Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
File: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft (raw, json)
Hash identifier: C3FP+TT+7lhsL3woUSrZFacYXiCbciNp57rrXQbbK3Y=
Subject key identifier: 07:12:1B:F3:4F:BB:FB:C6:BB:3F:E8:EF:43:08:D3:10:AE:4E:B4:29
Authority key identifier: 38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
Certificate issuer: /CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Certificate serial: 019D37890A6116204DB1116111536E00507B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:00:21 +0000
Manifest this update: Sun 29 Mar 2026 03:00:21 +0000
Manifest next update: Mon 30 Mar 2026 03:00:21 +0000
Files and hashes: 1: 4QErYyNxMj17fmmm_V9KhVEYnPs.roa (hash: H4wqYD+7ia6e/4/SeX93ZuX1r2stfSvamQFuWxwWz9g=)
2: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl (hash: UQuewcqDXzJCQ4/oiSmMUnb1CqipgOzesnyRU4uT7Ck=)
3: ts_UWt22Q4mWqxSB7ZFYxzHtPis.roa (hash: ftNvK4quhd+aCIDNnGQHvGWOv6HTZuEG7taZaiTGHxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:0a:61:16:20:4d:b1:11:61:11:53:6e:00:50:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Validity
Not Before: Mar 29 03:00:21 2026 GMT
Not After : Mar 30 03:00:21 2026 GMT
Subject: CN=07121bf34fbbfbc6bb3fe8ef4308d310ae4eb429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ae:36:15:59:ba:a8:e1:9b:ff:80:fa:83:bd:
2f:5d:dc:c8:79:bf:70:67:67:ed:fa:8f:9b:db:27:
c0:89:b8:b4:3d:ef:8b:42:8a:ef:9d:87:ee:86:b3:
f3:96:b9:22:ab:dd:94:65:ff:40:fb:99:d2:93:9b:
4b:ff:6f:e6:1a:b6:73:b6:af:60:fe:fd:62:cf:b7:
a9:b3:85:52:a6:7f:be:e3:53:0c:5b:95:4d:58:b3:
7d:93:58:58:d3:10:9c:4c:c2:2d:55:e6:06:22:2a:
32:de:ef:fb:a4:f4:50:97:f9:ae:a0:ef:18:51:76:
9d:ab:7f:d4:7a:b6:a8:f1:b7:1d:d4:58:57:d9:d0:
a5:c6:23:67:8f:07:d9:8a:76:2e:3e:6f:90:7e:15:
4a:bf:4f:90:f9:4c:dd:52:94:d8:5d:a5:75:22:9e:
a7:aa:d1:93:dc:a3:4e:48:06:80:f6:30:33:fa:84:
be:29:75:5a:c3:a6:1f:0e:90:41:76:b6:ba:c0:a5:
15:2e:34:e3:12:ba:41:aa:2d:d1:51:ac:73:02:59:
97:60:de:d2:68:c9:04:e2:31:69:82:87:97:d9:fa:
4f:dc:11:8e:50:e0:e2:e2:5b:e9:71:c6:1d:6a:f0:
e9:12:2f:d6:d0:c2:11:d8:be:0a:1d:07:3f:84:cd:
de:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:12:1B:F3:4F:BB:FB:C6:BB:3F:E8:EF:43:08:D3:10:AE:4E:B4:29
X509v3 Authority Key Identifier:
keyid:38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:34:5d:26:ac:53:96:0c:67:5e:98:b0:e4:78:ae:10:24:65:
21:d1:4f:da:a1:0c:aa:d0:80:2c:67:35:a4:07:d6:5e:33:55:
c2:a6:ff:07:71:66:53:93:7c:e6:7b:bb:c3:77:3a:50:aa:da:
b8:ab:3a:69:ce:2e:04:a2:5e:06:ce:16:28:f5:8d:4c:87:f9:
09:ba:4d:c4:40:45:7d:c3:f7:b5:47:82:0d:62:66:b0:a6:66:
11:a9:e0:7e:f0:02:e1:e4:c8:c6:d9:ce:59:9c:2b:70:f7:20:
9d:d9:f3:7c:6c:c9:bc:46:4a:6b:cb:80:bf:ae:03:cb:17:d6:
a0:bf:bb:89:21:bd:53:60:91:a4:8d:4c:d6:29:44:a4:d4:b4:
54:0c:00:b9:36:18:01:c6:f1:b7:4c:37:f1:f3:11:91:76:78:
98:2a:4c:c4:18:5b:38:cd:09:89:ca:0f:ac:de:29:39:c3:e7:
f8:45:78:14:4e:b3:cd:2d:8e:1c:a6:e0:c4:27:ca:e5:8c:b7:
87:86:bd:6e:1a:92:99:71:d4:c8:65:42:a7:d3:c1:0a:2e:a9:
46:27:9e:40:64:ad:fd:54:cc:4b:5e:4f:2a:05:e2:01:d7:68:
3f:02:46:33:ba:be:0a:47:63:ba:15:af:b1:94:e2:82:6a:f6:
64:75:67:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:18 2026 by rpki-client