Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: qTcziBAyQUHrEHmCnjZcKGIw3evMo6lomQypPDx0k2Q=
Subject key identifier: 0F:57:4C:C7:59:C4:5C:88:69:A2:55:FE:8C:16:5E:91:C5:F9:16:C9
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019EC11207470A9C33A08F68C6AB5112F642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 0460
Signing time: Sat 13 Jun 2026 13:00:44 +0000
Manifest this update: Sat 13 Jun 2026 13:00:44 +0000
Manifest next update: Sun 14 Jun 2026 13:00:44 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: EvUmYbDUYOMjzY84IqzdWK4h3bVp/xrk8CDi11Z3FCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:07:47:0a:9c:33:a0:8f:68:c6:ab:51:12:f6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Jun 13 13:00:44 2026 GMT
Not After : Jun 14 13:00:44 2026 GMT
Subject: CN=0f574cc759c45c8869a255fe8c165e91c5f916c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:49:95:44:e2:f3:1d:0d:d7:03:72:51:b1:
32:dc:d2:47:44:8c:d5:44:58:c7:21:5a:c6:15:8b:
c7:0b:14:34:e8:91:68:f8:bb:8a:ec:16:ee:e3:2b:
06:1a:4a:5a:53:35:60:6f:da:64:6f:28:18:65:d2:
01:1a:cb:52:15:eb:fd:1a:f3:7d:e4:9f:9e:c2:40:
46:d5:60:2a:84:be:c9:ed:7b:64:56:c5:33:e7:cf:
1f:26:f1:29:e4:8e:72:44:04:4a:71:78:a6:91:b6:
b4:b9:2e:b0:bb:22:03:b4:ce:d6:31:62:e3:c2:50:
f7:c5:f4:26:e3:fa:2d:4b:8c:16:a7:4c:5a:67:9e:
42:a0:70:ca:2e:d5:c7:85:64:1d:76:31:06:f9:a7:
8c:41:e6:9e:c2:ad:f9:6b:3c:f6:cf:43:80:3f:4c:
8c:e9:4c:a5:ed:db:55:09:7d:70:af:db:58:0f:2c:
0f:19:e7:14:22:3f:e7:6f:66:15:d6:44:ef:c8:52:
0f:7f:68:29:d1:39:c3:8d:b0:d6:41:30:a6:a4:92:
9c:8b:5b:b9:29:98:b6:3c:1a:36:bd:82:0d:cd:a8:
17:a3:a1:81:55:20:a7:04:16:e0:bd:78:95:20:bc:
ee:11:cd:96:96:3d:a8:df:70:84:83:38:fe:8e:45:
49:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:57:4C:C7:59:C4:5C:88:69:A2:55:FE:8C:16:5E:91:C5:F9:16:C9
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:78:4d:a8:e0:a8:46:f6:c0:a9:e5:ed:44:f3:99:b7:05:d0:
39:51:57:95:40:35:db:32:3d:f2:92:a3:c0:ba:2b:f9:de:f1:
b3:df:69:49:70:07:27:c6:8f:1a:78:34:c7:65:29:0f:84:9e:
eb:6f:75:ef:be:57:b6:16:f9:4e:85:3c:c7:bf:25:be:9f:fa:
cc:36:06:5b:10:ab:da:6c:a7:eb:37:9a:37:d2:b6:97:c2:4d:
40:bb:38:39:61:df:c4:83:08:d9:a0:50:03:bd:d5:cf:d2:87:
ad:00:4d:2d:d3:6e:f5:7c:27:16:b3:a0:0f:f3:9e:44:4d:00:
72:16:a9:4a:17:8a:77:1e:99:b4:83:c9:3e:54:cd:5f:b7:48:
86:8b:c2:80:bf:02:1f:b9:b8:79:fc:7d:a7:eb:86:0e:f8:6a:
f0:4e:1e:a8:17:d0:f6:f2:b3:60:09:5c:3d:c2:0d:e2:f4:93:
80:e2:85:7c:92:75:62:68:93:bc:6f:41:d6:4f:b6:12:4d:6f:
68:03:60:31:f9:4c:c6:90:c1:0b:9b:ff:93:66:12:65:05:8c:
f4:5f:7b:d0:f7:0f:e9:fd:77:2b:a1:30:24:fc:0a:aa:e5:6a:
62:3f:ab:d3:6c:73:59:65:25:f5:1b:09:e3:d2:32:84:60:61:
7a:3c:e0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:57:42 2026 by rpki-client