Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
File: OYk2YD7bhVi2GYI8B36euGlHWLI.mft (raw, json)
Hash identifier: TRCMcbXZ3ngpLiAJWFH70THUxhJ4X9cfdQU4nojQ8Cw=
Subject key identifier: 1C:CC:69:9C:5C:38:84:E1:13:EE:01:94:26:D0:17:DF:6D:31:E1:9C
Authority key identifier: 39:89:36:60:3E:DB:85:58:B6:19:82:3C:07:7E:9E:B8:69:47:58:B2
Certificate issuer: /CN=398936603edb8558b619823c077e9eb8694758b2
Certificate serial: 019CAC46848F8A945B60DB380576102CDFAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
Manifest number: 0743
Signing time: Mon 02 Mar 2026 02:00:28 +0000
Manifest this update: Mon 02 Mar 2026 02:00:28 +0000
Manifest next update: Tue 03 Mar 2026 02:00:28 +0000
Files and hashes: 1: OYk2YD7bhVi2GYI8B36euGlHWLI.crl (hash: iRTjcZdYrVlCBjMBaszujVWr1YlleedtYiMgarZoNfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:84:8f:8a:94:5b:60:db:38:05:76:10:2c:df:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398936603edb8558b619823c077e9eb8694758b2
Validity
Not Before: Mar 2 02:00:28 2026 GMT
Not After : Mar 3 02:00:28 2026 GMT
Subject: CN=1ccc699c5c3884e113ee019426d017df6d31e19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:12:19:3b:70:86:1f:a6:48:9c:ed:06:9c:8e:
ea:f3:00:27:aa:49:e9:97:9c:ea:c4:de:f9:61:7b:
f9:dd:1d:47:bd:26:ad:df:f7:d5:17:c2:94:9b:09:
6d:e5:a4:fb:ae:e3:fe:6b:b5:2a:aa:aa:a1:58:22:
cd:1d:bb:65:00:14:fe:68:89:93:93:af:31:d9:c5:
d3:68:f0:b0:e0:67:88:16:74:8f:7b:76:e8:25:4e:
55:dd:70:3d:fa:ff:0a:13:3f:d4:f1:5a:ba:ac:38:
0f:e6:28:22:80:82:e9:43:9f:03:d4:4e:99:da:e6:
4d:66:61:f9:3c:be:11:7b:b3:4f:84:0c:54:a4:b5:
9e:09:7f:20:52:4c:3b:47:af:0f:ef:10:3c:66:ce:
81:88:af:e6:ff:c2:4e:5e:51:4d:bf:48:a1:b9:00:
97:f7:29:e2:07:bb:5a:36:94:c5:f4:d8:08:15:56:
27:7c:a5:1c:0a:6e:d1:29:8c:41:f9:77:97:db:cf:
3b:bc:64:4f:ee:a0:57:1a:d6:61:b2:87:66:25:ae:
5b:33:31:28:72:de:88:85:06:41:f4:66:df:0d:6b:
7c:9b:7c:2e:ef:72:91:fb:07:6d:85:f4:81:e8:f6:
3f:dd:39:5a:0c:ab:1b:3d:52:4a:0d:d4:11:4b:67:
08:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CC:69:9C:5C:38:84:E1:13:EE:01:94:26:D0:17:DF:6D:31:E1:9C
X509v3 Authority Key Identifier:
keyid:39:89:36:60:3E:DB:85:58:B6:19:82:3C:07:7E:9E:B8:69:47:58:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:17:e5:04:d7:9e:ca:23:79:96:f7:48:cf:a4:56:ab:af:bb:
34:49:56:a4:00:a9:51:78:ff:56:23:1a:26:c8:cc:41:3c:f7:
d7:85:49:a8:ba:1b:bf:fa:83:6e:c6:77:d3:78:99:af:d5:20:
23:05:54:94:e8:0c:38:82:b6:c5:3c:9c:0f:e0:c6:78:7d:a5:
3f:10:0c:31:da:54:53:22:ac:62:7d:06:11:50:04:74:d1:35:
fb:20:9e:63:90:04:8f:08:11:40:e8:ea:0a:f2:bf:b3:e0:ef:
bd:cd:f4:ea:4e:91:08:11:1e:a8:77:e8:1d:11:cd:be:55:28:
97:50:9a:f6:8a:fb:35:a1:70:11:de:99:07:bd:7d:ca:6f:4c:
5d:b2:a8:55:e0:ec:2a:60:39:61:1e:78:34:05:0d:58:c2:67:
28:42:ab:56:cb:7f:cd:59:be:3a:16:e1:d0:31:71:d2:78:68:
bc:cc:76:39:cf:b3:83:0d:e0:83:41:fa:88:a0:44:cd:21:b1:
9b:61:85:e3:de:a2:d6:41:66:71:64:7f:bb:bf:ce:bc:29:35:
cf:c8:d8:f5:47:ea:dd:16:42:5a:36:34:02:21:cb:3c:59:aa:
2d:e5:37:a8:bd:8d:03:70:70:04:37:e7:4f:3d:92:95:d2:8a:
19:72:24:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:40 2026 by rpki-client