Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
File: oHkxBpr_ycmd5RjIJgYOGctHWmo.mft (raw, json)
Hash identifier: 1FUdwLehgbkalUC0uEDAAWuSlvV+1cbhNZ2oj4b99MU=
Subject key identifier: 8C:D1:5A:AB:73:A7:AC:9B:39:F3:3B:6C:7E:DE:FC:83:CE:52:52:38
Authority key identifier: A0:79:31:06:9A:FF:C9:C9:9D:E5:18:C8:26:06:0E:19:CB:47:5A:6A
Certificate issuer: /CN=a07931069affc9c99de518c826060e19cb475a6a
Certificate serial: 019EB80FAA652F0A8F0D2A7F5EFCA85AA2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
Manifest number: FF
Signing time: Thu 11 Jun 2026 19:01:34 +0000
Manifest this update: Thu 11 Jun 2026 19:01:34 +0000
Manifest next update: Fri 12 Jun 2026 19:01:34 +0000
Files and hashes: 1: 2nCCDGIY-zgjtBGd6Ratic4BUZk.roa (hash: ypGUracRtSQozaYCuAAYU3ve4jp+TLuRdz+sdn4iE+c=)
2: oHkxBpr_ycmd5RjIJgYOGctHWmo.crl (hash: N3QGU+gbAl9IiFLASj6v7eY0dHHU36HcLsmcvP07pk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0f:aa:65:2f:0a:8f:0d:2a:7f:5e:fc:a8:5a:a2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07931069affc9c99de518c826060e19cb475a6a
Validity
Not Before: Jun 11 19:01:34 2026 GMT
Not After : Jun 12 19:01:34 2026 GMT
Subject: CN=8cd15aab73a7ac9b39f33b6c7edefc83ce525238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2c:0e:0a:23:94:db:79:8a:4f:28:33:62:28:
d7:e1:88:6a:fe:fa:07:6b:d3:cc:de:d0:c2:e2:75:
67:ee:73:88:37:92:bd:ac:50:02:3b:3e:4e:86:33:
78:f4:fa:60:c3:e2:d5:d0:1c:f9:9c:6f:de:45:62:
36:7b:1a:79:58:cf:53:11:ce:cf:21:9f:b5:c1:ff:
e8:bd:35:20:b7:28:ec:65:10:e3:f7:ca:6f:b7:f8:
ee:66:ff:b8:7b:72:da:57:e2:a5:6f:33:38:23:97:
81:0c:77:df:ec:87:fd:12:ca:dc:19:d3:df:cd:c3:
18:d2:46:1d:37:1a:3f:c4:5a:46:91:c7:46:3e:2d:
20:97:36:6a:0e:16:5d:0b:06:af:8c:ac:72:51:fb:
9b:52:ce:25:60:83:a5:ff:a2:5d:a0:3c:ef:5f:b1:
39:bc:10:e0:d5:11:a7:19:d9:98:af:a4:1f:85:49:
86:e1:82:5b:36:f9:fc:7e:a9:d7:9e:9a:a2:e3:39:
ea:2a:2a:80:a1:18:b1:d1:10:86:d4:97:e5:0f:30:
e4:4f:be:62:ae:3e:55:f4:58:8f:08:1f:75:4c:dd:
c5:16:e6:7d:11:67:58:c6:64:ec:26:ce:29:55:de:
d9:2e:54:3c:04:cc:e0:59:2d:c5:23:ad:5c:36:4e:
0d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D1:5A:AB:73:A7:AC:9B:39:F3:3B:6C:7E:DE:FC:83:CE:52:52:38
X509v3 Authority Key Identifier:
keyid:A0:79:31:06:9A:FF:C9:C9:9D:E5:18:C8:26:06:0E:19:CB:47:5A:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHkxBpr_ycmd5RjIJgYOGctHWmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/624d06-870f-4b4d-ad75-15876d952275/1/oHkxBpr_ycmd5RjIJgYOGctHWmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:dd:c2:2b:8b:1a:ce:8e:4a:cd:e6:bc:88:df:a9:14:41:ce:
