Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
File: OBssWXKaU7hBEqryyhIo80JHo5s.mft (raw, json)
Hash identifier: i9ih0HnCQ59ujOceNzW68DyKBzYPbvvPq98oLuhO/zI=
Subject key identifier: A0:5D:0C:19:12:D8:63:08:64:9A:08:2B:CE:3C:6D:41:26:A9:69:C0
Authority key identifier: 38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
Certificate issuer: /CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Certificate serial: 019CAB6B5B472B5B31F0B6FDC3B2648A75D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 22:01:05 +0000
Manifest this update: Sun 01 Mar 2026 22:01:05 +0000
Manifest next update: Mon 02 Mar 2026 22:01:05 +0000
Files and hashes: 1: OBssWXKaU7hBEqryyhIo80JHo5s.crl (hash: ohyeEA3WMjkfm9lDwLWLRRt5j7KaoflDGha7mnKS4mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:5b:47:2b:5b:31:f0:b6:fd:c3:b2:64:8a:75:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=381b2c59729a53b84112aaf2ca1228f34247a39b
Validity
Not Before: Mar 1 22:01:05 2026 GMT
Not After : Mar 2 22:01:05 2026 GMT
Subject: CN=a05d0c1912d86308649a082bce3c6d4126a969c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2c:de:e4:0d:ba:91:8e:f5:05:65:0c:73:42:
55:ca:6b:a8:36:53:a6:14:f5:07:09:f3:f0:b9:df:
d5:25:5f:1a:e7:7c:d3:57:f9:12:a6:01:fd:61:08:
fa:06:2f:19:6f:dc:6a:cb:9a:02:fc:23:a2:eb:2e:
cc:52:d1:14:f5:84:52:a8:01:40:f3:42:c7:06:5e:
cd:c9:91:cc:57:d1:ee:2e:14:5a:09:c7:13:cb:2d:
d6:05:0e:89:f8:8c:f4:b0:68:f6:ac:b0:10:8e:5d:
ea:04:3a:bd:c0:df:1e:a6:a8:75:86:0f:ad:25:12:
51:6f:29:d4:e3:6c:eb:bc:f2:d9:ee:e6:c9:41:f8:
d0:c0:4d:cd:e5:34:12:bb:3b:64:a8:f0:e5:85:f6:
60:9f:f5:ea:03:14:be:b2:e6:38:54:0b:a8:fb:f0:
07:5f:fa:b2:58:27:b9:26:0b:fd:02:bc:e4:59:0f:
c1:e9:34:bb:3e:75:24:a7:9e:d8:45:26:11:73:34:
28:d5:7e:9f:cb:ff:0d:56:b8:ed:81:b5:8a:7e:5a:
40:55:f0:e5:18:93:28:53:b9:82:6d:c8:b5:63:53:
30:31:80:48:14:50:a1:94:7b:6d:fe:e9:da:70:99:
87:b7:71:c1:84:19:87:28:ba:28:05:a4:f5:48:e2:
d4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5D:0C:19:12:D8:63:08:64:9A:08:2B:CE:3C:6D:41:26:A9:69:C0
X509v3 Authority Key Identifier:
keyid:38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ba:35:4f:e0:a3:b4:65:25:6a:f9:60:2d:43:f9:bc:09:80:
6c:22:83:97:cd:54:ba:58:76:cd:67:75:99:90:32:ee:28:9e:
1b:e0:35:f9:46:54:1f:79:22:9d:8b:5a:4d:3d:be:49:56:2f:
ef:e6:ed:9f:03:8a:b7:a5:5e:aa:22:66:2b:57:21:77:5d:b6:
d7:89:5a:a0:94:8e:58:b6:8e:a7:38:f6:7c:67:32:49:eb:a3:
8b:38:67:c8:1f:c8:ff:f2:1f:67:12:55:5c:94:b0:4f:c4:fa:
11:7a:13:d6:c5:dc:1e:56:2a:01:c9:c8:fa:cb:44:77:b4:3c:
1b:d5:29:bc:3e:63:6e:62:16:00:d2:c9:ab:24:67:54:04:77:
78:16:81:b7:c0:7e:54:58:ec:cf:77:d9:a7:f2:24:07:85:24:
34:61:fe:00:51:0f:9a:12:8e:ae:60:40:c1:9c:44:66:eb:22:
0e:4c:2d:47:2e:cc:f3:f1:37:85:2b:4c:ae:69:d0:0a:d4:f1:
5f:82:f0:00:c8:a6:05:d8:17:c6:e3:64:5b:9b:f5:d2:56:09:
f1:9a:94:2c:a6:d8:f3:6b:8b:3d:68:16:90:c2:72:ac:c2:53:
fa:a0:ef:47:72:e9:50:be:e5:a0:30:3c:47:50:43:45:ea:11:
b0:84:88:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:15:13 2026 by rpki-client