Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft
File: OOdr5zhCITzgy8kz0aN0g1fyKD8.mft (raw, json)
Hash identifier: k9N3dzAQPGkUoKCXycdVOKJG85r4+7en+J1K/XFAdvs=
Subject key identifier: E6:E4:D0:4B:9D:5C:A6:E9:C7:57:9C:E6:B7:9D:7A:DA:27:5A:61:86
Authority key identifier: 38:E7:6B:E7:38:42:21:3C:E0:CB:C9:33:D1:A3:74:83:57:F2:28:3F
Certificate issuer: /CN=38e76be73842213ce0cbc933d1a3748357f2283f
Certificate serial: 019D382DF4ED82157C4A255A9000A2A48B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft
Manifest number: 02AA
Signing time: Sun 29 Mar 2026 06:00:28 +0000
Manifest this update: Sun 29 Mar 2026 06:00:28 +0000
Manifest next update: Mon 30 Mar 2026 06:00:28 +0000
Files and hashes: 1: OOdr5zhCITzgy8kz0aN0g1fyKD8.crl (hash: I8SRiMcyPQUaR94gPgu7IAStJBUIsQ4V7jskt+33ZKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:f4:ed:82:15:7c:4a:25:5a:90:00:a2:a4:8b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38e76be73842213ce0cbc933d1a3748357f2283f
Validity
Not Before: Mar 29 06:00:28 2026 GMT
Not After : Mar 30 06:00:28 2026 GMT
Subject: CN=e6e4d04b9d5ca6e9c7579ce6b79d7ada275a6186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:5c:9b:7e:f5:09:16:0c:70:96:7f:ea:0e:
f3:49:c4:6c:ca:11:08:43:b2:61:33:c0:15:63:8d:
a4:44:f4:2b:91:cd:a1:83:09:0e:28:32:05:a1:d3:
9a:58:d5:54:b8:34:63:50:36:cb:5b:1a:30:6d:db:
d6:25:09:5d:b9:3d:bd:94:86:fb:eb:96:4c:0b:20:
03:ea:a5:d2:50:6e:47:ec:08:25:81:64:8b:c7:f2:
90:a9:ea:f1:70:f8:20:c7:d7:a2:14:b6:10:7d:ec:
99:8d:40:ca:f5:06:18:96:a7:fc:cd:82:76:0a:67:
bb:1d:a0:35:08:e3:f6:d2:c8:1e:4c:8d:2b:7d:be:
ed:19:be:dc:92:6d:74:c4:0a:ef:ec:37:ff:33:73:
bc:3d:3f:68:6b:3d:61:c8:c1:a2:1a:3d:95:36:a6:
5e:37:0b:1e:02:8c:7f:6a:1a:6e:d1:36:0d:05:df:
b8:f4:ef:72:c1:fa:95:73:d3:eb:7e:f3:7e:80:cf:
c1:c5:12:d3:bc:c4:1b:5f:56:aa:66:bb:e4:fa:b6:
49:6f:e6:cc:88:b2:26:64:04:9d:00:bf:de:c5:ea:
94:2c:9c:28:0f:e1:d8:e1:87:dd:2f:2b:67:3b:90:
0d:cc:04:73:fb:34:e5:9f:23:25:8d:4e:9e:06:1e:
91:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E4:D0:4B:9D:5C:A6:E9:C7:57:9C:E6:B7:9D:7A:DA:27:5A:61:86
X509v3 Authority Key Identifier:
keyid:38:E7:6B:E7:38:42:21:3C:E0:CB:C9:33:D1:A3:74:83:57:F2:28:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:bd:17:c8:4f:72:19:8a:ff:db:b3:42:75:45:52:41:e7:a0:
