Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: SkMTKI19ptkI/JL4JkKnXLmjWiMhaEt+FcIDBZ5rX6Q=
Subject key identifier: 18:FE:63:F0:2E:53:7F:89:27:03:A0:3A:46:0A:10:47:22:08:1F:B6
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 019EBE7F7EED083761F58A8E2604E9233209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 195E
Signing time: Sat 13 Jun 2026 01:01:27 +0000
Manifest this update: Sat 13 Jun 2026 01:01:27 +0000
Manifest next update: Sun 14 Jun 2026 01:01:27 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: 0nAGTrHjy5gs4S908X8XNhzYFny/9qgPiqTqh3XlKFE=)
2: WeJgs7A95jwqtwLgB758IcXv4EU.roa (hash: 84hLdtwmT7VOnkUt9Z3ak3sP5MNYReF+bmVuaSuUp4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:7e:ed:08:37:61:f5:8a:8e:26:04:e9:23:32:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: Jun 13 01:01:27 2026 GMT
Not After : Jun 14 01:01:27 2026 GMT
Subject: CN=18fe63f02e537f892703a03a460a104722081fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:28:a2:ed:59:06:aa:3f:2b:52:c9:dc:72:b5:
9d:ec:3e:93:2d:56:8e:54:69:88:c2:cf:cd:24:22:
b7:2b:14:60:c4:61:bb:92:6f:b2:53:92:1e:32:a6:
3e:85:a9:0e:f7:84:ea:a5:5a:d1:86:45:37:75:e1:
cd:f4:b6:95:f7:33:75:28:ea:3e:dc:20:18:88:ee:
89:b6:be:62:ce:90:47:b5:86:2a:6c:99:c4:09:75:
1c:cf:be:81:b2:a2:96:c3:02:3d:85:7f:60:97:89:
7d:47:14:75:e3:e8:ab:9e:c1:0e:58:c2:6b:fa:fb:
91:7e:91:48:e0:9e:37:35:40:56:85:5f:c6:7a:38:
c8:8d:23:bd:89:6a:f8:bd:09:47:6a:b6:58:e2:84:
fd:0e:06:62:b9:c5:83:e2:c7:78:e3:39:4c:b9:00:
1d:d3:72:5c:8e:35:30:a0:ba:17:59:c3:28:6d:8b:
ec:58:4f:c1:2a:c5:e0:46:5c:75:f8:21:56:e0:4e:
b1:81:a4:ec:91:02:0a:70:16:eb:ac:dd:ca:d3:b3:
47:86:11:ca:41:fe:39:e3:37:ba:7f:39:2b:16:b6:
36:09:07:89:3c:b7:c9:e5:7d:e8:c3:6c:ce:62:bf:
0d:1e:7d:a2:02:86:8e:ed:81:74:5c:2f:32:b9:ed:
90:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FE:63:F0:2E:53:7F:89:27:03:A0:3A:46:0A:10:47:22:08:1F:B6
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ad:12:90:be:40:37:dc:67:53:cf:25:2f:08:9e:a6:fc:2d:
13:86:35:40:ce:d2:99:fd:e2:b7:ab:fd:19:8f:35:9f:59:d0:
a4:b3:b5:13:88:b2:66:fe:5f:8b:f1:50:a4:f2:50:53:d8:85:
a5:6b:ec:43:9b:af:b9:83:82:87:65:b2:4d:cc:a2:de:81:67:
91:7c:14:ee:03:7b:cc:6d:32:1a:5e:77:34:30:35:e5:29:50:
bb:ba:24:3a:15:cc:1d:e0:45:f5:18:61:f1:67:b6:85:1a:5c:
13:3f:4a:44:71:51:5e:fd:99:96:89:68:66:2a:fa:76:4c:7e:
2c:66:c5:38:79:a9:e8:80:13:1c:2d:0b:17:3b:24:d2:7a:92:
ae:ff:0d:54:b2:6d:18:eb:68:e2:6c:f7:83:2a:20:df:2b:fd:
e4:26:61:4f:22:f7:3b:66:c9:fe:9a:e9:a1:33:79:87:1b:15:
b1:a7:a2:97:f4:ca:ed:5f:a9:7e:d1:c5:0d:a7:e6:cf:dd:e4:
e1:8a:29:1a:33:89:b3:01:9a:f5:ba:29:58:0d:16:9f:40:d7:
93:65:3f:b3:75:4b:76:03:a2:7d:48:a5:4d:b0:fb:3f:14:58:
bf:00:4b:a6:fc:e2:db:98:65:a0:46:5d:66:8c:13:c2:25:fe:
93:03:0d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:53:38 2026 by rpki-client