Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
File: OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft (raw, json)
Hash identifier: L5OH6QbhUup8x4nSL4ta0+Uo0TsJgA95D+LkTv3k2z4=
Subject key identifier: D5:E4:DD:05:E2:09:CD:BD:67:0E:62:7B:20:54:B2:05:93:79:16:17
Authority key identifier: 3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
Certificate issuer: /CN=3a07318a1314233f5623c0f835fae18f9126412f
Certificate serial: 019EBF91CD7B4435F2CF50BACE5A558F26B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
Manifest number: 032B
Signing time: Sat 13 Jun 2026 06:01:03 +0000
Manifest this update: Sat 13 Jun 2026 06:01:03 +0000
Manifest next update: Sun 14 Jun 2026 06:01:03 +0000
Files and hashes: 1: OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl (hash: eIytrQWEW9SCtN0Y9C7vrO/YbzLbsrheciMT/loR++Y=)
2: rcu1nZGmL_S7ccczhF-sESIVSFg.roa (hash: bYUYTaJymdrEh9zrcfZKEG7i+z1i30upCc49kr4zBNw=)
3: wGPQkCyZBLF64nqCVCJB0ISUzBg.roa (hash: EYYn9hWCHtPsq8G1cxHiPJEhzM/YA2ywjRpNXuGftg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:cd:7b:44:35:f2:cf:50:ba:ce:5a:55:8f:26:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a07318a1314233f5623c0f835fae18f9126412f
Validity
Not Before: Jun 13 06:01:03 2026 GMT
Not After : Jun 14 06:01:03 2026 GMT
Subject: CN=d5e4dd05e209cdbd670e627b2054b20593791617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:88:d9:8b:43:c0:4b:e0:05:ca:28:46:f5:
48:a6:75:49:f3:0d:d9:0a:cc:6c:48:40:79:46:37:
eb:8d:9f:d8:85:88:0c:da:ad:bd:60:5c:9c:6f:a8:
6c:10:b6:07:ae:16:ed:fb:23:b6:70:0d:39:39:0e:
70:33:c3:d5:28:04:9e:97:b4:77:0b:62:17:21:6a:
49:9c:7f:4c:6f:89:de:14:87:6b:3c:2d:29:df:1d:
b4:2b:76:4c:32:d2:b6:eb:1a:d7:d0:e1:5b:5b:fb:
64:8f:38:87:7f:de:3a:2a:46:80:2c:d4:e3:ac:64:
8c:d1:5c:41:9f:a4:25:70:28:7c:4c:98:6a:38:2a:
eb:9b:4b:a5:71:60:26:fd:f1:bb:93:38:a6:11:b9:
37:68:0f:cd:3f:8b:3a:e8:64:0b:25:59:74:17:8a:
3c:e5:33:85:34:6e:9a:16:da:4f:42:d0:20:50:d1:
a9:bf:c5:51:20:d3:c9:de:ac:ae:a6:fd:dc:80:7c:
9a:bb:87:35:5e:75:6c:34:63:02:d9:d3:cf:88:35:
cb:fa:60:f5:ab:e6:26:84:c2:59:72:8c:72:44:64:
8e:99:c1:01:14:b9:ed:fb:b6:ca:22:c7:0e:bd:8b:
89:30:9f:e6:bf:ee:70:77:fc:b0:05:2b:b4:35:c5:
a8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E4:DD:05:E2:09:CD:BD:67:0E:62:7B:20:54:B2:05:93:79:16:17
X509v3 Authority Key Identifier:
keyid:3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:9f:a0:78:12:a9:d0:92:4e:32:d7:3a:3a:97:02:e6:9d:0c:
82:5d:6e:ff:bc:5d:5c:d7:b3:8f:3a:50:df:80:c2:e0:b6:1b:
e9:35:6e:f2:2f:f2:6c:46:85:42:16:9f:c4:6d:ba:b7:06:8a:
c7:17:cb:88:05:3d:47:a9:9c:e8:29:d9:9b:88:79:d2:b9:2f:
ce:a5:8c:88:14:05:79:3a:f7:0b:cc:5d:c9:c2:8c:5f:09:4e:
7f:13:7c:00:0f:4a:ec:9c:59:79:a9:5e:3f:76:c9:e4:48:8f:
64:de:10:13:0c:4b:34:3a:88:15:4a:27:41:2b:90:c5:ad:e5:
5f:b2:be:d2:da:ca:f6:66:9b:da:44:21:8a:8e:42:89:2a:96:
f3:0d:f8:5e:7a:44:dd:7d:7b:04:a3:15:ef:6f:65:28:e5:1e:
2e:42:09:bc:b2:3d:75:b0:2b:9d:a2:41:5a:23:bc:11:cf:3f:
9e:e4:e6:c6:de:df:32:57:8b:36:08:be:57:0d:db:12:39:c1:
cc:47:18:1d:b0:22:ba:54:40:e3:21:7a:4b:98:4e:ae:fa:7b:
ee:21:0c:25:26:31:bd:3b:23:d9:f4:8a:43:18:62:49:9d:60:
60:a7:03:1e:b9:89:42:73:de:b5:d3:85:c4:72:77:04:6f:09:
0e:5a:e6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 12:56:32 2026 by rpki-client