Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json)
Hash identifier: S5yUxBrBDhcvfaNkJJZjYuYNTvJfFd0K5p8dQOlnnEk=
Subject key identifier: 27:48:C0:D1:EC:EE:BE:0B:A6:9C:75:2A:55:DB:1A:1A:53:A1:EF:7D
Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Certificate serial: 019D3A53BF675CE96FECE1D81BEA9BAA4CE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
Manifest number: 1874
Signing time: Sun 29 Mar 2026 16:01:00 +0000
Manifest this update: Sun 29 Mar 2026 16:01:00 +0000
Manifest next update: Mon 30 Mar 2026 16:01:00 +0000
Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: qa4esUonxNWkwLWS+N9Y9+YUkUGm9v07s81czT2dZUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:bf:67:5c:e9:6f:ec:e1:d8:1b:ea:9b:aa:4c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Validity
Not Before: Mar 29 16:01:00 2026 GMT
Not After : Mar 30 16:01:00 2026 GMT
Subject: CN=2748c0d1eceebe0ba69c752a55db1a1a53a1ef7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:18:62:af:06:6d:65:c7:e0:6c:0d:3e:1d:6b:
06:aa:de:f5:47:91:91:cd:d3:63:c2:68:a8:8a:1e:
c2:b4:3b:b1:5b:16:df:84:f1:5d:38:2d:97:38:e3:
71:dc:5d:15:cc:c6:13:55:31:90:b6:e7:4d:61:ba:
d7:c4:73:2c:b1:b7:40:14:2c:d4:fb:62:09:9c:2c:
95:a2:87:b2:0c:1c:5c:9e:86:29:51:91:f3:53:77:
ae:dc:58:90:c8:e1:50:ec:b7:44:0a:2e:8f:0b:f4:
93:67:c3:16:66:cd:a7:a2:2c:73:a3:6d:25:57:d9:
42:d3:3a:81:56:9b:ac:9a:9b:64:8b:19:a1:e8:69:
39:81:43:4a:ef:7e:93:96:0e:29:7d:3a:03:bd:21:
d8:b5:ed:f6:65:ef:74:da:f2:cd:33:0f:08:fb:a5:
4d:15:dd:5c:9e:c7:12:19:be:df:2d:14:d8:85:4f:
52:49:70:ec:c7:1f:2a:68:ea:22:a4:4e:84:13:88:
fa:ee:e6:e2:de:30:c3:68:5b:0d:29:e4:6f:b6:8a:
b5:20:89:ca:25:09:5b:a4:a5:07:a5:ab:68:8b:75:
08:e4:cd:0c:4c:30:2a:53:bd:b7:b0:75:82:1a:08:
4d:e2:15:14:ef:e0:d2:18:bf:7b:72:b1:d7:cf:3a:
1f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:48:C0:D1:EC:EE:BE:0B:A6:9C:75:2A:55:DB:1A:1A:53:A1:EF:7D
X509v3 Authority Key Identifier:
keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a3:a7:7d:48:e9:e5:e3:6a:e8:7d:8b:27:8a:49:d2:57:63:
2e:2b:f6:48:80:b0:c2:e5:74:32:7b:7a:2c:dd:d0:78:d8:c1:
24:c1:79:de:91:97:cc:d7:00:54:d7:d8:31:47:41:f9:05:db:
36:d0:3e:dd:97:1b:dc:e2:32:f2:f3:e0:ed:06:0f:8b:23:e4:
70:48:0c:76:d2:26:25:20:ff:ab:18:c9:65:68:4b:06:f0:34:
d9:da:00:52:80:aa:c3:ea:e9:bb:ad:c4:41:ae:6b:bc:c3:16:
e8:50:e7:36:c9:29:8c:61:10:c1:5c:e9:42:14:c4:b5:d7:ee:
2e:3b:71:73:06:10:d9:af:3a:ce:20:d7:c4:9b:3f:ae:b1:69:
c8:f3:ad:5b:b2:a7:6b:2d:92:cc:0d:51:a5:1b:4a:e6:9d:16:
0b:8d:02:b5:8a:cc:8e:46:e0:83:53:36:a0:6b:50:b8:8e:04:
77:91:b4:61:e7:47:c5:a4:75:a5:fa:c3:b3:d1:9e:c0:c6:9e:
7a:fb:55:e5:1d:c7:c0:11:1d:4e:30:5d:63:a9:cc:ea:b0:48:
a3:ab:22:3b:56:82:19:2e:50:80:34:c0:76:4d:4c:a9:30:a5:
13:c2:6d:ba:b6:a4:1a:45:ae:04:f1:96:b7:d3:d7:16:13:fa:
2a:41:d5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:55:30 2026 by rpki-client