96:4c:74:10:9c:16:f8:22:52:7c:81:43:2f:5b:b5:fa:e1:95:
26:bb:2b:ad:45:47:10:a7:e6:5d:15:49:6a:26:b7:ad:98:ef:
ca:17:c1:ca:c2:26:ae:66:a1:26:72:2e:f6:99:43:5b:14:d0:
b8:23:33:a4:b8:46:07:51:48:7b:47:55:8e:d3:2a:cd:9a:7b:
7c:83:ef:5a:36:f5:be:d9:b7:ca:93:49:8a:3e:8c:c5:2b:95:
93:f7:dd:aa:6c:59:53:62:31:7d:c3:67:32:69:12:8f:d0:32:
74:ff:84:de:05:44:95:12:24:a4:1e:a3:fe:bf:ad:96:26:14:
67:cd:82:d3:51:bd:30:e0:be:fb:9c:0b:5b:46:e3:01:b4:59:
1e:f7:5d:16:11:30:be:bb:22:1e:5a:d3:bb:c5:49:c7:9f:06:
0b:9e:69:9a:84:70:d3:ad:d1:42:65:95:fe:36:0a:94:46:a0:
d5:72:b6:e1:77:7a:93:a8:28:01:38:65:fb:71:27:d7:75:2b:
34:14:12:fe:17:ca:bb:e0:ad:d6:fe:39:64:d9:d9:cb:e5:a4:
9f:54:f3:9d:8e:a5:8e:96:00:b3:df:ae:eb:bf:73:7b:70:cd:
18:dd:c8:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64D6plLwqPDSp/XvyoWqLjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNzkzMTA2OWFmZmM5Yzk5ZGU1MThjODI2MDYwZTE5Y2I0
NzVhNmEwHhcNMjYwNjExMTkwMTM0WhcNMjYwNjEyMTkwMTM0WjAzMTEwLwYDVQQD
Eyg4Y2QxNWFhYjczYTdhYzliMzlmMzNiNmM3ZWRlZmM4M2NlNTI1MjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCwOCiOU23mKTygzYijX4Yhq/voH
a9PM3tDC4nVn7nOIN5K9rFACOz5OhjN49Ppgw+LV0Bz5nG/eRWI2exp5WM9TEc7P
IZ+1wf/ovTUgtyjsZRDj98pvt/juZv+4e3LaV+KlbzM4I5eBDHff7If9EsrcGdPf
zcMY0kYdNxo/xFpGkcdGPi0glzZqDhZdCwavjKxyUfubUs4lYIOl/6JdoDzvX7E5
vBDg1RGnGdmYr6QfhUmG4YJbNvn8fqnXnpqi4znqKiqAoRix0RCG1JflDzDkT75i
rj5V9FiPCB91TN3FFuZ9EWdYxmTsJs4pVd7ZLlQ8BMzgWS3FI61cNk4NfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIzRWqtzp6ybOfM7bH7e/IPOUlI4MB8GA1UdIwQY
MBaAFKB5MQaa/8nJneUYyCYGDhnLR1pqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0hreEJwcl95Y21kNVJqSUpnWU9HY3RIV21vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82MjRkMDYtODcwZi00YjRkLWFkNzUt
MTU4NzZkOTUyMjc1LzEvb0hreEJwcl95Y21kNVJqSUpnWU9HY3RIV21vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS82MjRkMDYtODcwZi00YjRkLWFkNzUtMTU4NzZkOTUyMjc1
LzEvb0hreEJwcl95Y21kNVJqSUpnWU9HY3RIV21vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ93CK4sa
zo5Kzea8iN+pFEHOlkx0EJwW+CJSfIFDL1u1+uGVJrsrrUVHEKfmXRVJaia3rZjv
yhfBysImrmahJnIu9plDWxTQuCMzpLhGB1FIe0dVjtMqzZp7fIPvWjb1vtm3ypNJ
ij6MxSuVk/fdqmxZU2IxfcNnMmkSj9AydP+E3gVElRIkpB6j/r+tliYUZ82C01G9
MOC++5wLW0bjAbRZHvddFhEwvrsiHlrTu8VJx58GC55pmoRw063RQmWV/jYKlEag
1XK24Xd6k6goAThl+3En13UrNBQS/hfKu+Ct1v45ZNnZy+Wkn1TznY6ljpYAs9+u
679ze3DNGN3Ing==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:39:21 2026 by rpki-client