Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: CAY0bBWI7yej2ITDwRMYVmU9h2VhoUQwqXS1u0905hA=
Subject key identifier: 18:43:FF:CD:E2:22:36:A8:36:80:3A:71:2A:4F:58:0E:C7:5E:C1:02
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019EC18032CC98579A2E5FD5A97F1478446F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 15:01:04 +0000
Manifest this update: Sat 13 Jun 2026 15:01:04 +0000
Manifest next update: Sun 14 Jun 2026 15:01:04 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: Q8gc4QTjozA9tB6qRaqZGChrp8lRPMg+GLxo8U9YdX0=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:80:32:cc:98:57:9a:2e:5f:d5:a9:7f:14:78:44:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Jun 13 15:01:04 2026 GMT
Not After : Jun 14 15:01:04 2026 GMT
Subject: CN=1843ffcde22236a836803a712a4f580ec75ec102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f1:1b:ea:ce:dc:2f:f1:d8:a1:29:a6:08:89:
fb:33:fa:ee:7e:4e:75:46:0c:98:7e:1a:b0:02:82:
94:5f:c6:85:a0:11:77:aa:38:01:73:29:02:a8:ff:
0d:53:cc:dc:6f:86:1b:5c:b8:93:cf:22:c4:14:99:
c7:6f:79:ac:da:97:91:88:1b:32:b9:69:91:8f:35:
28:33:ee:fa:53:37:02:7b:49:9b:e7:f3:94:61:06:
df:84:23:f9:b6:13:96:86:0e:73:18:a0:44:f3:43:
7f:7c:e6:b2:67:e9:45:b3:87:59:df:d3:6b:24:05:
48:f7:f0:4d:41:37:7d:3d:e3:93:d6:72:50:2a:99:
bd:4d:2b:23:38:c9:0a:03:fd:e3:f1:e6:10:c2:aa:
5f:ae:b2:43:41:a8:4d:f3:d6:b3:1c:ff:32:b8:06:
e3:98:06:b9:93:37:3c:f0:1a:cb:26:90:bc:5d:1b:
29:73:8c:a0:f2:9d:9b:d7:56:6d:89:8a:26:e5:b0:
25:63:fc:d7:30:87:c3:39:56:8b:6c:92:49:19:50:
5e:bc:18:cf:d7:95:a0:ad:39:53:83:8e:c2:29:ee:
1f:10:54:d3:17:98:54:2e:7d:87:a6:f8:6a:8a:d0:
c0:aa:69:76:e7:36:1a:d8:99:fb:e0:47:fb:b3:1e:
7a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:43:FF:CD:E2:22:36:A8:36:80:3A:71:2A:4F:58:0E:C7:5E:C1:02
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:5b:95:94:58:d3:0a:f5:8c:ae:35:ee:fe:8d:70:f3:93:5b:
74:8c:34:13:a9:18:25:6d:0e:5f:ae:6c:4f:0b:38:fa:37:c0:
f1:1b:51:11:bb:34:ad:7a:eb:2c:03:76:c6:80:0a:17:38:e8:
bf:e5:b5:c1:a4:a7:73:42:83:bf:df:cd:77:7d:c8:7f:d7:7a:
b1:40:b7:60:77:43:98:96:6f:98:78:e7:8e:54:7d:99:fd:83:
49:06:ae:3b:36:e4:7d:bf:1e:2b:30:88:fe:56:af:90:9a:b2:
76:a8:1d:30:dd:5e:fc:8a:83:a5:1f:71:97:54:b5:dc:1d:9f:
bc:0c:34:8a:e5:6c:2d:11:1a:1b:68:df:60:81:a7:17:3c:0c:
b1:09:07:62:27:59:66:2f:fc:0b:da:7a:2b:6f:76:27:94:15:
f0:50:7f:5e:f5:e3:1b:52:7e:ad:c5:e9:ab:9a:30:d7:f9:cd:
0b:9d:8b:20:fd:85:23:17:15:e1:38:42:a6:c8:0c:2f:43:37:
46:38:f8:90:79:ce:19:84:75:9d:0a:59:eb:d9:fa:8f:ce:f8:
8e:26:d9:02:f7:b1:80:eb:63:74:6b:61:ee:72:35:d2:3d:0b:
1a:36:93:9c:46:3d:b9:0f:36:e0:3d:74:78:27:6b:a0:e7:9a:
a9:51:e3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:57:24 2026 by rpki-client