Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: p7ccbSZRvg8mvyu0ZglV2syDs9Pz9swjUwFvQDmeMmo=
Subject key identifier: E9:0C:E0:56:95:90:8D:1D:F3:F4:71:01:9F:7D:12:B9:AF:46:CD:F0
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 019CACB5348542D515BBD7E6E70F8CFDB13F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0FE3
Signing time: Mon 02 Mar 2026 04:01:22 +0000
Manifest this update: Mon 02 Mar 2026 04:01:22 +0000
Manifest next update: Tue 03 Mar 2026 04:01:22 +0000
Files and hashes: 1: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: wW3q0hGdLFu9cTW6Fd8v9eyfBQYp2MiaHHprNp0RJD4=)
2: TEmzgEgKyQo96Gqk3OCXyu8JaO8.roa (hash: w2y72ko+lJjiVlRbZd4qD2G3W4qa+BLqf6Sn4G+/dow=)
3: XWcYfudW_fCjYcND3H407xe959o.roa (hash: hWyo7JRjc5zRnP54qNBVfiEpztNdLDDxrtX9abLg7Ps=)
4: ge5kxbikwrvAEUuIO3lNRkFxLmw.roa (hash: eEJ79T/++oL5XPtUGIItjARG2jFvNlWqvTqYFtL6EkY=)
5: rTgC7PLBMFHhdpl3fBHWaPGZP_Y.roa (hash: ng9lqabxlxHQ1G6hpIjPJfi43vHsrt3ed7Cyb0T70ss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:34:85:42:d5:15:bb:d7:e6:e7:0f:8c:fd:b1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Mar 2 04:01:22 2026 GMT
Not After : Mar 3 04:01:22 2026 GMT
Subject: CN=e90ce05695908d1df3f471019f7d12b9af46cdf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:3a:06:46:9c:57:a8:0f:8d:8e:d2:07:a9:
e6:2d:26:7a:56:67:e1:17:77:fd:16:fc:cb:16:7d:
5d:bf:3f:48:5b:10:d8:dc:07:7a:c5:ce:27:e8:2d:
ff:a9:d1:b2:13:4f:16:77:be:70:6a:aa:17:04:3c:
f1:64:a1:05:86:70:0f:5a:8a:f9:64:e2:f5:79:7a:
ea:65:11:68:27:f1:07:51:ba:42:20:55:1e:0a:9c:
c8:3d:a0:94:55:c6:53:c8:67:2d:e5:66:64:30:28:
bd:a1:c6:de:74:c5:b6:ee:46:0b:3f:2d:66:8f:41:
be:d4:6b:6c:87:56:9f:aa:8f:c5:c4:68:7a:89:39:
d2:9c:86:2e:b7:f6:45:b1:15:8a:9d:b2:5c:86:c9:
c4:73:e1:1f:1a:ee:f1:f2:07:00:83:ac:88:47:a9:
e7:95:bb:6c:53:cd:b3:8d:4d:de:ff:34:47:01:d9:
2d:e7:d8:fc:ca:5b:e9:a9:a2:56:41:c3:7b:81:56:
16:c6:98:ad:72:6a:8a:2e:1c:09:56:f1:2d:6f:25:
a7:20:6b:1b:df:fe:21:52:a0:d1:cb:81:5d:ca:2d:
40:7e:5e:60:13:18:3e:f6:c6:87:ac:c5:29:a5:16:
48:78:d7:ea:1a:d1:43:f4:7f:59:6f:03:b1:6b:24:
9b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0C:E0:56:95:90:8D:1D:F3:F4:71:01:9F:7D:12:B9:AF:46:CD:F0
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d1:15:0e:14:c2:fa:7a:2f:b3:7c:03:e4:81:f2:c1:fa:7d:
a1:15:89:20:35:86:8c:e7:fa:58:a9:fa:22:77:ba:f0:e0:63:
8c:d3:dd:4b:f1:47:73:7f:8a:64:c3:d0:9e:7f:6a:60:55:b7:
92:ad:74:72:ea:d2:c3:1e:60:11:6a:79:71:a2:04:05:4a:1c:
5e:44:13:40:d2:18:4f:33:5d:e8:73:56:65:eb:07:40:96:31:
2f:4f:b8:41:26:4b:c7:11:fb:9f:2d:f3:f3:cc:00:37:ad:dc:
b3:c1:b1:3f:00:2d:c7:08:48:f4:12:42:97:b7:d3:bb:f7:70:
89:99:f7:d8:82:a3:83:dd:84:e5:94:f5:4c:cf:74:fe:83:67:
18:7a:cd:4f:8d:bd:8e:f1:ab:0b:ff:9e:90:f0:62:ce:f9:59:
a2:eb:48:e4:fe:ae:70:e5:57:51:6b:24:c1:03:5d:e6:07:90:
00:a0:bb:f9:ba:e3:2a:3e:2f:31:d6:76:52:2d:ee:18:9d:38:
6c:66:8a:cf:f3:5f:d9:e1:14:2d:5f:53:44:0e:18:c2:3c:c8:
9f:c6:0a:2e:27:54:30:67:cd:c1:8f:51:50:6d:71:04:52:b3:
92:45:83:a1:de:09:2e:d5:8f:0f:d8:76:b5:e6:06:b0:e9:24:
a9:a8:f1:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:43:30 2026 by rpki-client