Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
File: OCeQLuylKp8IFACI9VjkUuDslV8.mft (raw, json)
Hash identifier: bJaL3762/bm/M2VxyBLfPZpOXEdMYQxochh2DQEMwd0=
Subject key identifier: BB:65:02:B1:F3:B5:E2:E9:D4:75:84:FB:60:B2:29:3E:9C:27:EF:54
Authority key identifier: 38:27:90:2E:EC:A5:2A:9F:08:14:00:88:F5:58:E4:52:E0:EC:95:5F
Certificate issuer: /CN=3827902eeca52a9f08140088f558e452e0ec955f
Certificate serial: 019D36E4CB7ECC8BC2D4B9F88976440567EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
Manifest number: 0354
Signing time: Sun 29 Mar 2026 00:00:56 +0000
Manifest this update: Sun 29 Mar 2026 00:00:56 +0000
Manifest next update: Mon 30 Mar 2026 00:00:56 +0000
Files and hashes: 1: OCeQLuylKp8IFACI9VjkUuDslV8.crl (hash: 4zj77voa5he1pZqUqWUn1yKxKQfMuJrtYVjTgFQupRQ=)
2: avpRzc4rlLKtPjM9Nx0tTIvXDJw.roa (hash: IhFfZxmSF0cAaOFLNU/UGx/v0dCXUziLntdrEkHsx9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e4:cb:7e:cc:8b:c2:d4:b9:f8:89:76:44:05:67:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3827902eeca52a9f08140088f558e452e0ec955f
Validity
Not Before: Mar 29 00:00:56 2026 GMT
Not After : Mar 30 00:00:56 2026 GMT
Subject: CN=bb6502b1f3b5e2e9d47584fb60b2293e9c27ef54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:96:0c:bb:ad:b7:14:58:ee:da:98:31:23:71:
b0:a7:0b:7e:9c:60:68:55:16:d0:6f:9d:21:95:05:
2f:4a:e8:9c:bf:e5:f4:c1:da:62:27:f4:5e:60:f0:
0a:94:f5:d4:99:af:be:c7:37:7a:47:e5:00:d9:3f:
cf:bc:19:1f:95:f2:3e:0f:fc:35:73:2c:d7:35:ae:
04:bb:3b:08:3a:69:3b:ff:84:77:a2:6b:e8:ed:af:
bc:f0:84:42:1b:41:d0:45:25:a0:0f:85:f0:84:b5:
55:01:09:f4:ac:60:3a:c3:c5:f7:fc:1d:46:26:3e:
49:21:48:1a:a2:eb:8b:40:5a:13:3f:d2:11:ba:a1:
5c:94:be:21:29:a3:28:1c:92:ab:1b:3f:fe:8c:b7:
27:ca:10:4f:52:f1:5e:1b:db:20:f2:bf:f0:a6:37:
51:b5:75:e9:2b:fb:6c:bf:2e:bb:29:3a:2e:76:4d:
2a:51:22:5c:d8:fb:33:39:3c:f4:3d:2f:4e:54:3f:
6a:eb:3f:c0:ce:da:d1:db:63:ae:fe:6f:69:7b:10:
ce:e7:88:27:85:75:cc:c7:84:4f:6b:5f:cf:d8:8c:
67:07:73:e5:09:38:c5:a3:ff:5b:a1:e7:43:d4:44:
b8:b9:d5:55:06:e2:ef:7e:0f:13:c7:e0:79:24:4e:
44:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:65:02:B1:F3:B5:E2:E9:D4:75:84:FB:60:B2:29:3E:9C:27:EF:54
X509v3 Authority Key Identifier:
keyid:38:27:90:2E:EC:A5:2A:9F:08:14:00:88:F5:58:E4:52:E0:EC:95:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:94:db:3d:fb:2e:b6:c2:c0:8f:bb:ee:96:35:53:ea:af:9d:
93:2a:f6:14:1d:9a:00:25:58:91:12:b5:db:66:bd:fa:39:e7:
61:bf:bf:41:c4:0e:d0:f7:61:88:b3:08:17:08:6e:46:43:e1:
7d:25:c6:f9:fc:73:fe:97:b8:15:bb:cc:b5:12:e5:5d:c5:8f:
b1:97:3b:e7:d8:da:db:94:74:4f:36:e1:ac:a4:e9:de:db:22:
56:9a:21:46:b3:0a:6d:e9:c6:76:ae:78:ac:9d:57:f7:af:7e:
b5:a6:ca:4e:b1:6f:31:cd:22:bf:1b:3e:ab:69:aa:48:bd:9a:
5f:fb:59:de:50:bb:20:09:85:ca:e9:59:40:16:60:56:21:4d:
2c:d0:c6:bc:87:9b:06:9d:74:15:f6:42:35:d8:66:82:a8:a4:
4a:a0:87:ca:b3:c0:3a:d0:c6:e2:0f:57:f6:b0:86:26:52:2d:
a5:a9:cb:70:45:5e:48:f6:f2:46:be:24:dc:9c:2a:38:a2:3b:
d5:1b:6d:31:92:00:fd:59:dd:15:d2:1a:46:1d:2d:ac:43:02:
c0:f0:da:a9:76:ba:28:07:47:45:5e:42:3e:b2:45:57:de:6e:
50:77:34:66:b3:9e:e7:20:0f:3c:0c:a8:56:4c:91:2e:e1:c5:
97:49:8f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:36 2026 by rpki-client