Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
File: OBXtD6YgyAGqqabxT2WW1-yXUKE.mft (raw, json)
Hash identifier: xpF0liMPcs29tIY3UgRwwqMCCQyGm9t9n9ermLXRweI=
Subject key identifier: 8A:71:BB:2C:29:C3:2F:EB:0D:AA:8D:41:43:AE:4E:21:6F:AB:C0:78
Authority key identifier: 38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
Certificate issuer: /CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Certificate serial: 019EB7D800B71C74A70E71FD5B52697B9456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
Manifest number: 1958
Signing time: Thu 11 Jun 2026 18:00:46 +0000
Manifest this update: Thu 11 Jun 2026 18:00:46 +0000
Manifest next update: Fri 12 Jun 2026 18:00:46 +0000
Files and hashes: 1: J5zzAtbu7OO84foJkjfo9mnqe4E.roa (hash: iT6yzwPu2JR2wJ7myEmKqPOSCKR+ROL2NO3QjEH64jQ=)
2: OBXtD6YgyAGqqabxT2WW1-yXUKE.crl (hash: wSTi7sKyhvRZ2/5uZyBRWNuP1kp0SIUI7fhIjfH/mtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d8:00:b7:1c:74:a7:0e:71:fd:5b:52:69:7b:94:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Validity
Not Before: Jun 11 18:00:46 2026 GMT
Not After : Jun 12 18:00:46 2026 GMT
Subject: CN=8a71bb2c29c32feb0daa8d4143ae4e216fabc078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e0:a8:d4:4a:45:12:88:ad:ca:99:fd:a1:0f:
3b:e7:3a:90:3b:30:08:79:55:e2:53:22:e7:6a:74:
8b:cb:cb:8a:b6:e4:ff:d4:50:24:09:4c:bf:c0:23:
1a:8a:9a:f7:7c:25:a6:5e:84:ca:80:a6:17:f4:51:
ff:bf:fb:ae:77:7c:5c:03:7b:4f:69:61:bc:36:4f:
8c:36:65:99:e6:8e:46:d1:61:78:f3:89:f9:57:4c:
f1:ae:cc:a4:a8:1b:01:97:c1:48:de:0b:31:23:80:
0b:1c:82:3c:ef:67:92:55:a0:cb:e5:47:7b:f4:5e:
40:74:7f:5e:c6:af:40:03:95:16:1d:31:9f:71:d2:
e6:ae:bb:f5:38:9c:3a:e4:2a:6c:26:df:a2:db:c8:
6a:4a:1b:0a:7d:a5:5f:80:54:19:a4:c1:86:4d:51:
19:4d:fd:50:a7:c2:90:ee:a5:bb:4d:d3:f6:fc:91:
d6:f6:24:43:ed:41:83:fd:bb:3c:e8:f0:b6:4f:f0:
04:e2:27:1c:4c:48:63:4c:48:cb:0b:92:39:f5:18:
31:d6:dc:4f:2d:51:25:d9:41:b6:97:12:67:6e:0e:
60:c7:a5:5e:86:2e:64:84:90:9b:77:54:ae:46:69:
3c:3e:2e:81:13:0a:b7:17:ca:c6:9b:0f:c6:b6:f1:
10:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:71:BB:2C:29:C3:2F:EB:0D:AA:8D:41:43:AE:4E:21:6F:AB:C0:78
X509v3 Authority Key Identifier:
keyid:38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:dd:15:b8:7e:e3:dc:89:99:5b:82:90:0b:05:3a:3e:4a:3e:
db:d4:79:74:8a:4e:73:13:02:7a:4d:9a:f6:f1:87:60:3b:85:
75:f3:cb:ef:79:f9:39:21:18:9c:b3:5b:46:e5:d8:3a:71:c9:
42:94:c8:8b:1f:6c:7d:13:73:22:34:1c:0e:26:e9:a7:35:51:
c3:03:9a:e3:f6:22:28:d2:0b:c5:9c:9c:a8:e6:ea:9a:86:be:
95:99:6b:58:74:7f:34:ab:a4:60:4c:44:55:7e:c4:63:97:7f:
af:1a:1f:a6:98:91:7f:94:cf:31:3d:a9:3c:8a:6e:16:29:40:
2b:90:d7:46:56:53:f1:db:c2:83:d7:9c:ba:f5:c9:ca:d5:87:
a8:90:ea:c1:3c:c7:32:f5:ac:0d:21:af:83:8a:77:7f:6e:c0:
a1:6f:d8:5c:9f:cb:96:c2:39:db:37:16:46:39:f8:58:62:31:
dd:9e:32:b5:5b:9b:5e:55:5b:89:de:96:f3:83:ab:05:de:8b:
07:61:08:dd:8d:16:1d:03:e9:5c:04:2f:37:4b:06:ef:fa:44:
1c:74:bf:e3:1d:06:4d:5c:7d:03:8a:89:d4:bc:1b:3a:10:eb:
86:b6:db:36:27:34:fe:68:b2:46:5b:34:b1:05:c2:7a:31:7e:
35:a0:7b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:18:03 2026 by rpki-client