Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.mft
File: ohdDGM-v51Xxg6l_t7lXq-71Pzc.mft (raw, json)
Hash identifier: BTvkvqbR/26gfCZY0TktaV4oH5C8lsByuzh6Bcr01RA=
Subject key identifier: 9F:F1:33:37:48:42:74:12:36:73:C2:EF:64:6B:4A:8B:BF:F0:CF:DC
Authority key identifier: A2:17:43:18:CF:AF:E7:55:F1:83:A9:7F:B7:B9:57:AB:EE:F5:3F:37
Certificate issuer: /CN=a2174318cfafe755f183a97fb7b957abeef53f37
Certificate serial: 019D37C0460A3A394CBA2FBB73097E1EE7B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ohdDGM-v51Xxg6l_t7lXq-71Pzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.mft
Manifest number: 88
Signing time: Sun 29 Mar 2026 04:00:40 +0000
Manifest this update: Sun 29 Mar 2026 04:00:40 +0000
Manifest next update: Mon 30 Mar 2026 04:00:40 +0000
Files and hashes: 1: ME8J3_Lqo4Jl0Qlw0Go-W9n_fhc.roa (hash: f3hV7y2bBKIVX1QPsIDsCNThmNsZM2K60scI4YyAfLw=)
2: ohdDGM-v51Xxg6l_t7lXq-71Pzc.crl (hash: /f5cz24RNHBdv2F3y70wLXxLfYwLtEBfgaeuB6fwQBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ohdDGM-v51Xxg6l_t7lXq-71Pzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:46:0a:3a:39:4c:ba:2f:bb:73:09:7e:1e:e7:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2174318cfafe755f183a97fb7b957abeef53f37
Validity
Not Before: Mar 29 04:00:40 2026 GMT
Not After : Mar 30 04:00:40 2026 GMT
Subject: CN=9ff13337484274123673c2ef646b4a8bbff0cfdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:90:ea:71:06:0f:06:22:41:14:21:36:94:36:
49:99:50:b4:f1:27:70:8d:01:78:41:e6:38:3e:a0:
58:2b:3e:77:87:22:ca:3d:72:63:54:59:2c:61:dc:
21:93:30:36:7c:c2:c5:d7:3b:be:ed:d0:d3:a1:59:
19:be:a5:5e:a5:0e:5d:b6:85:c7:38:ee:0e:2d:e9:
c0:5c:2e:2e:6f:c5:c7:a2:91:2b:ad:80:96:20:e0:
71:c5:a7:de:ab:ff:77:77:15:19:86:1f:47:a6:1e:
14:51:e5:3e:f9:5d:db:02:6e:4c:5d:88:e8:3a:bc:
ae:f8:5d:ec:49:3d:c8:c5:aa:ed:7d:87:42:49:1f:
9f:6a:96:93:80:85:65:f3:ad:ca:1c:7d:8a:37:65:
01:0e:29:17:b6:0d:83:44:80:12:b6:df:b4:72:a6:
d2:57:40:9a:d2:a9:5d:69:e2:af:60:0a:77:8d:54:
36:87:a3:1e:8b:4a:14:c0:8c:d1:b8:17:a3:2a:26:
19:b0:0a:cd:21:02:d5:94:a6:4c:54:87:d2:49:61:
9d:ff:93:09:bf:12:4e:68:2e:d6:1c:af:41:d8:b4:
67:c4:f3:aa:bf:21:fe:34:2d:d1:ea:19:b4:4c:46:
1b:05:2b:ca:32:1d:7c:d6:3f:4e:54:b9:4d:54:6a:
16:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F1:33:37:48:42:74:12:36:73:C2:EF:64:6B:4A:8B:BF:F0:CF:DC
X509v3 Authority Key Identifier:
keyid:A2:17:43:18:CF:AF:E7:55:F1:83:A9:7F:B7:B9:57:AB:EE:F5:3F:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ohdDGM-v51Xxg6l_t7lXq-71Pzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3d9af9-0829-411b-b76e-e26567f2aee1/1/ohdDGM-v51Xxg6l_t7lXq-71Pzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:67:b7:e3:5d:99:7a:e5:70:89:ca:aa:52:44:cf:31:d1:7a:
52:a4:ab:60:df:02:2e:d9:d0:52:55:ac:30:4c:5b:d9:74:37:
fd:41:73:1a:27:d0:ec:ea:c4:77:e3:53:fc:36:7e:1d:c7:37:
a0:1f:1a:36:12:78:a8:11:db:9d:7f:46:0f:e9:3e:ba:20:2d:
4e:3d:51:5e:2b:e1:a2:f5:d0:fd:6b:4d:09:e6:5e:1f:f0:56:
a8:55:39:2b:f6:6a:1d:c1:97:43:74:42:a1:aa:4d:4e:8a:87:
8d:50:e0:e3:bd:fe:78:ba:04:e1:8a:f8:48:ea:53:84:c3:a4:
72:02:b8:28:05:39:02:ff:60:7d:b1:9c:a2:9a:0b:89:09:d7:
83:99:03:8a:43:92:89:e4:00:93:43:66:8b:ad:ac:73:10:62:
da:a1:05:0d:95:c9:39:0a:6c:e6:1a:a1:d7:12:41:61:51:71:
7c:3a:78:b9:f6:08:58:e5:4c:6f:62:b1:5a:16:49:ee:0e:e6:
37:a0:13:2a:44:6e:7e:51:1a:b8:e2:b4:18:e3:20:f6:b7:3e:
4e:49:9b:59:03:fd:04:d1:c6:6c:7d:4d:02:05:cf:f9:6e:0c:
ff:a4:99:38:0d:70:1a:e2:e6:2b:da:25:5d:d8:ee:88:31:c2:
7f:4c:c6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:40 2026 by rpki-client