Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
File: okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft (raw, json)
Hash identifier: +2GoAxD0Ib3p4zwr8cD9u4NmF7o2tqZYe71fGjhJtUA=
Subject key identifier: B9:B4:5D:5B:DE:66:56:8A:14:E2:26:33:E4:7A:3E:41:58:2D:05:E7
Authority key identifier: A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
Certificate issuer: /CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Certificate serial: 019EC2CA1FC7B5D3B69BF4F019CA54CE5314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
Manifest number: 0412
Signing time: Sat 13 Jun 2026 21:01:26 +0000
Manifest this update: Sat 13 Jun 2026 21:01:26 +0000
Manifest next update: Sun 14 Jun 2026 21:01:26 +0000
Files and hashes: 1: Cyd9epktZUP2NzDWt7kuBmj63qY.roa (hash: 4Hn7SVvllIET4/FJbhg9Vi4tqF9x0RkLIB5CUH+jolo=)
2: okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl (hash: RYVSLLTkX6e+huxdx5MrN8xB63Mf/4Hz06C3Xp5EdPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:ca:1f:c7:b5:d3:b6:9b:f4:f0:19:ca:54:ce:53:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Validity
Not Before: Jun 13 21:01:26 2026 GMT
Not After : Jun 14 21:01:26 2026 GMT
Subject: CN=b9b45d5bde66568a14e22633e47a3e41582d05e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:e9:9c:15:72:7e:95:b2:61:8a:c9:37:44:
3c:c8:7a:75:cb:7a:c7:4a:fd:af:56:94:82:ef:76:
07:a7:da:89:ac:de:75:ba:8c:29:c3:a4:55:b7:43:
6c:ca:88:d8:95:c9:52:8b:85:aa:bb:a3:22:11:64:
be:53:f3:d8:99:17:da:48:f4:c7:2f:45:a9:0b:0d:
00:13:48:44:64:44:05:b3:19:74:e7:53:83:6a:20:
e6:c6:29:ed:69:34:0b:21:8f:06:20:ad:78:32:42:
08:19:43:0c:81:0f:7d:f4:55:2b:5d:8d:64:8d:eb:
5f:ae:59:6b:29:d9:5a:19:ae:28:97:1c:c1:cd:29:
88:76:ce:83:c0:73:08:f8:cc:19:c1:26:82:fd:e2:
bf:2d:40:9d:69:13:95:bc:44:0d:82:76:8d:f9:6f:
b2:f7:d9:5c:a7:48:09:5a:aa:f3:08:be:8d:c2:33:
ed:75:fe:89:ec:8b:a0:f8:60:f5:47:09:58:05:e2:
73:83:f4:f3:5b:95:36:0f:15:98:e1:43:ee:d6:c0:
09:bd:90:88:bf:83:97:20:9d:a4:ca:05:c1:1e:25:
aa:00:94:78:f9:55:cb:9d:aa:a8:ac:5f:ef:d4:f1:
73:34:0f:0a:9f:7a:37:39:92:89:65:a8:39:35:83:
50:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B4:5D:5B:DE:66:56:8A:14:E2:26:33:E4:7A:3E:41:58:2D:05:E7
X509v3 Authority Key Identifier:
keyid:A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:2e:1b:dc:67:e0:80:5d:a0:db:cf:46:16:f1:45:73:25:d3:
47:01:59:62:65:71:fb:d3:69:ad:78:4f:ea:7d:44:03:38:69:
b8:ac:37:bf:f3:46:63:13:6e:c9:da:5a:53:4d:63:82:0c:73:
c0:ca:c3:14:a7:bf:2b:4f:7a:90:e6:78:a0:17:36:6e:27:5c:
fd:d9:c7:2c:c9:38:a9:96:3d:29:e0:f9:0e:f6:0d:71:f9:f6:
5a:22:67:8f:74:a8:61:e2:61:50:44:4e:8a:0b:13:1b:7c:b8:
c4:9c:be:a5:82:ba:da:81:41:90:a3:cc:05:b1:4c:bb:0a:59:
22:4c:47:53:35:ba:6d:89:e1:c9:28:62:da:10:65:1c:8f:11:
e7:cc:1a:75:b8:ec:6e:b7:2d:af:96:e0:6e:20:86:04:2e:2f:
7b:1e:79:4f:6e:78:95:f4:86:28:b5:c6:3c:f7:ad:8d:ee:2f:
58:d4:b9:06:70:ab:43:33:da:34:ee:94:6d:e4:57:0c:d3:82:
62:48:47:62:36:54:40:c3:3c:94:0f:fe:e3:cd:bc:a5:a1:97:
28:22:b8:cc:c6:e8:61:e0:19:30:b3:b2:50:90:12:e4:36:7f:
6d:8d:9b:22:46:71:d4:c8:12:45:5d:7b:ef:e2:d9:0a:2a:59:
6d:8d:3f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:51:32 2026 by rpki-client