43:01:85:58:05:cb:7e:f7:fd:06:6d:1a:2f:bf:69:44:45:75:
ab:f8:e9:2c:70:04:e5:8e:63:62:d5:43:a0:cf:c4:95:8a:5b:
42:2e:03:f6:ed:fd:a6:85:3a:c4:fd:f6:2a:2d:d2:66:c9:dd:
dc:47:db:c7:cb:fd:f2:dc:ea:4c:e8:fe:07:95:7c:77:a4:e3:
cc:86:74:1d:91:98:d8:17:20:aa:2f:b6:31:70:f4:23:24:90:
4c:be:57:af:12:b9:58:bf:0b:dc:82:78:b3:a0:59:19:ad:9c:
ee:9f:91:a5:3f:4a:77:bd:87:76:d1:2a:23:7c:5d:81:1c:6c:
08:18:1b:fe:03:90:cc:ae:95:17:80:6d:c0:f0:a9:d8:8e:08:
35:5d:97:28:76:26:a2:c3:ff:98:60:84:0d:7a:4e:b4:dc:81:
05:59:a3:49:ce:d5:ab:92:27:f4:64:d9:6a:b0:80:7c:e7:cd:
3b:83:72:72:a4:62:03:25:68:db:a3:b5:98:7d:c4:0d:1f:ed:
ab:06:8b:66:74:5f:82:d8:ed:74:8e:e4:04:41:68:78:a5:1d:
37:e2:e8:24:3e:60:14:c6:cc:09:41:f7:ed:ad:3a:1d:91:6a:
e2:52:5e:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LfTtghV8SiVakACipIuPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZTc2YmU3Mzg0MjIxM2NlMGNiYzkzM2QxYTM3NDgzNTdm
MjI4M2YwHhcNMjYwMzI5MDYwMDI4WhcNMjYwMzMwMDYwMDI4WjAzMTEwLwYDVQQD
EyhlNmU0ZDA0YjlkNWNhNmU5Yzc1NzljZTZiNzlkN2FkYTI3NWE2MTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvANcm371CRYMcJZ/6g7zScRsyhEI
Q7JhM8AVY42kRPQrkc2hgwkOKDIFodOaWNVUuDRjUDbLWxowbdvWJQlduT29lIb7
65ZMCyAD6qXSUG5H7AglgWSLx/KQqerxcPggx9eiFLYQfeyZjUDK9QYYlqf8zYJ2
Cme7HaA1COP20sgeTI0rfb7tGb7ckm10xArv7Df/M3O8PT9oaz1hyMGiGj2VNqZe
NwseAox/ahpu0TYNBd+49O9ywfqVc9PrfvN+gM/BxRLTvMQbX1aqZrvk+rZJb+bM
iLImZASdAL/exeqULJwoD+HY4YfdLytnO5ANzARz+zTlnyMljU6eBh6RQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFObk0EudXKbpx1ec5redetonWmGGMB8GA1UdIwQY
MBaAFDjna+c4QiE84MvJM9GjdINX8ig/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8yN2M4NmMtYTVhZC00MjUzLTgxZGMt
MTU1MjZiZjdmNGViLzEvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8yN2M4NmMtYTVhZC00MjUzLTgxZGMtMTU1MjZiZjdmNGVi
LzEvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3L0XyE9y
GYr/27NCdUVSQeegQwGFWAXLfvf9Bm0aL79pREV1q/jpLHAE5Y5jYtVDoM/ElYpb
Qi4D9u39poU6xP32Ki3SZsnd3Efbx8v98tzqTOj+B5V8d6TjzIZ0HZGY2Bcgqi+2
MXD0IySQTL5XrxK5WL8L3IJ4s6BZGa2c7p+RpT9Kd72HdtEqI3xdgRxsCBgb/gOQ
zK6VF4BtwPCp2I4INV2XKHYmosP/mGCEDXpOtNyBBVmjSc7Vq5In9GTZarCAfOfN
O4NycqRiAyVo26O1mH3EDR/tqwaLZnRfgtjtdI7kBEFoeKUdN+LoJD5gFMbMCUH3
7a06HZFq4lJexg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:00 2026 by rpki-client