 +0000
Files and hashes: 1: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: p4m5HQdaC5ajqQi6Ao7MuFnfzI9q+aTs8Vrjef4xvic=)
2: etED6K0Bs3O83m7tnMviEpCCv3s.roa (hash: mSfzIWvqw8wBOviQQ25BRfy+WgkAD9TswxPf1xc86M0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:46:d8:c3:e7:24:d3:30:cc:18:21:e4:e4:cc:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: Mar 29 04:00:40 2026 GMT
Not After : Mar 30 04:00:40 2026 GMT
Subject: CN=ef276f05364113f08d316f90a35fd6e3dc73a164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:28:b4:60:13:23:bc:c2:7f:c0:61:80:fc:
3a:e8:3b:9a:b8:a1:ce:63:07:db:40:3d:ca:05:7f:
fc:fa:eb:e8:23:25:ab:72:71:79:84:b7:7a:7c:fa:
a2:0a:91:69:00:f7:3d:5f:6b:02:ab:fd:f1:38:95:
f6:27:3b:05:cc:b0:6e:8b:e8:d5:81:ff:3d:fb:40:
5c:1c:4a:54:a6:4e:c7:f6:e9:c7:35:1c:d1:74:43:
80:f2:1f:62:01:42:28:68:30:1c:0f:5c:a7:b8:d6:
d3:48:d3:bd:8e:31:99:b6:3c:2b:28:14:a4:e1:52:
31:c8:d2:33:42:e7:8a:26:5d:26:4c:b8:03:02:bd:
8c:a0:9f:ce:bb:f8:fc:66:13:7a:88:0d:11:e5:3c:
49:8f:65:49:f8:e8:ad:31:06:0d:9c:e1:bc:be:6d:
26:bf:8b:a6:bd:ce:27:c6:31:4e:44:aa:db:78:89:
e5:81:87:23:d1:0c:40:db:b3:de:b7:5a:e9:b6:c1:
26:54:d5:3e:08:8d:02:a1:40:ed:db:5f:cb:3c:13:
c9:76:7f:96:91:c2:f0:29:fc:ae:81:a1:03:39:6d:
e9:ce:2e:82:3c:df:95:77:4d:27:ea:be:88:b1:78:
ca:0b:27:4c:ae:c9:56:24:dd:88:ba:07:a3:ef:e6:
e8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:27:6F:05:36:41:13:F0:8D:31:6F:90:A3:5F:D6:E3:DC:73:A1:64
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:62:79:bf:64:a8:a3:de:de:9f:1d:f2:31:b7:4d:6a:13:a5:
17:c6:61:a0:91:14:70:da:d9:1d:bd:81:ac:98:fd:aa:8c:02:
32:6f:bc:31:26:f8:74:0c:80:c0:65:48:f6:bd:57:8d:22:0e:
b3:7d:c7:00:dc:44:ee:04:f8:c2:f5:57:0e:2a:b0:c8:68:2f:
b3:63:70:6e:58:bd:32:80:74:8a:63:1a:6f:b1:c4:1d:33:dc:
99:8c:06:9f:69:e3:ee:1f:9a:4e:5d:57:16:d0:68:ef:01:a7:
aa:07:bf:52:d6:81:ed:25:3f:f8:15:e6:30:fc:e3:d2:74:cc:
ca:cf:af:2a:57:a3:51:27:d3:aa:c4:8a:8b:dd:61:b8:f3:5e:
aa:11:f3:9f:0b:64:77:59:7d:3c:27:c4:42:e6:45:03:68:30:
5f:41:6b:dd:a4:f8:08:03:16:9b:08:f9:28:f5:dc:17:36:65:
b5:eb:d3:7e:47:86:10:fd:5d:70:49:14:d7:e6:d3:bc:21:26:
32:fc:a8:74:fc:2e:81:51:8c:65:ab:8e:52:fa:5d:b6:b9:21:
42:ca:4e:9c:3b:55:2f:30:55:7c:3e:00:1f:6f:93:54:d1:dc:
60:0f:b9:75:4d:d2:ab:47:93:82:36:63:2a:e6:88:1e:7d:e7:
6c:96:53:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:48 2026 by rpki-client