Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
File: OFBtgKtZLee-CjMbv0-gBo1BQIo.mft (raw, json)
Hash identifier: S0jmcVpEhpLD6nkIZroDZvyoG3v9xlzij9dIsYPGgN4=
Subject key identifier: 49:17:CA:5B:CD:94:68:11:A0:62:06:DE:95:B6:AC:68:13:4C:E6:90
Authority key identifier: 38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
Certificate issuer: /CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Certificate serial: 019CADFE75F1BA33501773AC0684801DD784
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
Manifest number: 173C
Signing time: Mon 02 Mar 2026 10:01:00 +0000
Manifest this update: Mon 02 Mar 2026 10:01:00 +0000
Manifest next update: Tue 03 Mar 2026 10:01:00 +0000
Files and hashes: 1: 1-XFYwPQnihAKGAhaHmX_YgLq5hk.roa (hash: ovbwKoLcXw/nyUFXJNVtanDEZc8QQ/BY+2ucYpAs6QU=)
2: OFBtgKtZLee-CjMbv0-gBo1BQIo.crl (hash: uEU5RdMvIhUNS1pW+x8L9PMAqz96mooWUMVqLE5Su08=)
3: g3oitvyEV7LvQtXRePU4IoICFKI.roa (hash: wn/JQSFqf1OF8h85r+kWbdnYTIEYaxosW7IMZNrl36A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:75:f1:ba:33:50:17:73:ac:06:84:80:1d:d7:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Validity
Not Before: Mar 2 10:01:00 2026 GMT
Not After : Mar 3 10:01:00 2026 GMT
Subject: CN=4917ca5bcd946811a06206de95b6ac68134ce690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:68:ae:fb:b2:50:af:1c:d8:60:e2:e8:ab:be:
95:2a:04:fc:88:44:a6:03:a2:55:3c:72:c4:50:8b:
14:3e:55:39:a1:f5:1d:e2:25:6a:02:c5:99:b4:ba:
a1:bb:b3:8d:e2:8d:96:dd:66:6f:06:92:ca:b5:af:
b1:96:2c:28:fd:5f:af:b1:f9:6d:41:51:e5:ed:99:
f1:7e:0d:4c:63:de:5f:e4:a7:7d:db:53:b6:62:bb:
38:9e:23:7e:7a:85:ae:0e:d7:b9:24:c1:b2:27:6b:
68:c6:e9:14:10:de:84:aa:9f:23:27:ab:b1:9d:91:
b5:04:49:dc:05:f7:34:c4:c7:e7:5e:21:58:65:8f:
f5:14:51:f3:28:bb:18:c3:5a:e4:ac:b5:e1:14:85:
65:19:ae:b7:98:a3:cc:7e:a3:97:59:7e:22:2a:32:
73:c3:75:0e:c1:2e:39:8c:d1:76:69:05:7d:a2:06:
c3:e0:38:bc:58:1c:70:e0:1d:5a:a7:a3:dc:05:e4:
ae:26:72:f1:c4:77:04:42:45:48:48:ec:82:e8:56:
4d:32:71:65:87:8a:49:ee:2a:7b:99:7d:a7:f0:76:
59:60:dd:47:60:46:20:c4:8f:1e:b5:d4:36:2e:a2:
42:a8:90:26:7e:38:a3:72:5d:d8:35:05:cc:7c:6f:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:17:CA:5B:CD:94:68:11:A0:62:06:DE:95:B6:AC:68:13:4C:E6:90
X509v3 Authority Key Identifier:
keyid:38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2d:b2:86:4b:95:a1:0a:a5:db:d4:06:da:95:c3:69:ef:26:
5e:fb:69:80:11:1b:0e:9f:8f:56:22:23:e5:32:44:60:9c:33:
30:0e:6f:52:0e:80:a5:fc:36:38:46:35:04:72:f4:64:1a:71:
82:76:ea:74:95:12:35:fd:c4:e5:ad:62:90:bd:1f:e2:3a:f9:
e3:65:be:5b:de:70:7b:79:f7:b7:ad:68:02:d1:9d:75:0b:29:
8a:c7:48:db:48:ed:a8:db:d0:91:20:74:34:5a:74:fa:d4:e3:
a6:c4:8f:fe:e1:33:e0:20:af:9b:48:e0:1e:e9:e1:df:ba:0a:
ee:74:fb:d8:c2:05:bf:fe:1d:da:78:70:e5:03:a9:98:37:59:
a0:80:1a:ad:68:6b:87:0d:ce:28:ab:09:e3:75:00:de:49:b1:
9e:bf:8a:c7:e4:e4:8b:cf:67:f6:ef:6a:f6:e4:88:c4:e2:32:
2c:41:82:7b:4c:24:73:94:9e:0e:1d:d9:24:0b:f5:38:0f:80:
3b:3a:ff:43:ec:63:41:12:9a:20:0b:22:08:d8:b4:1b:9d:ad:
10:cd:bf:54:1e:98:36:43:de:fb:43:20:70:00:dd:ed:21:b2:
d0:4c:61:95:18:67:3e:46:4a:e2:f5:d5:52:a4:c7:49:1f:12:
7f:a9:76:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:44:37 2026 by rpki-client