Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
File: O9mhd7td-26r5MrXne-PiwBd9lY.mft (raw, json)
Hash identifier: /25EfsL5T0C0GM6C7PnR5Ua5WLaonaMV1dtht2NApUk=
Subject key identifier: 47:D4:0B:BD:0C:8F:C0:57:D7:63:40:6E:03:04:E4:9A:B1:CA:3E:0B
Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
Certificate issuer: /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Certificate serial: 019EC29247F18E97D62539B4D238F6FF06B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
Manifest number: 14A5
Signing time: Sat 13 Jun 2026 20:00:26 +0000
Manifest this update: Sat 13 Jun 2026 20:00:26 +0000
Manifest next update: Sun 14 Jun 2026 20:00:26 +0000
Files and hashes: 1: 1-XNUwWKzbev3eBkOpcFm2xBkpoQ.roa (hash: /XJqAINdnXXDOWVdvq7kHAw4+acFhC/fD2KcJxKL5nQ=)
2: Bi5LXJXtXaqWu85feTd5MY6-MmU.roa (hash: j5lYG+Y4b77KtRu85Ljxo9pZvkjx9vw5hisZYWyAQ2I=)
3: O9mhd7td-26r5MrXne-PiwBd9lY.crl (hash: bV9CSqGTH3phD0EDb6Rn57C0wAV2teeM7iJQ+PnJm/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:47:f1:8e:97:d6:25:39:b4:d2:38:f6:ff:06:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Validity
Not Before: Jun 13 20:00:26 2026 GMT
Not After : Jun 14 20:00:26 2026 GMT
Subject: CN=47d40bbd0c8fc057d763406e0304e49ab1ca3e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6e:25:8d:f4:3b:58:ff:4a:a7:0d:fb:bf:93:
ea:26:55:ca:29:88:02:76:c8:70:5a:2b:cb:9d:4c:
78:57:92:a8:ce:4e:04:19:e5:60:43:98:63:3b:d0:
2c:82:ed:7c:f6:a3:60:5f:dd:8c:fb:a9:b3:56:2e:
02:65:70:a4:c4:31:59:7a:15:62:d2:06:f2:ce:fc:
6b:27:c1:31:e0:24:d0:3c:d1:d1:79:7c:e8:1e:bb:
7b:fc:f8:0e:02:20:1d:60:39:a6:29:c5:d0:ee:05:
07:2a:ce:b1:db:9b:e3:49:89:25:e1:ea:f6:46:dc:
fd:45:7e:59:a1:8c:fc:ba:9a:b7:64:7b:9e:b8:4e:
dc:ff:f9:9b:8d:bd:a9:c6:fb:ae:5f:69:31:77:a5:
57:dc:4b:84:bf:0f:d3:78:a3:51:cc:58:79:00:d9:
09:2b:35:58:f4:22:79:37:de:a5:38:c7:18:69:a4:
4a:e6:52:7c:1c:5b:3d:91:31:30:71:75:34:2b:f0:
87:fe:cb:30:d9:0b:66:16:b3:b7:37:78:43:d1:05:
21:c0:d8:2e:7a:62:54:eb:ba:1f:ff:9d:71:20:bb:
13:00:75:f7:bb:5c:87:fb:59:e0:0c:bc:6b:f1:f8:
fa:b3:4a:6b:ed:3a:df:81:d8:95:4c:7a:f9:f2:2f:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D4:0B:BD:0C:8F:C0:57:D7:63:40:6E:03:04:E4:9A:B1:CA:3E:0B
X509v3 Authority Key Identifier:
keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:6f:94:7e:25:1d:c3:4e:4e:07:39:3d:a9:23:f6:86:48:41:
e7:b3:39:00:44:4a:4e:bd:d3:54:22:d6:da:44:eb:d2:bb:56:
20:f1:11:00:59:e2:a8:b4:0a:91:88:b9:65:62:69:7f:1a:94:
af:32:b4:68:97:71:7c:3f:4e:b0:4a:eb:7f:86:a5:cd:17:6c:
f7:0e:a7:d2:6f:52:89:c0:27:26:32:81:4b:11:0b:98:8d:cd:
c1:49:8b:8d:8f:cc:39:1b:ba:69:14:c1:a5:11:37:c5:86:5e:
6a:33:4c:1d:c6:ef:d5:50:51:23:4f:83:ce:69:57:ac:39:f0:
ce:3a:fd:4a:c1:d7:33:ab:4f:75:c9:32:63:ef:4b:28:b8:cf:
6a:65:04:fd:06:68:91:6a:57:d1:34:ed:01:00:13:3c:e8:ae:
a2:ca:ee:84:fb:93:ef:52:e9:9f:95:99:a9:b1:8e:4d:ac:56:
9f:4c:9a:70:17:4d:3e:4d:14:72:de:8a:3b:d9:e8:37:b9:13:
cd:90:5f:cf:29:bc:68:f1:8b:0a:08:0d:4e:92:e9:e6:aa:e5:
35:9f:5e:3e:d1:c6:3e:29:b9:03:78:96:4a:04:e4:46:a3:3a:
68:f3:62:48:09:41:8d:c5:c9:fb:3a:80:39:5c:b8:46:93:b3:
17:72:c8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:59:49 2026 by rpki-client