Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: GdHcvDCzse8LK3SdgthZumCWuZVDrmXYrT+v8JMmqUs=
Subject key identifier: D3:49:F2:DF:0C:6A:2A:9D:5B:4C:00:9B:91:FB:E7:01:A6:27:C2:4F
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019EC0367D881EF11481CBDF3ADE901A53FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 09:00:57 +0000
Manifest this update: Sat 13 Jun 2026 09:00:57 +0000
Manifest next update: Sun 14 Jun 2026 09:00:57 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: jQcqG6uOZ54NhcApG+yQXUr6f1yf8J/DxG45GRks0g4=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:7d:88:1e:f1:14:81:cb:df:3a:de:90:1a:53:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: Jun 13 09:00:57 2026 GMT
Not After : Jun 14 09:00:57 2026 GMT
Subject: CN=d349f2df0c6a2a9d5b4c009b91fbe701a627c24f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6b:ff:78:aa:8b:ad:d5:03:dd:64:3e:f5:e2:
f0:e3:05:1f:13:2f:6d:15:07:80:3c:0e:6d:59:4d:
26:4f:be:b6:ae:a9:58:ec:34:85:ee:b9:95:6f:80:
99:d6:2c:84:e0:e7:61:d1:c9:61:a2:42:68:da:b1:
73:bb:81:68:93:34:56:3c:5f:36:46:01:fa:15:c8:
32:a2:1b:07:d7:05:66:dd:85:2e:39:12:c1:d9:b7:
d1:70:3b:65:c5:98:94:78:5d:ee:3a:98:75:cc:23:
fd:b9:13:3d:d6:d9:fa:8b:1e:98:b8:9a:5f:38:dd:
e5:0e:c2:6e:c7:c8:4f:5b:56:0c:4f:9c:b2:7a:a2:
57:cc:8e:18:67:1d:ae:7d:f3:05:69:49:d7:09:01:
75:b1:0a:86:ee:b9:04:38:57:a8:57:a0:e2:26:3d:
d3:83:61:05:52:3e:b8:fa:8d:a1:00:8e:8e:db:16:
54:26:46:46:59:48:62:44:18:44:8a:bd:b9:10:21:
55:c1:97:e6:a2:25:e7:54:e0:f2:3b:8b:16:ba:8e:
ae:db:29:92:17:61:d7:7e:4c:dc:4a:5c:fd:2b:4b:
39:36:c9:c0:40:36:a3:70:04:34:09:c1:37:b2:d0:
cd:e6:f8:64:a9:74:4b:64:3b:8a:af:29:ed:49:e8:
76:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:49:F2:DF:0C:6A:2A:9D:5B:4C:00:9B:91:FB:E7:01:A6:27:C2:4F
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:9f:f2:fc:3a:83:4c:ce:1a:26:3a:61:c1:23:69:4a:fe:92:
24:e9:ca:19:9f:12:4d:92:2b:cb:83:63:3a:e4:05:ad:d8:ee:
ba:af:06:fa:61:6c:29:92:95:60:df:b5:d0:e3:95:52:5e:2b:
fb:a8:e4:ee:4b:c5:0a:aa:b3:75:23:28:87:f1:6e:81:0f:f5:
bc:33:67:13:53:ab:25:01:a2:b7:69:a4:74:e5:c5:1e:5b:63:
3b:55:da:b2:bf:72:76:86:e4:d2:54:74:a4:d3:68:6f:14:a5:
72:78:1e:71:0b:f7:d4:9e:00:64:3d:86:27:7a:97:b3:51:a8:
74:cd:fd:2c:cb:a0:c5:a8:20:11:27:47:73:c7:e2:30:7b:e1:
8d:49:9f:df:2b:1a:f6:af:03:56:0b:7f:f1:85:4d:97:01:f0:
7b:0d:9c:a2:39:4f:13:f6:97:f1:de:c6:8f:3b:96:44:e1:a5:
cf:62:39:2a:cc:6c:82:0b:13:70:90:b5:36:33:95:9f:7b:a2:
30:03:f9:ea:c2:d0:ed:01:7d:05:c9:fa:01:61:7a:1f:0e:e3:
71:48:c0:2b:71:01:60:7d:44:55:30:f3:66:81:20:61:f2:05:
10:88:9a:f8:4c:13:b8:a4:fd:14:92:eb:e1:47:9a:3d:89:df:
bb:a8:38:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:16:29 2026 by rpki-client