Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
File: OYhH9wo15xCETpu4omK-3bQLfMk.mft (raw, json)
Hash identifier: P0MPHw3TYvfV42eArbfDuqZLfzgZPOKFp1q849yekj8=
Subject key identifier: 4F:C9:70:D3:80:D0:6F:C3:53:54:94:7E:70:80:2A:34:49:D2:34:8F
Authority key identifier: 39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
Certificate issuer: /CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Certificate serial: 019D389BB98053C4F36F18CD32AEAC5443EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
Manifest number: 0653
Signing time: Sun 29 Mar 2026 08:00:22 +0000
Manifest this update: Sun 29 Mar 2026 08:00:22 +0000
Manifest next update: Mon 30 Mar 2026 08:00:22 +0000
Files and hashes: 1: OYhH9wo15xCETpu4omK-3bQLfMk.crl (hash: dmeFfAdKfQcONuPxIyyvEEc+KnriP3Wa6Blv1Bbd2iM=)
2: j7EcdTVdpUhojTeG57M6lKnsMnE.roa (hash: Fq6R274Vo4z+UeWj5Q+OONHLBGJAcI1+7ZlArfIpltI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b9:80:53:c4:f3:6f:18:cd:32:ae:ac:54:43:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Validity
Not Before: Mar 29 08:00:22 2026 GMT
Not After : Mar 30 08:00:22 2026 GMT
Subject: CN=4fc970d380d06fc35354947e70802a3449d2348f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:2f:9e:42:eb:3b:d0:33:28:f0:97:a3:87:
82:4e:a0:ae:e6:8a:a6:15:be:68:e8:26:e5:63:fe:
d5:ea:ae:d2:c5:19:c9:df:58:4e:22:3c:b1:f6:56:
fa:97:69:2f:24:ec:fd:89:da:42:0d:52:32:eb:b7:
1d:cb:b5:52:57:a5:73:39:5b:e0:82:df:b5:0f:cb:
27:b4:9f:c6:61:99:b2:d9:f5:ce:4e:95:50:6f:01:
9b:73:5f:0f:26:d2:63:4f:da:76:d4:d5:07:27:90:
16:55:85:33:1a:88:ca:ae:07:fb:9b:b5:76:7a:0c:
c5:af:5f:6c:43:24:d4:3b:ff:cc:b9:e3:0c:fe:4f:
29:55:c1:d7:d8:37:12:9a:6f:fc:15:8d:2f:aa:d5:
5a:7c:9b:a0:79:da:27:3f:bf:e4:e6:82:33:ec:d6:
ed:d7:13:0a:4a:f2:9e:ca:dd:a9:9f:6c:75:6f:c0:
cd:51:80:66:5f:38:0b:fb:18:16:51:84:bb:4d:15:
4b:55:75:e3:b1:ea:dc:e0:97:c3:71:54:84:c2:e8:
36:c2:b7:ff:da:d3:f0:f9:89:be:eb:68:7b:da:a2:
b0:d3:db:91:d1:cf:69:7d:44:6e:04:19:3c:6e:77:
51:fe:41:b1:a3:ee:dd:32:ee:ea:52:ff:f2:b1:f2:
ce:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C9:70:D3:80:D0:6F:C3:53:54:94:7E:70:80:2A:34:49:D2:34:8F
X509v3 Authority Key Identifier:
keyid:39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e9:8a:d6:fa:4d:c6:09:f5:10:70:9c:1f:ad:48:56:54:02:
07:64:08:d1:db:05:c5:b0:c4:0a:34:4e:f1:b0:46:74:f9:ca:
57:a9:90:7a:83:ed:c7:cb:e9:4c:97:1f:3c:d2:72:73:24:6e:
39:f6:6d:48:ac:6d:29:ad:32:ae:61:09:08:e5:fd:06:88:28:
21:12:d7:4c:16:21:cf:66:49:da:c9:f3:13:01:76:53:fd:65:
dd:fc:0d:73:b3:d4:0d:d7:d0:4b:79:0e:c4:8a:06:cc:4b:7b:
65:19:9e:73:e7:ad:d1:53:e1:60:9a:13:64:df:ce:d7:22:b2:
9d:a0:fa:c7:c5:5b:96:0d:b1:2a:1e:df:4b:f6:8e:1a:4a:93:
77:02:ea:88:86:96:e9:4b:0e:fb:a2:0b:1f:59:69:7b:29:b7:
f5:46:65:ac:de:d5:bd:a2:79:af:97:5a:f5:b4:1f:97:38:ab:
36:8d:bd:28:f2:04:1f:48:18:a0:cc:75:7f:bd:2a:ee:8e:d6:
8a:e5:16:a3:16:43:be:9c:8e:63:b4:ab:60:23:6d:1f:16:8c:
22:c7:ad:02:af:38:32:8a:11:36:9a:12:1d:ce:81:68:36:ad:
78:d9:22:e0:57:49:c1:c3:bf:f3:7f:24:45:9d:86:d1:f1:dc:
5f:8a:7f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:04 2026 by rpki-client