Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
File: OExBksVwSp65aPXPUzuaH3pmYa0.mft (raw, json)
Hash identifier: vJjUUQeOg+SMoeqCRNhwCRzbz5Kx8CqaFcjpRUYPAJg=
Subject key identifier: 5D:E5:E3:33:55:6A:1F:18:18:D1:98:6F:B6:1D:F9:0C:FF:3F:82:F1
Authority key identifier: 38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
Certificate issuer: /CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Certificate serial: 019D37F6E5FEE78CE8B829E9D97D68D1A111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
Manifest number: 0468
Signing time: Sun 29 Mar 2026 05:00:20 +0000
Manifest this update: Sun 29 Mar 2026 05:00:20 +0000
Manifest next update: Mon 30 Mar 2026 05:00:20 +0000
Files and hashes: 1: OExBksVwSp65aPXPUzuaH3pmYa0.crl (hash: XUeKLi2FcGgKIIeGlXe1e2gywAL1OmMdOW1mYusw1Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:e5:fe:e7:8c:e8:b8:29:e9:d9:7d:68:d1:a1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Validity
Not Before: Mar 29 05:00:20 2026 GMT
Not After : Mar 30 05:00:20 2026 GMT
Subject: CN=5de5e333556a1f1818d1986fb61df90cff3f82f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:9f:b6:a5:1f:f7:27:e0:65:3f:31:5e:49:
ba:04:10:ed:1e:98:e4:4b:24:53:bb:ca:df:3f:b6:
2a:24:aa:42:74:83:fb:58:b8:d9:da:7b:bb:50:84:
3a:a2:83:6e:3a:9f:b0:71:0b:db:2f:1b:6d:61:0f:
70:18:00:20:38:06:3a:50:fd:2f:b7:fb:f4:80:76:
95:16:4f:56:e3:bd:7d:f9:fa:d4:bc:a2:4e:0e:79:
6a:4b:eb:a9:f5:b3:23:4e:53:f2:7f:85:dc:57:b5:
fb:38:e6:b2:ac:92:e8:68:8d:be:2b:e2:93:b9:16:
dd:2a:cc:f1:68:6d:66:7b:ad:fc:4b:31:f2:ca:84:
b3:81:aa:4e:a5:93:96:f5:5c:dc:9e:eb:7d:84:df:
3d:26:fc:4e:67:8e:06:69:91:85:a4:3a:78:d5:f4:
e3:f2:ba:7b:31:cc:7c:92:37:c6:6d:12:a5:8c:ed:
2f:d5:c4:d4:82:a9:51:f0:4b:89:cb:12:00:fb:19:
dc:1f:fa:05:8e:e3:f2:b9:9e:cf:4f:19:b7:11:05:
19:ac:17:ce:8e:4a:05:be:7a:14:f0:b3:da:8f:64:
99:5e:34:34:47:e7:70:55:6b:90:3d:fb:7a:d6:4b:
eb:e5:3e:28:2e:95:4c:7d:23:98:65:a1:06:6c:ce:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E5:E3:33:55:6A:1F:18:18:D1:98:6F:B6:1D:F9:0C:FF:3F:82:F1
X509v3 Authority Key Identifier:
keyid:38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:03:3a:c0:b9:d6:83:f7:f8:a6:44:61:9a:31:ca:ad:c9:ad:
89:a7:42:79:78:c6:1c:04:91:60:9a:a4:9b:81:ff:c3:1f:bf:
de:e4:b9:79:53:90:58:e7:76:81:d4:9b:08:cf:92:5c:77:76:
fa:dd:c0:9e:ff:1d:be:f9:e3:a4:d9:ce:6d:63:3f:1e:10:b6:
2f:33:2c:0c:a0:73:a2:61:1d:66:ce:11:d9:55:76:30:0a:b3:
b2:27:3f:91:fa:ed:c4:09:c4:ae:5e:71:27:a7:c7:8f:4e:f0:
c6:3e:16:93:f9:35:e3:40:0e:8f:53:dc:f4:46:d8:90:14:ae:
52:8f:9f:6a:f0:c0:6a:09:13:ea:11:71:8b:c0:2c:d2:02:23:
3a:5c:6a:dc:ed:c1:04:e7:23:40:b4:46:5f:fc:ca:ea:ba:61:
82:00:ec:ad:ea:a2:f3:06:53:18:b5:36:8d:a2:b2:d8:93:fd:
6b:00:24:8f:1d:b3:6e:fe:b2:de:b9:94:bc:2b:16:68:69:e6:
d2:a2:4c:84:5c:df:0b:32:43:81:53:ca:ae:4c:45:34:b0:54:
c5:f2:c6:6a:5f:88:8e:56:b6:6f:39:eb:eb:42:4a:2e:67:7d:
83:c6:be:b9:17:5e:9a:b2:32:ba:b7:32:d8:c1:d0:cf:e4:59:
08:88:c1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:08 2026 by rpki-client