Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: +HwQJZBd8UGu+TyXxXdYAxrK51aXA//y35a+Z/tluOE=
Subject key identifier: 14:21:19:E3:F4:7A:EF:2E:D7:9F:11:42:4A:E9:20:0A:89:C0:4C:84
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019D394158361325FD95A943C484E0252AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 1824
Signing time: Sun 29 Mar 2026 11:01:16 +0000
Manifest this update: Sun 29 Mar 2026 11:01:16 +0000
Manifest next update: Mon 30 Mar 2026 11:01:16 +0000
Files and hashes: 1: 0yRcFcA3OBSplazAFaiD6lfC3B0.roa (hash: 2qPLWspuMTgkMxkS4l/YyisgXYynSeGYaJD2ttoyg+o=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: z15BYylIjszycH3Yt6C6kJ5h0aUQEXv6sPsBjbNoS6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:58:36:13:25:fd:95:a9:43:c4:84:e0:25:2a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Mar 29 11:01:16 2026 GMT
Not After : Mar 30 11:01:16 2026 GMT
Subject: CN=142119e3f47aef2ed79f11424ae9200a89c04c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:90:ba:e8:7e:58:21:f1:5c:a0:a2:11:2a:
29:6d:9a:fe:e7:28:a9:b2:19:7b:5f:ca:bb:b5:5d:
e7:97:ec:2c:df:b6:ad:33:9d:57:df:1f:27:d6:a3:
5c:98:d9:ee:e9:99:8c:03:bf:e3:37:33:2e:cf:9e:
71:f1:02:e1:45:02:06:62:ae:11:da:14:a3:e7:1e:
bd:8b:53:e5:b2:9c:e4:bf:54:d7:e5:b1:23:70:97:
b4:e4:94:db:e9:84:eb:cd:c2:64:70:2a:a5:82:74:
ab:8d:4c:e8:6c:7e:6e:14:b6:51:3a:01:ee:b4:ba:
a9:d5:4b:f8:ee:ef:de:21:fc:62:1a:67:72:3f:84:
bc:95:bc:c3:2d:01:c8:62:30:5c:10:23:7e:a9:c3:
1b:a8:f6:aa:20:48:58:41:8b:d5:64:0b:64:7a:80:
ce:f8:f8:6e:6f:89:b9:b9:fa:5e:36:24:69:8d:44:
a6:0e:3d:4d:83:91:ba:9b:58:f0:53:27:ce:32:e7:
c2:e9:b4:57:4d:99:12:8d:67:02:df:5c:e8:16:55:
b7:93:ac:75:fe:3a:ef:55:07:3e:13:a9:f4:dc:6f:
17:d9:df:ad:ff:bf:1c:eb:06:04:b4:7c:e2:b2:d6:
93:c3:3d:30:67:15:c9:56:39:36:ea:4d:cf:96:a0:
55:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:21:19:E3:F4:7A:EF:2E:D7:9F:11:42:4A:E9:20:0A:89:C0:4C:84
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e4:8b:d0:af:83:d3:61:7e:fe:3f:d6:c6:17:88:26:8a:4f:
0d:ee:69:ae:5d:40:7f:6a:fe:90:cc:a2:7e:7a:6c:dc:89:3d:
46:42:c7:e9:00:ce:1d:69:62:e3:2f:93:33:5e:31:bb:39:e2:
32:ba:ac:57:a2:6c:60:90:82:50:c4:85:16:62:6d:6a:41:8f:
b5:37:06:bd:77:96:32:03:68:08:20:30:5c:61:f2:31:bd:29:
81:08:c6:ea:1b:de:de:6a:2b:c0:1a:f5:93:e9:a3:73:9b:37:
71:43:4b:c6:cf:49:d5:38:1d:dd:b5:5c:78:97:5d:34:4f:96:
4e:ca:79:fd:bb:7a:95:31:a9:f8:96:26:97:e3:7d:34:4d:3f:
c8:3f:1f:75:92:0e:e2:78:17:0a:a9:62:a9:c7:b1:ea:c7:39:
79:44:4f:25:b0:07:5e:d2:6c:df:7a:d4:22:2f:98:b8:11:83:
8c:6a:59:27:fe:55:46:5b:ff:63:56:c1:05:51:03:e1:93:fd:
42:d0:b1:50:25:e2:8d:72:eb:67:7b:db:b0:66:48:3b:d5:21:
09:88:9b:b0:9e:9e:34:8c:34:4f:c9:91:ca:4f:ce:37:aa:79:
e9:2c:66:cd:94:74:9a:56:46:87:ba:29:59:d6:e7:83:52:27:
ec:fb:ab:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QVg2EyX9lalDxITgJSrVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMTQ2MjljNzY1Y2UxYWM0ZjY4ODk1NmUzYjkwZjZhZDhj
NGI1ODIwHhcNMjYwMzI5MTEwMTE2WhcNMjYwMzMwMTEwMTE2WjAzMTEwLwYDVQQD
EygxNDIxMTllM2Y0N2FlZjJlZDc5ZjExNDI0YWU5MjAwYTg5YzA0Yzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk+Quuh+WCHxXKCiESopbZr+5yip
shl7X8q7tV3nl+ws37atM51X3x8n1qNcmNnu6ZmMA7/jNzMuz55x8QLhRQIGYq4R
2hSj5x69i1Plspzkv1TX5bEjcJe05JTb6YTrzcJkcCqlgnSrjUzobH5uFLZROgHu
tLqp1Uv47u/eIfxiGmdyP4S8lbzDLQHIYjBcECN+qcMbqPaqIEhYQYvVZAtkeoDO
+Phub4m5ufpeNiRpjUSmDj1Ng5G6m1jwUyfOMufC6bRXTZkSjWcC31zoFlW3k6x1
/jrvVQc+E6n03G8X2d+t/78c6wYEtHzistaTwz0wZxXJVjk26k3PlqBV7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQhGeP0eu8u158RQkrpIAqJwEyEMB8GA1UdIwQY
MBaAFDsUYpx2XOGsT2iJVuO5D2rYxLWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTIt
ZmUzMTEwMGQwODFmLzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTItZmUzMTEwMGQwODFm
LzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAieSL0K+D
02F+/j/WxheIJopPDe5prl1Af2r+kMyifnps3Ik9RkLH6QDOHWli4y+TM14xuzni
MrqsV6JsYJCCUMSFFmJtakGPtTcGvXeWMgNoCCAwXGHyMb0pgQjG6hve3morwBr1
k+mjc5s3cUNLxs9J1Tgd3bVceJddNE+WTsp5/bt6lTGp+JYml+N9NE0/yD8fdZIO
4ngXCqliqcex6sc5eURPJbAHXtJs33rUIi+YuBGDjGpZJ/5VRlv/Y1bBBVED4ZP9
QtCxUCXijXLrZ3vbsGZIO9UhCYibsJ6eNIw0T8mRyk/ON6p56SxmzZR0mlZGh7op
Wdbng1In7Puraw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:52 2026 by rpki-client