Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: QNhrw/7s+XuKBkrtj9/MoxOQeM+08aLHj/Xj8O4PQtc=
Subject key identifier: BF:62:A3:B8:ED:81:36:1B:CB:9F:17:7E:00:09:D5:E9:27:92:3E:DD
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019D99D01B8D1B08C6872ACC4D0A5378FB42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 088C
Signing time: Fri 17 Apr 2026 05:00:45 +0000
Manifest this update: Fri 17 Apr 2026 05:00:45 +0000
Manifest next update: Sat 18 Apr 2026 05:00:45 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: Wge2JksbIe4ExxTmRfKkUwMUoxH44xrk+rTTHhcg48Q=)
2: PMdpUUy3N8aucFQis2EHtpFZuIY.roa (hash: 4gf7AvqhQ7Z0YpFJcEQijaezm8f7LNn2p+OXg9bnpFY=)
3: y2_r5sbY9Lv_uRDh7BVz6TP_Rqk.roa (hash: elggw6C3t4Wz+4yMu7U0O34nBVY/GyhPWM7xDo4hWNU=)
4: z1DkqtK6bhv2xKbEFbpfSZsh_Yg.roa (hash: x3T0qFMVxxd2FdR3A4LaLQ4+c2t85rP2XyfqD4Q6wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:1b:8d:1b:08:c6:87:2a:cc:4d:0a:53:78:fb:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Apr 17 05:00:45 2026 GMT
Not After : Apr 18 05:00:45 2026 GMT
Subject: CN=bf62a3b8ed81361bcb9f177e0009d5e927923edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:06:03:d8:13:8c:8b:c6:20:8f:02:65:86:a4:
65:70:c0:b2:69:96:98:29:d0:30:50:fb:39:34:f8:
25:3a:fb:ff:ce:61:36:a2:80:0b:fc:40:11:ef:fa:
63:5c:d1:6c:2d:0d:c5:0f:58:32:91:db:af:1e:81:
7e:92:4a:a6:4b:72:18:d7:4b:f4:ba:9a:15:1f:f2:
01:f9:30:86:98:59:b7:49:e7:4f:54:58:7a:49:b7:
97:cc:d6:5f:d5:30:9a:4f:ec:9f:75:06:cb:21:c4:
0d:70:2e:20:b8:f1:73:fb:11:01:fc:e2:49:84:59:
bb:ae:bb:2b:de:c2:d2:64:e3:c7:b5:5d:fe:32:27:
56:95:8c:09:e8:3a:90:63:96:b4:d7:3f:7a:01:5e:
0b:1d:c2:e4:c7:ef:df:3f:0b:7c:0d:45:d6:35:b0:
7d:ef:7f:28:53:7c:de:6f:9b:87:d5:9d:e6:e0:82:
f4:d6:b6:cc:a1:d2:82:0e:e0:7b:9e:b3:82:50:c9:
4e:7f:68:bb:de:76:8c:ad:c5:c3:1d:33:f8:45:0d:
a3:88:6a:ad:f3:8c:99:e0:cb:f2:ca:33:b6:02:e1:
87:c0:e3:07:08:6f:81:78:56:dc:18:37:b2:09:ab:
43:4f:2c:ab:17:a2:0c:38:94:43:a7:03:d7:54:59:
77:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:62:A3:B8:ED:81:36:1B:CB:9F:17:7E:00:09:D5:E9:27:92:3E:DD
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:a3:ec:14:aa:fa:5c:0b:d8:b6:ba:97:fd:ae:fd:28:93:15:
38:82:cb:91:d6:5a:48:39:43:cf:f6:34:cc:91:01:fd:a8:24:
bc:5f:6a:4a:50:f0:4e:42:8c:99:e0:e6:da:b3:92:93:d6:32:
a2:34:2d:13:d5:da:4b:79:ef:54:cb:7c:a7:49:6f:a3:fa:e1:
44:ee:c3:f1:c3:7d:d0:1b:0e:09:3a:bc:f0:ca:53:b1:49:7b:
a3:d7:ca:41:2d:48:12:05:df:ed:31:00:20:e8:54:2b:69:bf:
e4:7c:ed:f4:df:b7:0f:8b:6e:41:bd:b4:67:b6:05:67:70:2b:
32:b6:5b:6a:cc:d4:de:2b:57:64:9e:bf:9e:79:ef:d7:a3:3b:
a1:5a:2d:b8:9e:68:9a:77:b1:f8:8a:40:0e:38:a9:94:45:b6:
31:7e:7a:e6:f6:e0:5c:a9:b0:01:d7:31:eb:2b:02:c1:82:29:
44:a8:88:00:c7:df:a3:7f:da:8d:8f:0f:5b:91:a4:ca:b3:3d:
bf:24:f4:ec:20:c5:cd:2d:37:f5:8f:36:24:da:94:fb:dd:9d:
a1:c0:47:07:35:fe:54:25:16:ef:57:29:3d:db:83:e8:18:1a:
6e:7b:bb:2c:ad:30:2d:93:9d:30:e2:c8:4b:43:30:08:91:68:
0f:a2:cd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:37:01 2026 by rpki-client