Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
File: OM0kYRn4VtiXOodwvsOf_EejydY.mft (raw, json)
Hash identifier: hZaTjlHwGMClgHvi7T9thXv2saJF/t/kbGpS/MJzFl4=
Subject key identifier: C2:77:A6:B8:20:72:10:3B:BF:98:C0:FC:B8:D9:AA:0B:B7:74:E5:80
Authority key identifier: 38:CD:24:61:19:F8:56:D8:97:3A:87:70:BE:C3:9F:FC:47:A3:C9:D6
Certificate issuer: /CN=38cd246119f856d8973a8770bec39ffc47a3c9d6
Certificate serial: 019D38658DDFD93C06CFD798357C83303C3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 07:01:12 +0000
Manifest this update: Sun 29 Mar 2026 07:01:12 +0000
Manifest next update: Mon 30 Mar 2026 07:01:12 +0000
Files and hashes: 1: OM0kYRn4VtiXOodwvsOf_EejydY.crl (hash: YN9blkkoFABitNudZRDP3DUjmv7SA8QYAZWf3G3Zchc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:8d:df:d9:3c:06:cf:d7:98:35:7c:83:30:3c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38cd246119f856d8973a8770bec39ffc47a3c9d6
Validity
Not Before: Mar 29 07:01:12 2026 GMT
Not After : Mar 30 07:01:12 2026 GMT
Subject: CN=c277a6b82072103bbf98c0fcb8d9aa0bb774e580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1c:94:f8:ea:0e:cf:32:ff:ca:d0:4b:04:06:
b0:2e:68:73:9d:85:da:b4:0b:f9:6e:93:b7:4d:d2:
f3:d8:d1:e2:01:58:c2:b1:e2:a1:ac:88:83:9c:cd:
a2:0f:6f:53:00:49:e8:23:0e:fe:f5:67:31:c2:19:
5a:33:7e:04:2f:0c:1d:cc:7a:99:84:36:28:52:91:
6c:49:d5:db:0e:af:e7:fb:b3:95:51:33:9c:dd:0c:
08:b2:8b:4c:9c:19:d6:3e:82:2a:76:6a:81:36:53:
30:0b:11:4f:61:d1:ed:62:46:12:9a:8b:d0:52:6b:
93:54:a2:4e:25:f3:14:0c:da:51:4c:a4:36:ab:8f:
15:c2:3b:aa:b9:ed:9e:c2:d7:26:65:61:94:10:6f:
e7:b2:8f:b2:27:00:20:4c:1f:b9:4e:85:93:b7:6a:
cd:b2:0c:7f:5f:37:69:b6:21:ae:9e:98:ef:21:84:
ef:a5:96:c1:61:8e:77:a9:09:22:e6:6c:02:4a:b6:
5e:ef:4d:65:6b:ac:9d:2e:22:5e:67:c4:0f:9a:75:
13:05:2f:d1:6c:ea:07:5f:8c:89:33:ad:d6:fb:f3:
d9:9b:74:4b:b2:86:d4:b9:cd:a9:49:de:bc:6c:b8:
b9:10:5e:39:d0:27:ea:53:c1:53:6f:40:0a:94:b0:
45:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:77:A6:B8:20:72:10:3B:BF:98:C0:FC:B8:D9:AA:0B:B7:74:E5:80
X509v3 Authority Key Identifier:
keyid:38:CD:24:61:19:F8:56:D8:97:3A:87:70:BE:C3:9F:FC:47:A3:C9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:1f:7c:62:ba:a6:41:79:08:65:cc:c6:a0:4f:d4:df:9c:42:
b7:81:74:09:5d:ea:c4:41:75:2d:d3:4b:61:df:2e:eb:c4:f9:
72:f4:ea:9d:86:3a:d0:7f:e3:b3:63:a1:9a:7b:3f:d3:e8:2f:
8f:95:d7:4c:fc:76:0b:b7:26:47:42:0d:c0:e6:ef:36:df:d7:
72:ef:21:b7:0e:56:a6:e5:d6:de:4d:32:23:f6:2e:1a:0f:9b:
09:71:3d:4e:57:32:23:81:e7:f4:73:69:ea:49:45:9e:02:49:
65:22:f4:fa:5b:af:a4:bb:eb:d9:2d:95:da:e2:99:ec:f9:75:
84:c3:04:b1:00:97:da:9b:fd:d2:dd:23:8b:03:49:2c:4c:6a:
2e:a3:f8:0c:b0:a9:9a:ea:23:8d:e7:24:4b:0c:6e:29:6a:5e:
84:89:0a:61:fb:f4:e9:09:02:08:44:b6:e7:b6:22:01:a3:78:
0e:fa:b9:9e:00:92:ad:16:9a:94:21:8a:a4:63:47:9b:1a:32:
11:2c:b7:22:e8:88:34:ba:86:91:bd:76:09:7f:f4:30:8d:d4:
68:b1:2f:db:fe:7e:b9:2f:be:31:6d:f6:aa:07:ee:39:d5:8d:
91:07:17:b8:a0:d4:9e:f3:c5:27:71:ed:be:5e:06:8c:0a:e0:
d5:10:0c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:02:05 2026 by rpki-client