Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
File: OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft (raw, json)
Hash identifier: NUkQmmIOJZC7U5EEc2I39Xc0zFmiwaDab5P3RZYi0ik=
Subject key identifier: C4:76:8B:C5:7D:E1:49:7E:CD:46:AC:9D:54:79:C7:A6:AA:05:DF:C8
Authority key identifier: 3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
Certificate issuer: /CN=3a07318a1314233f5623c0f835fae18f9126412f
Certificate serial: 019D9A073BC8EF1EECDF6D990B44A52BE06C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
Manifest number: 0293
Signing time: Fri 17 Apr 2026 06:00:58 +0000
Manifest this update: Fri 17 Apr 2026 06:00:58 +0000
Manifest next update: Sat 18 Apr 2026 06:00:58 +0000
Files and hashes: 1: OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl (hash: lFTXLGx0H15p9uUDFpto1UltSKEEM/vTfT3qkJXv1qM=)
2: rcu1nZGmL_S7ccczhF-sESIVSFg.roa (hash: bYUYTaJymdrEh9zrcfZKEG7i+z1i30upCc49kr4zBNw=)
3: wGPQkCyZBLF64nqCVCJB0ISUzBg.roa (hash: EYYn9hWCHtPsq8G1cxHiPJEhzM/YA2ywjRpNXuGftg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:3b:c8:ef:1e:ec:df:6d:99:0b:44:a5:2b:e0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a07318a1314233f5623c0f835fae18f9126412f
Validity
Not Before: Apr 17 06:00:58 2026 GMT
Not After : Apr 18 06:00:58 2026 GMT
Subject: CN=c4768bc57de1497ecd46ac9d5479c7a6aa05dfc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:0c:65:9f:ea:c6:ab:4f:2e:7e:0d:b2:7a:
88:be:4c:21:70:e6:49:54:28:57:a4:e9:87:2a:40:
64:11:23:7e:ea:78:cf:81:7c:99:0d:6f:fb:b9:6e:
ac:9e:37:0d:6f:43:5e:e1:e4:38:71:d3:b9:6c:0f:
ab:21:3c:28:00:88:03:4e:2d:9e:f2:b9:94:88:9e:
1d:9f:5d:41:ea:07:97:72:6e:21:f7:27:d3:f3:98:
81:be:d0:f0:60:40:0b:5c:9a:8f:c3:ef:94:db:80:
18:fb:d4:a6:09:7a:b0:9f:08:3f:14:f1:dc:4e:5c:
de:8e:c6:5e:d8:d3:1e:67:a8:1c:c5:ce:9e:92:31:
c2:12:37:ab:36:cc:b8:ea:8c:8a:c4:36:52:c2:ce:
18:6b:f8:af:d1:44:d4:31:cb:b0:57:54:2a:53:21:
4d:92:5f:6e:a0:0c:af:52:af:81:3c:9e:22:cb:6f:
9d:e3:21:00:04:d6:6e:f3:55:8d:02:62:c6:e5:f8:
ad:ba:59:08:ac:ed:bd:36:b5:4f:06:cd:a4:2d:2a:
72:d7:fd:75:ac:21:a4:ee:24:eb:0f:00:9a:a6:01:
71:7c:68:7a:7c:15:fa:48:a7:60:33:4c:ee:dc:6f:
fe:f4:b0:64:7d:45:9d:ca:c4:5c:1e:c5:46:7e:90:
d5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:76:8B:C5:7D:E1:49:7E:CD:46:AC:9D:54:79:C7:A6:AA:05:DF:C8
X509v3 Authority Key Identifier:
