Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: VtvZph/Ci055KcTvodQHWSRT4ZAPqthR2PwHyn62d2Y=
Subject key identifier: E4:3E:95:02:C1:0F:91:90:F9:84:A3:23:A6:03:AB:48:BF:74:9A:81
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019CE5912CBB77CEF6B423E5957E18D94F55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 174F
Signing time: Fri 13 Mar 2026 05:00:22 +0000
Manifest this update: Fri 13 Mar 2026 05:00:22 +0000
Manifest next update: Sat 14 Mar 2026 05:00:22 +0000
Files and hashes: 1: AfDUmyK_-yRdfu3oY0w-ZmuI_n8.roa (hash: LsPuKpZEctSg8i+4uevFKA+sYuA+iu39H7g8hC66rsA=)
2: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: HMTVCm06tWHHDK+H855i2hqVartaVN6GLyk1ZXeKmmk=)
3: REMby4Ya31OA35rY4teZSHIa0ew.roa (hash: XyeGvAoenWA3MJIYVq931n9fMFmepWjFnS5c3uEtCFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:2c:bb:77:ce:f6:b4:23:e5:95:7e:18:d9:4f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Mar 13 05:00:22 2026 GMT
Not After : Mar 14 05:00:22 2026 GMT
Subject: CN=e43e9502c10f9190f984a323a603ab48bf749a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:8a:fd:37:79:a9:d0:7d:3f:b5:9f:50:a7:
45:58:2d:68:ee:83:5f:96:e7:f1:ba:0f:3c:13:3b:
a4:a1:a6:70:d4:a1:95:30:f3:1f:49:03:00:64:67:
1b:b3:e1:77:36:24:65:73:96:6c:41:2d:2f:93:93:
83:ed:d2:03:09:87:eb:d0:99:ef:64:3f:72:41:0c:
2a:82:0c:dc:9c:72:91:3a:d1:09:4d:eb:2a:ae:1e:
c8:f0:43:4e:47:46:34:c2:f5:4a:40:3f:46:69:69:
1e:ab:d4:c6:61:ce:97:ca:72:26:20:b5:fa:ff:7b:
76:7b:5b:86:9f:c5:e0:e8:21:ec:98:17:5b:cf:bc:
e4:df:b3:83:76:e8:a0:87:d6:35:5c:49:ca:2b:8b:
55:d9:0e:57:af:6c:6b:7b:be:f0:5d:f8:12:ff:c3:
0b:f5:c3:37:65:65:91:74:87:59:39:06:f1:64:ed:
54:1d:97:ea:ad:f8:c5:bd:3d:df:50:ad:6e:a6:e8:
0a:52:0f:06:b7:0d:59:24:43:8f:f2:a6:c6:5a:88:
5c:52:85:50:88:12:85:57:bc:d2:36:07:fc:59:5a:
44:c9:89:00:b0:92:35:d1:64:02:5f:b3:58:08:b6:
9a:25:91:e9:60:6b:51:bd:c9:b9:d2:d1:d6:d0:e8:
07:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3E:95:02:C1:0F:91:90:F9:84:A3:23:A6:03:AB:48:BF:74:9A:81
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:a7:de:05:d1:df:db:9c:be:48:82:4f:51:a7:a1:db:f7:ce:
ea:ad:29:d7:a4:59:1d:b1:11:e2:87:16:b1:0f:3c:c6:1d:1d:
3c:e7:cb:c2:f1:ab:76:15:85:3c:49:4f:cb:3e:91:26:70:91:
c6:92:04:c0:f4:55:8c:ec:f9:b4:8c:4d:f7:ba:6c:10:4d:31:
f0:ba:38:32:24:88:74:53:cb:02:e1:07:33:80:66:8b:47:f3:
6c:11:65:2f:06:5d:aa:44:c8:48:70:d1:46:b8:6f:c9:96:d6:
6d:67:ba:20:4d:98:b9:8d:70:7e:14:83:d5:6d:b6:70:20:1b:
c9:42:25:34:2c:29:82:fe:04:12:ca:05:bd:8e:e0:b7:73:1e:
88:b9:1b:4c:b7:7f:d4:54:d9:e3:a8:d4:f7:c3:b1:d2:3e:fb:
31:8f:12:52:5c:63:81:7b:55:13:d8:87:5a:65:b8:1a:2e:16:
ac:51:3b:cd:1f:5a:4e:fa:e0:fb:63:8b:8c:cb:21:f0:dc:79:
9f:c8:d3:94:ee:93:97:37:fc:0f:cf:4f:25:17:9a:18:3c:aa:
f0:ce:ec:9a:bf:9b:6b:4d:f2:63:d6:f7:79:f9:63:10:14:6b:
08:19:92:c2:38:1a:2e:78:5d:6f:35:5a:07:8e:ff:35:71:bd:
fd:89:fa:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:31:45 2026 by rpki-client