Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
File: oybRlH-kQ2NloBOsZ_TzKx_bqck.mft (raw, json)
Hash identifier: a1V3+wGB46r+u2iyUxmZwaZy00jpigMiLFK3GkNKj24=
Subject key identifier: 29:D8:7D:ED:06:00:9C:02:68:CC:74:79:8A:BC:9E:5D:85:95:3C:7E
Authority key identifier: A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9
Certificate issuer: /CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9
Certificate serial: 019D9AE31137C4E906572C8FA996378C5761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
Manifest number: 15BB
Signing time: Fri 17 Apr 2026 10:01:05 +0000
Manifest this update: Fri 17 Apr 2026 10:01:05 +0000
Manifest next update: Sat 18 Apr 2026 10:01:05 +0000
Files and hashes: 1: oybRlH-kQ2NloBOsZ_TzKx_bqck.crl (hash: vkzWnUsr+tLIS+JooxrFUx7xvGJ4vXdtiG6/h3TvqR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:11:37:c4:e9:06:57:2c:8f:a9:96:37:8c:57:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9
Validity
Not Before: Apr 17 10:01:05 2026 GMT
Not After : Apr 18 10:01:05 2026 GMT
Subject: CN=29d87ded06009c0268cc74798abc9e5d85953c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d8:12:21:35:5d:de:26:b9:10:cc:55:d0:68:
3b:0d:96:6f:06:0b:5f:11:4f:02:f8:6c:a9:39:73:
45:ec:4a:8e:e1:3e:aa:53:29:10:64:e8:48:35:c3:
64:bf:b4:d1:ad:6e:b0:15:8c:d1:14:17:67:a9:d2:
a7:c2:08:0a:81:d0:23:77:73:a6:04:75:29:82:e0:
ed:8b:86:3e:16:1f:54:dc:37:45:01:7a:16:e8:8d:
cd:e7:7e:a1:80:d7:06:85:99:36:cd:d6:7c:a6:00:
40:bc:1c:d3:28:df:3d:71:96:c7:7f:c0:00:ff:59:
25:68:2d:a6:cd:83:d5:b8:de:03:49:a6:ec:56:ae:
de:a2:3f:fd:15:ec:76:7f:2b:6c:4f:c7:16:ba:10:
4a:60:cb:fc:30:94:fb:b8:3e:70:e0:f6:4b:84:8c:
2f:49:13:08:83:5f:c4:8d:b3:25:c0:45:bf:9a:48:
f3:0b:d1:83:53:c7:e3:e1:cc:35:ed:d0:f9:04:03:
54:69:0e:ff:fa:0b:36:43:60:84:38:9b:93:1f:cd:
00:6a:69:55:25:bd:17:11:ad:89:77:16:af:52:63:
bf:58:d7:56:ad:a1:47:5f:51:9b:0c:b5:b3:54:77:
d9:6c:f8:7a:07:c7:89:b8:8d:75:7b:9c:79:49:46:
d0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D8:7D:ED:06:00:9C:02:68:CC:74:79:8A:BC:9E:5D:85:95:3C:7E
X509v3 Authority Key Identifier:
keyid:A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ec:90:e6:8f:28:ca:1e:21:ac:f1:93:a5:6b:78:e3:ff:28:
c1:1b:5e:c5:49:2d:a7:89:52:cb:bb:23:ae:17:05:54:b1:bb:
d8:1e:14:30:17:be:00:92:3e:bf:d3:6e:ae:e2:49:d8:df:14:
ff:45:b1:cf:12:e1:0f:0f:c5:e2:28:cb:01:ee:86:e3:39:04:
b8:28:36:93:ef:6f:2d:09:23:16:ff:3a:24:50:e2:21:de:22:
bf:a1:23:6c:91:ec:b5:45:0e:6b:40:f5:40:e5:a8:40:13:32:
75:d7:1a:3f:71:45:47:c0:c2:7b:0b:0a:98:34:da:7d:14:cb:
42:05:ed:1d:35:79:fe:65:f3:a8:ca:df:7d:c4:bd:7b:d0:b7:
7d:4d:5a:c5:65:d4:f0:08:72:ee:db:47:cf:53:c3:30:62:ab:
85:dd:34:39:64:0e:aa:10:41:df:48:4c:f2:ac:05:71:d1:03:
47:d9:ae:52:ff:2a:cc:38:c6:b1:80:31:75:83:1e:78:4b:20:
83:19:cf:46:fb:46:8d:31:4a:ca:5c:e1:87:b9:14:88:57:9d:
9c:b0:89:84:60:f5:b1:33:3a:d3:32:13:ef:c6:b1:e4:9c:f2:
07:1f:a3:15:8e:b8:69:4d:22:43:9e:b9:f8:0a:b4:17:e9:fa:
9b:d1:67:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:43:36 2026 by rpki-client