Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
File: OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft (raw, json)
Hash identifier: KUTjXqxidG5rdLel5vEaiM7FqPtGbGLhUK5Frh8RYRs=
Subject key identifier: BB:DB:22:95:91:A4:6F:62:37:FA:2D:BA:90:43:B4:DC:E9:02:2D:F2
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 019D389C5715A5059C6993C0BBCEEF0A1703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
Manifest number: 0F83
Signing time: Sun 29 Mar 2026 08:01:03 +0000
Manifest this update: Sun 29 Mar 2026 08:01:03 +0000
Manifest next update: Mon 30 Mar 2026 08:01:03 +0000
Files and hashes: 1: OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl (hash: RbtDwOU+fSUBmNE/w7gRNv8UfBnejKlewdhGNr+wNvc=)
2: SA91wBhkikPDWTrAUdLpOxUcx_0.roa (hash: Y6pGr30mVBYxj09imikNObgMk7TKch+XIWYn2BcZKOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:57:15:a5:05:9c:69:93:c0:bb:ce:ef:0a:17:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Mar 29 08:01:03 2026 GMT
Not After : Mar 30 08:01:03 2026 GMT
Subject: CN=bbdb229591a46f6237fa2dba9043b4dce9022df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:79:30:34:26:a7:bc:94:12:d4:2b:b8:66:70:
ae:2f:e0:50:b8:3f:24:ed:f2:ba:0d:0a:7b:32:3f:
53:8e:cb:28:72:26:da:67:22:ec:2a:40:ba:b0:ab:
ef:05:6d:cf:cb:8b:04:f7:8a:06:fc:98:ed:10:22:
c2:9b:2e:47:c5:a4:80:19:40:d2:c5:16:b6:98:a3:
9d:9a:52:37:97:83:fa:12:0c:ef:47:27:a0:ee:43:
cc:b5:21:c8:6c:dd:05:7d:7a:49:4a:19:2c:ae:95:
ac:93:d3:ad:cf:3a:43:7b:bd:b9:f0:f4:b9:21:b6:
0b:bc:7d:b7:ed:8b:4f:97:ce:79:fc:6b:2e:8e:c4:
95:ec:12:8b:33:f4:df:4b:72:d2:2a:92:d0:f2:9d:
c5:78:bb:da:2b:d3:01:a9:4e:94:ab:22:c5:9c:9e:
1c:fa:0b:24:32:00:e8:90:e2:4b:93:75:8c:93:15:
6d:cf:a4:44:41:c4:ff:1d:8c:28:e1:33:2b:2f:f5:
ec:80:22:14:41:01:2d:17:69:10:49:0b:fe:88:99:
17:20:60:88:02:f7:a2:98:6e:44:de:97:4d:11:43:
34:02:1f:2f:16:34:6a:1e:91:51:93:a9:78:7f:2b:
9d:0d:4a:1a:66:dc:2a:a2:7c:12:be:ae:84:71:68:
52:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DB:22:95:91:A4:6F:62:37:FA:2D:BA:90:43:B4:DC:E9:02:2D:F2
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:86:71:ed:57:0d:8e:db:53:c3:1f:94:4e:78:2f:18:fa:5b:
5d:a0:bc:91:bc:ec:64:e8:2a:66:48:16:41:e9:57:f7:11:83:
30:86:45:dd:a8:2e:df:e1:d8:40:1b:dc:75:a0:da:c4:a3:ce:
26:14:9b:6b:09:b1:b2:30:10:f7:a2:5c:87:6a:ca:a1:60:86:
97:ac:3a:62:6b:ec:bc:b2:0c:01:c8:e0:b7:8e:f9:38:19:9f:
5e:73:98:fd:b4:e4:42:07:bc:47:ec:54:24:47:42:1b:a6:3f:
9e:5d:e1:9e:eb:e1:45:76:39:34:9a:aa:30:a7:98:81:71:a2:
6c:8c:79:5e:b3:e2:11:e0:7d:ca:8b:4f:53:bc:f0:aa:fd:31:
fe:29:e9:1b:f6:7d:cc:a9:49:3a:9c:6a:ef:f5:88:45:45:4b:
c4:8a:c8:ca:25:ab:b8:7c:8c:6f:ea:b6:25:02:74:c5:ac:ce:
aa:3c:35:43:da:31:a6:3f:e5:d1:28:b1:1b:0b:01:93:03:c1:
8a:9c:e6:7a:61:36:31:0a:a4:c4:bd:7d:0b:8f:19:d9:7e:ea:
8e:4a:96:f6:9c:ff:79:56:58:af:78:b4:f1:c3:4f:61:55:7b:
d8:4e:32:03:d9:37:88:9f:8c:44:b6:ea:e3:34:7e:90:04:2b:
8e:52:f2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:20:27 2026 by rpki-client