Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json)
Hash identifier: /64DQA+rOgy9AL0eD9tyTHUf/KCh+Bq521oqx675Zl4=
Subject key identifier: E4:A6:AF:13:07:56:39:AD:8D:00:57:CD:45:A1:64:B7:BD:48:7A:17
Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Certificate serial: 019CE7B7324A2FC1D8F3629A3A604E6AB178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
Manifest number: 04B5
Signing time: Fri 13 Mar 2026 15:01:08 +0000
Manifest this update: Fri 13 Mar 2026 15:01:08 +0000
Manifest next update: Sat 14 Mar 2026 15:01:08 +0000
Files and hashes: 1: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: 73dv272Tm6m8PVwf+WIw5K7qjuRYa89U2LdFN3VDrGg=)
2: QTaYixkWug0WkImFD5gnGK_ASr4.roa (hash: w7qx/N8YQKmCAl0otduhK8XuUZj0HapOBC1Dku0mdTQ=)
3: xo3gR3-KM6S_Zel79WurR5Cgqhw.roa (hash: Dhbvi9g1SOEv1jJ9w629oy4OgTHWzucQiL6zYBKcTBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:b7:32:4a:2f:c1:d8:f3:62:9a:3a:60:4e:6a:b1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Validity
Not Before: Mar 13 15:01:08 2026 GMT
Not After : Mar 14 15:01:08 2026 GMT
Subject: CN=e4a6af13075639ad8d0057cd45a164b7bd487a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:ee:fe:c5:9d:1f:04:cb:99:c7:85:57:b9:
46:c6:dd:f0:80:ef:fe:f2:d1:90:3b:5a:aa:a0:aa:
2e:6d:d7:53:46:5b:d7:69:12:6f:0a:96:72:0f:df:
df:0c:ae:67:17:e1:6b:d4:e2:5f:27:da:0d:37:63:
25:29:68:83:5f:63:ad:8a:cc:cc:10:11:77:68:99:
34:66:c5:05:23:48:ff:6f:4f:6d:4e:22:dc:c7:11:
6f:83:0a:2d:6b:b3:d4:8e:e4:fe:c8:ca:5f:9a:76:
19:50:00:36:e7:a7:ed:ea:fc:81:58:c5:1a:f2:65:
a3:23:62:aa:49:95:80:35:f0:b3:08:9d:47:b5:da:
1f:b9:43:8a:be:bf:6b:d2:f0:99:a4:7b:cc:76:0e:
56:cd:23:09:1e:cf:22:12:28:3f:6c:0b:0b:fe:a8:
23:23:27:f2:37:99:34:1d:4f:d6:d6:53:fb:0e:50:
34:8d:a0:1d:12:16:ef:05:39:17:db:98:24:08:8a:
0e:78:6e:cb:7d:53:10:e4:b2:6b:15:3c:6c:d9:a5:
05:0e:49:a6:14:15:b2:a7:d5:dd:e7:81:ee:8f:32:
63:8a:ae:d4:a0:21:ef:51:8d:e0:ea:ff:df:73:c6:
84:60:6c:da:3a:b6:48:2a:ff:52:27:11:82:b5:ba:
a0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A6:AF:13:07:56:39:AD:8D:00:57:CD:45:A1:64:B7:BD:48:7A:17
X509v3 Authority Key Identifier:
keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:14:68:ab:1b:02:b9:2b:f4:84:5f:7c:a6:91:87:6f:95:67:
97:91:f9:18:6e:be:86:7a:74:8f:d9:aa:16:e0:3f:47:9c:ba:
53:f7:83:97:bd:a9:c0:14:e9:ce:2b:d6:3f:4c:ca:a8:0e:b7:
cb:4d:3b:9c:3a:66:13:12:50:b9:5a:fb:d8:48:90:c6:da:4d:
cb:c0:77:da:eb:1f:49:11:67:b0:81:54:a8:83:f4:14:6c:78:
8d:be:80:e2:f5:b0:48:7f:4e:1c:fd:92:b4:ab:ce:73:ae:28:
24:c1:2c:b5:e4:97:12:91:47:a1:79:96:9a:ba:3a:9d:48:76:
2b:2c:8b:17:22:5b:d1:c2:a4:c3:44:aa:12:8b:36:12:f1:30:
42:c8:2e:36:f8:18:00:92:6b:0c:99:e4:15:bc:6c:24:6b:d2:
60:37:1a:07:f3:fd:5e:a3:17:17:9f:69:a9:07:23:0d:7f:c7:
a5:89:fb:3f:6d:b2:4e:66:90:92:bf:eb:5a:62:aa:13:be:2e:
1a:a3:69:28:87:c4:aa:da:0e:5f:58:18:77:f4:38:a5:d8:8b:
f5:5e:9d:4b:d5:63:e4:a3:b6:36:19:e8:dd:e6:36:49:fb:fd:
3a:14:b2:c0:bb:d0:6e:1c:18:47:ca:85:cb:01:d2:0a:96:bd:
e9:b0:04:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 23:50:29 2026 by rpki-client