Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
File: OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft (raw, json)
Hash identifier: ZUdn/jkm3dqyVSYQqn2jX7MaJty+066ntkCiH93UaF4=
Subject key identifier: AA:37:79:15:E8:F4:71:AD:07:7F:E9:B4:92:76:7C:52:79:BA:F6:E7
Authority key identifier: 39:79:B4:35:A3:CF:EF:E7:C3:3A:84:B2:2F:60:33:00:9A:52:25:C7
Certificate issuer: /CN=3979b435a3cfefe7c33a84b22f6033009a5225c7
Certificate serial: 019EB921F342161D6567DF91193B33852C18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
Manifest number: 18E7
Signing time: Fri 12 Jun 2026 00:01:10 +0000
Manifest this update: Fri 12 Jun 2026 00:01:10 +0000
Manifest next update: Sat 13 Jun 2026 00:01:10 +0000
Files and hashes: 1: OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl (hash: +iXFX8kKitljMrPEoUII5YkP30k+QbDcfNUQDVElRxQ=)
2: TFyydJckZZxmvJ2kyZiqerxMndc.roa (hash: 1M8O0DEiBMTzRovUAkdLb42byd8jCd0k32zelG/wKMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:f3:42:16:1d:65:67:df:91:19:3b:33:85:2c:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3979b435a3cfefe7c33a84b22f6033009a5225c7
Validity
Not Before: Jun 12 00:01:10 2026 GMT
Not After : Jun 13 00:01:10 2026 GMT
Subject: CN=aa377915e8f471ad077fe9b492767c5279baf6e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:08:6b:78:62:58:71:5a:28:41:c2:f0:6a:6e:
05:00:b3:ba:cf:43:74:cd:84:97:3d:47:70:df:a7:
70:e3:98:49:4a:94:4d:df:02:1b:03:c4:4b:36:d2:
8b:48:44:68:1c:c0:61:85:40:2a:89:46:e7:a8:66:
05:a2:8c:16:3f:48:60:21:bb:07:50:e1:cb:30:7a:
99:4a:e6:1a:3e:6e:b1:6d:79:49:f1:63:f7:49:5b:
c6:f6:dd:f6:ec:1e:9a:f1:27:70:b8:9c:e6:15:dc:
c1:4e:c4:8d:a7:ce:0d:b6:58:cf:55:c4:26:4f:9c:
2b:44:2b:d5:81:84:76:60:7d:6e:64:60:0d:2b:3a:
92:0f:46:ed:11:f2:45:62:da:a9:f0:ef:ab:03:20:
d1:34:be:6e:6b:67:ad:64:87:d4:83:70:e2:ca:81:
32:16:c9:57:56:92:9c:b6:76:c5:5f:07:99:bf:4f:
1e:0a:4b:92:74:0f:b1:42:42:47:bb:d0:2a:2b:e7:
c5:65:cf:29:84:ee:9e:65:a6:0c:8e:94:ff:97:7b:
f1:47:53:e4:fb:7a:d6:67:f0:19:ce:bf:5e:ea:51:
d3:00:bf:0d:31:29:75:f9:8c:17:58:a6:df:af:61:
50:e8:fe:5b:e6:6c:f0:2c:81:74:84:8e:1a:69:7d:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:37:79:15:E8:F4:71:AD:07:7F:E9:B4:92:76:7C:52:79:BA:F6:E7
X509v3 Authority Key Identifier:
keyid:39:79:B4:35:A3:CF:EF:E7:C3:3A:84:B2:2F:60:33:00:9A:52:25:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:1c:e7:c3:2c:49:e5:fc:89:5d:1e:b3:5e:1a:2c:ea:1b:42:
9c:6c:c1:0a:1a:2f:a9:ea:63:e8:ed:32:34:61:3f:e6:a6:18:
79:ae:a7:43:96:fa:09:d8:92:6c:44:8a:2f:95:23:71:ce:8b:
59:36:16:09:38:b1:c5:69:69:84:0e:1e:90:9c:ee:e6:64:7f:
fa:85:ff:74:60:9e:49:f3:d2:8e:ac:3e:31:fb:f1:33:87:90:
57:b2:f1:f8:f2:68:70:3e:c8:92:00:e4:f3:a3:31:0a:c1:9e:
a6:b5:ae:5e:5a:ab:84:fb:13:56:bc:c4:ae:c9:d2:97:74:4b:
77:06:b2:b0:93:e6:3b:fa:b2:d5:6a:cc:aa:e3:d8:f3:2e:4e:
eb:17:5e:c4:0d:5d:3b:c5:90:8f:2a:c6:30:fa:e0:b7:a3:f6:
da:93:9e:39:4b:b0:1f:cf:79:1c:07:16:cc:ce:36:b0:de:2f:
9e:c5:e8:a5:dd:d1:e0:b7:2f:65:8a:d2:e4:b1:1a:9b:4c:98:
04:7b:11:a4:4c:6d:5a:bb:05:ff:ff:eb:01:a1:a7:5a:11:c3:
1d:1f:1f:12:80:57:64:2e:8f:d5:c7:26:85:ce:ea:98:f2:d7:
35:03:97:dd:f3:01:bd:b1:62:f9:36:89:48:20:7a:e8:67:44:
a5:0d:a3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:51:50 2026 by rpki-client