Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: m7gOf+mFQYmguv6vJ8YQxYtpweVOaF+zKR3IwQpfkJ0=
Subject key identifier: FF:1B:EB:63:5D:4B:F2:93:52:1F:1D:93:FB:F2:6B:A1:7E:C2:5F:25
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019EC148ECA5261E6E38F5042E3B6C5E7C53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 18EF
Signing time: Sat 13 Jun 2026 14:00:42 +0000
Manifest this update: Sat 13 Jun 2026 14:00:42 +0000
Manifest next update: Sun 14 Jun 2026 14:00:42 +0000
Files and hashes: 1: 0yRcFcA3OBSplazAFaiD6lfC3B0.roa (hash: 2qPLWspuMTgkMxkS4l/YyisgXYynSeGYaJD2ttoyg+o=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: dojiaPh/0tO7hPh0ASlvMBEMto1imDXqlxTAJpprb40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:ec:a5:26:1e:6e:38:f5:04:2e:3b:6c:5e:7c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jun 13 14:00:42 2026 GMT
Not After : Jun 14 14:00:42 2026 GMT
Subject: CN=ff1beb635d4bf293521f1d93fbf26ba17ec25f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:34:02:2f:a1:c4:b3:96:05:39:bd:4f:d0:c9:
36:d0:0d:d9:fb:c0:e1:d7:44:5a:e3:3e:74:80:49:
c7:bb:e1:af:96:20:62:87:26:e1:1f:bc:5b:24:8d:
7e:52:96:6a:a1:e6:b7:0a:56:a2:2e:b0:2e:3e:8e:
c2:91:77:39:3e:a2:fa:ea:f0:a5:08:1f:36:ff:4c:
82:c5:36:94:51:3f:40:ee:02:6e:9c:89:d5:44:fb:
23:71:59:67:3f:9b:c0:61:ba:5b:a3:4d:44:19:74:
a2:09:f2:c3:cc:e4:98:52:79:6d:6f:af:51:7e:ef:
f5:84:e1:2f:bb:ff:a7:dd:30:63:e9:37:73:31:eb:
a4:4b:d1:d7:f2:90:68:1d:ec:1a:27:d2:16:f8:94:
38:09:0a:74:91:ee:0c:90:99:ce:67:b8:28:fb:86:
1e:0f:35:a3:05:cd:da:92:0e:15:a2:88:13:30:d9:
bd:fc:f4:d2:3c:f1:28:46:45:27:51:61:b0:0b:6f:
35:01:6b:db:9a:a4:fd:ef:ee:50:57:3f:44:fa:67:
1e:c8:f7:28:e0:24:b6:77:ed:5d:d9:f9:65:e4:59:
0b:05:08:f1:69:85:cd:ff:34:66:ec:d1:7a:fc:a0:
6c:a8:fb:76:87:e9:b4:c7:9f:8f:f9:30:2f:25:7f:
bd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1B:EB:63:5D:4B:F2:93:52:1F:1D:93:FB:F2:6B:A1:7E:C2:5F:25
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:39:44:e3:ef:24:76:2c:8c:4f:76:d6:1a:31:5c:e5:a2:9e:
12:f8:2c:55:ab:72:cc:20:a9:db:ff:ef:28:5a:ef:c6:b9:7d:
07:ff:ae:e0:af:9e:9f:36:53:17:2c:cd:5b:a9:3b:38:e6:77:
c8:39:14:f2:85:97:31:f5:72:a8:11:75:1a:78:41:56:0e:2e:
b3:54:ef:e8:7f:39:c7:e4:af:94:08:02:16:cd:41:a8:a4:70:
65:08:bf:5b:3d:ad:68:96:28:b4:44:01:84:03:84:59:68:67:
74:7d:06:f9:1b:5f:a9:80:9b:5f:c9:9d:e2:b8:36:ac:9f:07:
6a:b7:8f:31:57:7f:1d:78:0f:cb:23:bb:f7:af:e9:2f:ad:f1:
38:eb:6c:88:1a:85:a8:c8:c8:d5:4e:3f:ca:9c:05:13:79:b8:
be:be:a8:41:f6:00:37:0f:56:11:60:ce:85:a8:7b:c5:af:71:
26:9c:81:b5:26:a9:ab:e1:eb:2c:d0:25:37:da:60:71:2e:ee:
88:03:bf:b3:2a:db:be:60:4e:3a:24:87:8b:82:ec:7e:67:f6:
9e:09:97:b4:48:88:e5:f6:0e:b2:c6:10:84:dc:0a:e9:cb:2d:
8c:fe:bc:91:8c:60:d5:26:53:21:eb:06:5c:b7:70:f7:d0:94:
b7:ec:30:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:05:17 2026 by rpki-client