keyid:3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:11:7a:d6:57:1f:5c:f4:e0:24:f0:68:ee:03:38:14:e4:d5:
ec:58:85:84:c6:c4:fa:b6:6a:39:96:8f:e5:4f:83:3c:a9:dc:
fb:22:1b:6e:d1:47:ed:bd:d8:96:ca:ca:b9:49:59:01:42:82:
12:d6:d4:99:fb:74:89:94:7d:72:7d:bd:16:c7:a7:b1:1e:2f:
43:d7:41:42:ea:29:11:09:7e:35:be:5c:1c:b5:73:8c:c2:14:
e2:97:ef:14:03:17:76:34:f7:a1:5e:96:5b:1c:f1:aa:3a:9f:
b0:f0:99:6a:fb:9e:32:3d:fe:f1:fa:da:09:de:da:07:1d:cf:
73:ef:60:58:b3:71:06:55:75:2b:20:a8:b5:25:db:16:5f:ea:
a5:b6:59:f1:f3:68:ab:23:6c:87:b5:76:1b:f6:99:d7:59:3f:
04:80:24:f2:16:3a:43:fc:ef:75:54:be:53:6b:15:db:56:13:
b0:d4:fa:22:ec:30:0e:0a:bf:20:7c:ce:9a:64:d2:8c:3c:c9:
86:5c:4f:ec:19:d6:5b:dc:ce:b4:b0:8d:d1:50:db:1b:ab:d9:
26:81:92:8a:c7:9a:aa:63:c1:8f:50:7f:19:4d:42:ee:78:64:
82:14:9f:d4:c6:fc:61:d1:d4:ba:d5:17:64:92:02:2e:d8:14:
07:83:82:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aBzvI7x7s322ZC0SlK+BsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMDczMThhMTMxNDIzM2Y1NjIzYzBmODM1ZmFlMThmOTEy
NjQxMmYwHhcNMjYwNDE3MDYwMDU4WhcNMjYwNDE4MDYwMDU4WjAzMTEwLwYDVQQD
EyhjNDc2OGJjNTdkZTE0OTdlY2Q0NmFjOWQ1NDc5YzdhNmFhMDVkZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMAMZZ/qxqtPLn4NsnqIvkwhcOZJ
VChXpOmHKkBkESN+6njPgXyZDW/7uW6snjcNb0Ne4eQ4cdO5bA+rITwoAIgDTi2e
8rmUiJ4dn11B6geXcm4h9yfT85iBvtDwYEALXJqPw++U24AY+9SmCXqwnwg/FPHc
TlzejsZe2NMeZ6gcxc6ekjHCEjerNsy46oyKxDZSws4Ya/iv0UTUMcuwV1QqUyFN
kl9uoAyvUq+BPJ4iy2+d4yEABNZu81WNAmLG5fitulkIrO29NrVPBs2kLSpy1/11
rCGk7iTrDwCapgFxfGh6fBX6SKdgM0zu3G/+9LBkfUWdysRcHsVGfpDVqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMR2i8V94Ul+zUasnVR5x6aqBd/IMB8GA1UdIwQY
MBaAFDoHMYoTFCM/ViPA+DX64Y+RJkEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMt
MDI2YTdiNjU0Zjg4LzEvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMtMDI2YTdiNjU0Zjg4
LzEvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANhF61lcf
XPTgJPBo7gM4FOTV7FiFhMbE+rZqOZaP5U+DPKnc+yIbbtFH7b3YlsrKuUlZAUKC
EtbUmft0iZR9cn29FsensR4vQ9dBQuopEQl+Nb5cHLVzjMIU4pfvFAMXdjT3oV6W
WxzxqjqfsPCZavueMj3+8fraCd7aBx3Pc+9gWLNxBlV1KyCotSXbFl/qpbZZ8fNo
qyNsh7V2G/aZ11k/BIAk8hY6Q/zvdVS+U2sV21YTsNT6IuwwDgq/IHzOmmTSjDzJ
hlxP7BnWW9zOtLCN0VDbG6vZJoGSiseaqmPBj1B/GU1C7nhkghSf1Mb8YdHUutUX
ZJICLtgUB4OCSQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:27:03 2026 by rpki-client