Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: u4L3fI04GBZ67lvpKROSCoANrcfJpBPWOnTKqD5X080=
Subject key identifier: DB:26:10:05:94:60:01:D6:56:05:5E:9F:D4:43:EA:23:9C:64:5A:94
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019EBF5A87012F5FB43C5ECCF52AD428E5C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 18EE
Signing time: Sat 13 Jun 2026 05:00:41 +0000
Manifest this update: Sat 13 Jun 2026 05:00:41 +0000
Manifest next update: Sun 14 Jun 2026 05:00:41 +0000
Files and hashes: 1: 0yRcFcA3OBSplazAFaiD6lfC3B0.roa (hash: 2qPLWspuMTgkMxkS4l/YyisgXYynSeGYaJD2ttoyg+o=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: PqecwbQwtf5RnsLxnF2OYmd2Csr8IjVaZ0MXFLAkFRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:87:01:2f:5f:b4:3c:5e:cc:f5:2a:d4:28:e5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jun 13 05:00:41 2026 GMT
Not After : Jun 14 05:00:41 2026 GMT
Subject: CN=db261005946001d656055e9fd443ea239c645a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:52:c1:6d:31:c4:11:d1:dd:04:ae:d5:db:2b:
05:08:b0:44:7d:2e:05:93:cf:4e:d0:58:76:14:96:
08:ff:83:53:cc:99:3c:72:21:d5:e1:1c:03:6c:0b:
bc:35:64:78:79:c5:9b:e1:08:0b:92:c9:a9:25:fb:
9b:85:43:f5:27:ee:23:e9:6d:3b:63:0a:ed:f0:9f:
c7:c6:eb:8c:7e:9d:b8:41:d5:03:12:d7:de:e0:b6:
ec:32:74:bc:11:6f:1c:c4:12:cb:83:75:fb:ed:00:
ce:8d:2e:87:41:da:fb:21:cf:48:31:91:d4:88:69:
ed:fa:84:c6:6d:49:67:8f:dc:52:80:09:e8:73:5b:
25:37:21:43:e7:1f:53:18:ee:75:c9:dc:36:2b:44:
8b:5b:24:66:32:37:fb:e8:d8:7a:44:8d:b3:d0:9c:
9a:90:09:da:11:5d:ec:3c:0e:83:8c:41:ff:94:d8:
7d:02:b4:93:e6:79:f7:a7:66:2b:7f:3c:77:0e:f5:
39:a7:b1:15:ce:0b:21:ba:e0:5e:23:0f:63:1f:fe:
86:37:02:2f:26:1d:81:01:b9:f6:b7:18:52:35:5d:
23:7e:14:5f:8b:a5:1c:98:cc:5c:cd:cd:53:7a:20:
f9:4e:9b:26:a1:a1:ba:66:22:6a:76:76:03:54:8a:
6a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:26:10:05:94:60:01:D6:56:05:5E:9F:D4:43:EA:23:9C:64:5A:94
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:1e:0f:03:f9:d3:aa:bf:4b:7e:b9:76:3e:fc:da:a0:cf:ce:
84:6a:77:a5:45:b1:9c:b5:b8:b3:77:02:e6:0a:1e:95:d6:1b:
71:c4:9c:9e:fe:d3:f9:3b:0c:4f:ab:c8:e0:ab:5c:a7:8e:06:
05:49:a5:7e:3a:4f:6a:de:03:3c:e7:2a:44:00:e1:65:68:2a:
eb:e9:19:2f:60:4c:ed:05:41:38:ad:a9:4c:d0:e4:5b:7c:1e:
bf:19:b5:f5:75:84:21:53:ce:c4:7c:9c:44:be:8c:fb:80:89:
31:92:05:6a:41:b7:e7:f5:40:66:07:c8:21:4b:03:61:bd:cf:
28:42:8b:9b:e5:b0:e6:3e:eb:99:23:7f:8f:0d:62:56:34:cb:
24:6d:7f:50:46:49:c9:a8:cb:f0:02:97:79:d9:8e:a5:60:3c:
63:68:e1:6f:be:3f:b6:a6:a3:d6:9e:27:78:c6:9d:de:32:71:
29:81:ec:18:ac:b3:28:eb:e3:6b:83:37:1a:04:fc:3f:5a:40:
de:0c:f5:25:73:5d:a8:4e:34:50:8d:3f:47:0b:b2:21:cc:a1:
ef:4e:42:be:bb:12:8e:b0:ac:97:f5:13:67:b0:b3:75:6f:fd:
07:44:dd:50:63:0e:f4:34:3d:4c:94:2c:ee:5f:d8:78:b6:39:
0c:0b:4c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:33:06 2026 by rpki-client