Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: y+syJab7A+dBmT5KAoXCF9HwQVNo64IRaDmXqO0pcpw=
Subject key identifier: 55:16:76:B8:2A:2E:81:F4:AC:BC:AF:A4:FD:61:F9:63:B4:0B:5B:BB
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019EB8EA4FE0FF62FB6F01FCA79BE51071B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1841
Signing time: Thu 11 Jun 2026 23:00:24 +0000
Manifest this update: Thu 11 Jun 2026 23:00:24 +0000
Manifest next update: Fri 12 Jun 2026 23:00:24 +0000
Files and hashes: 1: AfDUmyK_-yRdfu3oY0w-ZmuI_n8.roa (hash: LsPuKpZEctSg8i+4uevFKA+sYuA+iu39H7g8hC66rsA=)
2: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: Rw0/VltxgGI+iFULNaL9RtWPwtsv+0PH01M08wnRDx8=)
3: REMby4Ya31OA35rY4teZSHIa0ew.roa (hash: XyeGvAoenWA3MJIYVq931n9fMFmepWjFnS5c3uEtCFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:4f:e0:ff:62:fb:6f:01:fc:a7:9b:e5:10:71:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Jun 11 23:00:24 2026 GMT
Not After : Jun 12 23:00:24 2026 GMT
Subject: CN=551676b82a2e81f4acbcafa4fd61f963b40b5bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fa:86:5e:78:05:77:bf:38:31:5d:df:d7:b1:
69:d5:a8:b8:7c:aa:c8:bc:a7:c8:db:93:d7:14:e5:
fd:6a:a2:82:04:16:b2:0b:ab:e9:20:f1:ac:69:57:
a8:23:a3:87:93:bb:36:4d:52:ea:28:23:7f:a4:1e:
93:b1:df:6a:13:ab:1b:5e:79:48:52:b3:d3:ac:21:
a3:85:77:1a:ca:19:3d:e6:d7:3c:07:02:6d:74:8c:
58:04:a2:98:1d:13:9b:ec:8e:ac:cd:65:d5:23:5f:
c3:63:a9:86:69:6b:f6:7c:78:2e:e9:c8:92:2e:3a:
43:c8:29:5b:44:4d:5b:84:15:72:cb:24:5f:ea:c3:
25:bc:61:c7:16:af:0a:b2:a5:7c:c0:67:20:05:24:
96:98:b7:de:e1:49:04:b4:c5:25:47:e2:37:44:71:
9a:aa:e4:11:92:8a:c9:f6:16:a1:13:cd:32:98:bf:
e3:fa:f6:f0:54:d7:9b:2d:5f:b2:85:e2:d9:e8:c3:
5a:af:96:12:66:3b:f0:4f:12:bb:3d:df:9c:9f:ba:
2b:6e:a0:84:57:dd:e0:27:83:bf:f8:70:9a:1f:5e:
e3:36:5e:70:bc:6e:8d:43:93:9a:49:44:89:e9:b3:
e1:b2:9b:b5:c3:92:7d:f7:66:21:51:b3:48:de:8f:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:16:76:B8:2A:2E:81:F4:AC:BC:AF:A4:FD:61:F9:63:B4:0B:5B:BB
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:fd:19:49:86:22:88:66:b7:1c:cb:5f:dd:09:9e:e2:ac:4d:
2c:5c:b0:aa:88:d0:3a:63:d5:ac:2a:31:db:45:99:af:42:3a:
a4:20:3d:f6:18:72:29:f6:3f:92:f8:d3:d3:fa:68:8c:51:21:
52:3c:bd:d7:dd:be:36:0f:b2:93:be:70:3c:8c:27:4a:bb:9b:
fa:45:ca:a2:1d:31:29:f5:f9:ee:f5:65:ff:89:57:04:4d:8c:
b2:02:de:9a:56:80:1a:f5:13:9c:28:5e:94:68:0f:2b:cb:80:
51:07:6a:7e:19:d4:5f:01:e4:9a:a0:42:60:bd:90:29:c2:a3:
f8:35:41:81:e2:ed:b2:f1:c7:22:4b:f5:2d:b2:1b:d3:3c:ea:
51:8c:59:21:f5:14:ca:89:43:a4:7b:7c:29:dd:8f:fc:28:d6:
40:d9:15:28:ae:7b:62:43:12:20:5f:e5:65:56:61:48:c6:44:
05:55:b2:4e:31:95:d3:f6:47:16:d9:a2:8b:b4:f0:a6:7c:7a:
b7:05:b8:f5:51:76:d1:31:af:f8:ff:bd:6c:3b:b7:bb:2c:b3:
1b:40:3b:ab:22:56:e1:f6:34:ab:b3:2f:69:fb:f4:ac:b5:d1:
a2:38:1a:02:43:83:16:45:d1:b6:ea:3e:35:f6:cb:b3:60:f0:
28:4a:7a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:11:14 2026 by rpki-client