Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: wTVmfRj3BQuzojJi1Wd0zbHq4HHTDHlPOk+XwzhdoPw=
Subject key identifier: 3B:D4:B7:23:79:A8:61:58:50:F4:3C:49:E6:F0:12:45:2E:41:C3:11
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 019CAC0FF8ACCDBDF9674F3B3CB521BBB8BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 01:00:53 +0000
Manifest this update: Mon 02 Mar 2026 01:00:53 +0000
Manifest next update: Tue 03 Mar 2026 01:00:53 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: oL3Ro05oOtgQEJ7/QWNp4eUNbyyM881dbJ0fPoe9sVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:f8:ac:cd:bd:f9:67:4f:3b:3c:b5:21:bb:b8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Mar 2 01:00:53 2026 GMT
Not After : Mar 3 01:00:53 2026 GMT
Subject: CN=3bd4b72379a8615850f43c49e6f012452e41c311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:36:27:76:02:c9:cb:39:0c:a8:b5:d5:28:
14:55:42:c6:aa:32:2c:47:7c:8b:37:f2:e7:51:07:
89:46:2a:c8:9f:ff:5a:44:41:d2:b6:f6:22:b1:52:
3b:c6:8d:2b:44:f5:60:ad:ab:7b:6b:4c:28:11:d7:
0f:00:79:fb:a8:ba:bb:fc:9e:9f:4b:31:50:e5:cd:
18:34:81:98:e3:20:39:7f:5a:72:76:ed:97:bb:8f:
8b:53:c1:da:41:92:4f:95:07:10:e8:0b:49:59:62:
33:46:7f:89:52:72:d0:99:e3:f2:2f:21:76:32:a0:
1a:70:ae:4a:19:5d:37:89:93:28:d6:c5:b5:e0:19:
05:fb:20:3f:49:5f:14:30:43:dd:f8:04:a2:0e:91:
1c:2a:57:60:b6:dc:24:5b:12:e6:d7:25:6f:30:85:
15:e0:fc:2f:88:b9:33:00:aa:09:89:c0:4a:c8:ae:
a9:e1:72:df:96:9e:94:d6:7d:2c:d5:d4:08:5c:92:
2e:34:be:6a:00:4e:95:46:1f:3f:72:f5:c9:72:29:
16:e8:47:b5:52:a2:5a:dd:0d:af:b9:bb:32:8f:c4:
b4:3d:9e:99:77:50:aa:e0:e9:24:fa:8f:dd:15:9c:
a2:2a:75:0c:d3:18:01:77:0d:5b:8c:45:62:ed:c5:
ca:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D4:B7:23:79:A8:61:58:50:F4:3C:49:E6:F0:12:45:2E:41:C3:11
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d2:65:14:10:c2:27:ff:f4:8d:64:fe:5c:1f:09:36:d1:29:
6b:f3:44:13:b2:0e:a9:a7:2e:c0:09:b3:5e:7d:6a:eb:d5:7c:
7c:c9:72:d8:92:95:ec:4e:ed:8a:73:e3:69:31:10:0e:46:cf:
73:16:64:1c:af:fb:36:05:f4:7a:95:a5:e2:22:9a:59:c6:84:
1a:96:07:0b:dc:59:44:7b:11:7e:90:5a:97:3f:c0:f0:11:9a:
ca:ce:a6:b9:75:ae:71:5d:52:2b:3a:72:59:e2:6b:ca:2c:f2:
fd:b4:49:68:c1:aa:7e:00:eb:99:1f:72:4c:b1:14:dc:9b:21:
a9:ee:fe:e6:cb:71:48:15:bb:cc:35:42:37:e3:3e:14:22:e0:
73:d6:bc:20:98:e5:e0:c2:53:20:dc:94:74:15:d6:26:3f:2b:
1d:b9:7c:d9:c5:a5:98:ec:d4:4c:7f:17:6e:76:50:72:ec:0c:
ae:43:9b:9b:a7:44:f6:58:34:b5:4f:a6:c6:ba:a4:3a:27:1d:
b5:77:09:ef:d9:1d:a9:e3:4c:6c:18:ff:fa:f0:f9:c7:81:18:
c9:32:f9:5f:f7:d6:14:4c:23:dd:cc:15:78:6a:e0:4d:a4:83:
5a:03:c0:43:3b:b4:08:08:34:90:40:d7:15:61:8e:5a:1b:50:
50:aa:83:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:31:55 2026 by rpki-client