Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft
File: OPJMluat5giBDDDZoTB8xpr5_00.mft (raw, json)
Hash identifier: 8iq97XGBSdM891Bj5JpZ94YVlkFqHmZVj7Pqu0//sFg=
Subject key identifier: BA:25:87:F9:2D:E6:75:83:1B:72:87:3D:C9:9F:47:CA:AF:35:EA:FD
Authority key identifier: 38:F2:4C:96:E6:AD:E6:08:81:0C:30:D9:A1:30:7C:C6:9A:F9:FF:4D
Certificate issuer: /CN=38f24c96e6ade608810c30d9a1307cc69af9ff4d
Certificate serial: 019D37C11E3D723FA4100E6CC63822CFB115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft
Manifest number: 0F44
Signing time: Sun 29 Mar 2026 04:01:36 +0000
Manifest this update: Sun 29 Mar 2026 04:01:36 +0000
Manifest next update: Mon 30 Mar 2026 04:01:36 +0000
Files and hashes: 1: OPJMluat5giBDDDZoTB8xpr5_00.crl (hash: dZxtZ2UHBNfIBbi+wuOuEFptWHH4nbqM9Iy5WkYx+QY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:1e:3d:72:3f:a4:10:0e:6c:c6:38:22:cf:b1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f24c96e6ade608810c30d9a1307cc69af9ff4d
Validity
Not Before: Mar 29 04:01:36 2026 GMT
Not After : Mar 30 04:01:36 2026 GMT
Subject: CN=ba2587f92de675831b72873dc99f47caaf35eafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:e7:72:de:a1:06:b0:a9:78:f6:15:14:0f:
36:43:98:e0:1c:da:61:38:0e:4f:a9:c1:b9:7f:59:
ec:cc:9e:8a:cb:9f:70:65:5f:b8:e8:b0:0e:c5:8b:
66:60:44:73:47:31:03:85:e0:75:e0:5f:c2:cd:80:
d5:74:56:74:78:c2:39:6c:09:34:93:2e:73:e3:db:
29:ec:4a:89:29:4c:40:62:b7:4c:1b:48:a1:80:3c:
88:f2:31:b0:82:6d:63:af:2a:75:51:47:23:50:c6:
2d:8a:bf:37:10:b1:52:45:ad:85:63:4c:bc:6d:c5:
af:43:61:10:77:27:4e:9c:90:d2:1c:ae:39:fd:b5:
fc:c4:02:64:5a:d4:d6:b8:f7:ac:cc:84:4a:18:28:
f3:49:61:27:3f:30:03:ec:a1:83:ee:c4:31:b1:fb:
dd:c6:ff:b3:82:21:66:73:2a:57:69:b4:22:1d:c3:
2b:41:36:11:65:03:48:db:61:5f:2e:77:2e:7b:f8:
ba:eb:bb:78:6f:84:16:2d:45:d4:64:76:d7:f5:ba:
1e:5b:10:db:db:b0:ed:e2:0f:31:0b:a4:8f:fa:63:
f3:03:db:39:22:55:c0:d6:23:02:5f:c0:7e:7b:31:
f4:3b:22:16:d1:a4:cd:3c:ce:14:75:c3:d4:46:22:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:25:87:F9:2D:E6:75:83:1B:72:87:3D:C9:9F:47:CA:AF:35:EA:FD
X509v3 Authority Key Identifier:
keyid:38:F2:4C:96:E6:AD:E6:08:81:0C:30:D9:A1:30:7C:C6:9A:F9:FF:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:1e:d1:9f:cc:a3:9e:4c:fd:55:fd:22:68:fe:1c:9e:99:a0:
f2:a2:d2:e3:42:e4:eb:b2:cd:56:c4:39:1f:dd:d9:1a:d5:c5:
12:ea:68:e8:8f:e4:f0:1a:18:e8:34:b3:d3:dd:47:8a:00:b9:
28:be:6f:cc:10:34:85:18:9b:d3:2b:9d:f0:6b:31:a9:b6:76:
aa:40:3f:65:39:9d:04:2e:f5:d8:fa:15:a6:0c:ef:6d:fa:ee:
40:09:25:62:bf:77:ef:db:c1:ac:e8:01:de:00:87:88:5c:f9:
12:9f:91:69:c2:2b:84:95:69:a2:2a:f4:d6:d6:c4:72:f2:70:
b0:69:7f:7a:7e:0a:63:d7:64:4d:c0:d9:87:91:1a:78:62:a9:
03:7f:87:6e:07:b0:44:60:46:cf:f9:20:dc:59:58:0f:e6:d4:
4f:5c:fd:77:22:78:16:fa:7b:b8:a3:a2:7a:c0:19:2c:ae:fb:
e9:03:87:8f:ee:c3:59:15:b1:6f:8c:4f:95:d4:41:31:06:98:
66:f2:5d:1b:81:3c:4e:e2:ef:da:98:14:a0:97:5d:57:c6:be:
74:16:11:80:99:11:ef:a8:5d:1e:ab:fe:c6:0b:d4:f2:24:f8:
49:4d:bf:e1:3a:e1:47:78:6b:47:13:e8:10:04:21:d2:85:5b:
b4:ef:c7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:13 2026 by rpki-client