Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: l49D6CSh5Otuf/gSBKXxq9X8Lz2LUd725Yy2c8ZvUvs=
Subject key identifier: 30:C5:FB:37:41:86:F9:5E:3F:56:27:3E:E4:3A:99:34:87:82:1C:17
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019E30729F5F3B57528956411324818CB995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 18A4
Signing time: Sat 16 May 2026 11:01:18 +0000
Manifest this update: Sat 16 May 2026 11:01:18 +0000
Manifest next update: Sun 17 May 2026 11:01:18 +0000
Files and hashes: 1: 0yRcFcA3OBSplazAFaiD6lfC3B0.roa (hash: 2qPLWspuMTgkMxkS4l/YyisgXYynSeGYaJD2ttoyg+o=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: oOao/5J2Eow+c20i+TNNKRL9R6JaqrZCoatL4jA6w/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:9f:5f:3b:57:52:89:56:41:13:24:81:8c:b9:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: May 16 11:01:18 2026 GMT
Not After : May 17 11:01:18 2026 GMT
Subject: CN=30c5fb374186f95e3f56273ee43a993487821c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e4:b8:a8:fa:03:12:bc:9c:66:f2:d6:2b:d1:
71:eb:dd:14:c2:3b:1a:05:80:fe:77:3b:dc:7c:0d:
6b:9d:e5:7f:8b:d4:76:c3:a9:22:44:44:1f:34:a0:
4a:b8:d7:d6:e0:aa:a7:a6:bc:36:d1:ab:9e:22:ac:
84:e9:7f:fa:e6:73:1d:b3:de:51:63:ce:80:ee:a1:
ed:04:ed:6b:c7:52:9f:c1:42:c6:a4:c0:7e:2a:f3:
98:4b:22:1c:a3:a6:e2:5d:8b:7c:bb:a6:34:fd:0d:
c7:b7:46:16:77:04:a3:5e:a1:03:42:28:ec:59:0d:
b1:14:cd:78:30:1e:a4:1f:17:8a:1a:a8:9c:50:7d:
7d:2b:76:22:64:4f:52:a3:04:98:e4:0e:31:d0:a5:
82:e5:9a:e4:45:ba:61:a4:ee:76:27:81:2b:b7:29:
c6:5a:45:cb:cb:ba:5a:e6:7f:28:72:01:94:58:e1:
5c:a0:84:b7:78:0b:72:cf:e1:53:df:bb:a1:b3:eb:
13:8a:af:16:36:ca:ca:dc:fc:0f:34:2e:84:0d:4e:
e7:7b:73:c4:d0:d9:ee:5e:3a:ec:3f:54:64:2c:4e:
c5:04:ab:9c:6a:70:4f:79:17:24:8f:71:8e:36:ef:
c3:10:4a:74:89:0c:f9:05:16:8e:16:0f:17:05:a6:
46:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C5:FB:37:41:86:F9:5E:3F:56:27:3E:E4:3A:99:34:87:82:1C:17
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:69:17:03:a1:0c:12:1c:8e:fe:95:ac:29:a4:3e:a4:f1:80:
ed:67:d6:92:49:b7:64:fa:9c:32:6c:9e:b9:15:ca:5c:42:59:
2e:7e:31:ab:96:b3:6e:75:0c:c3:21:07:b6:8a:17:12:c1:02:
7d:4e:5e:20:2a:0e:82:2f:a8:b3:7c:2c:b9:72:79:2f:61:8c:
c7:f9:84:63:47:fc:e8:c4:94:6d:c6:0d:37:91:5d:50:bd:a2:
7e:d2:4e:47:02:bb:ee:fc:ea:ec:8c:1b:3a:07:90:a4:45:3f:
9b:64:a7:78:c9:a8:8e:18:b1:27:3e:de:a1:14:37:87:70:24:
6f:33:a3:9a:fb:41:13:34:50:8f:fb:a6:4e:a2:a5:01:7b:3a:
46:b7:47:88:a0:1f:e1:2e:4b:bf:71:a8:7f:2c:47:23:ca:ac:
cd:68:83:75:97:59:2d:ab:d0:96:a0:38:1c:d8:1e:f0:fd:d5:
9a:64:7c:29:a3:1f:b7:43:42:03:09:03:dd:5d:41:fb:3b:b0:
df:20:00:c3:ad:da:48:9c:92:52:8c:4d:59:ba:4d:60:44:be:
b6:aa:5f:c0:bb:8e:12:c9:21:30:81:a9:1e:5d:af:b8:5e:12:
43:8b:39:2f:b7:30:02:f3:f2:88:83:25:e6:49:72:b3:f2:48:
af:54:05:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wcp9fO1dSiVZBEySBjLmVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMTQ2MjljNzY1Y2UxYWM0ZjY4ODk1NmUzYjkwZjZhZDhj
NGI1ODIwHhcNMjYwNTE2MTEwMTE4WhcNMjYwNTE3MTEwMTE4WjAzMTEwLwYDVQQD
EygzMGM1ZmIzNzQxODZmOTVlM2Y1NjI3M2VlNDNhOTkzNDg3ODIxYzE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuS4qPoDErycZvLWK9Fx690Uwjsa
BYD+dzvcfA1rneV/i9R2w6kiREQfNKBKuNfW4Kqnprw20aueIqyE6X/65nMds95R
Y86A7qHtBO1rx1KfwULGpMB+KvOYSyIco6biXYt8u6Y0/Q3Ht0YWdwSjXqEDQijs
WQ2xFM14MB6kHxeKGqicUH19K3YiZE9SowSY5A4x0KWC5ZrkRbphpO52J4ErtynG
WkXLy7pa5n8ocgGUWOFcoIS3eAtyz+FT37uhs+sTiq8WNsrK3PwPNC6EDU7ne3PE
0NnuXjrsP1RkLE7FBKucanBPeRckj3GONu/DEEp0iQz5BRaOFg8XBaZGGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDDF+zdBhvleP1YnPuQ6mTSHghwXMB8GA1UdIwQY
MBaAFDsUYpx2XOGsT2iJVuO5D2rYxLWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTIt
ZmUzMTEwMGQwODFmLzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTItZmUzMTEwMGQwODFm
LzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI2kXA6EM
EhyO/pWsKaQ+pPGA7WfWkkm3ZPqcMmyeuRXKXEJZLn4xq5azbnUMwyEHtooXEsEC
fU5eICoOgi+os3wsuXJ5L2GMx/mEY0f86MSUbcYNN5FdUL2iftJORwK77vzq7Iwb
OgeQpEU/m2SneMmojhixJz7eoRQ3h3AkbzOjmvtBEzRQj/umTqKlAXs6RrdHiKAf
4S5Lv3GofyxHI8qszWiDdZdZLavQlqA4HNge8P3VmmR8KaMft0NCAwkD3V1B+zuw
3yAAw63aSJySUoxNWbpNYES+tqpfwLuOEskhMIGpHl2vuF4SQ4s5L7cwAvPyiIMl
5klys/JIr1QFxg==
-----END CERTIFICATE-----
Generated at Sat May 16 22:01:59 2026 by rpki-client