Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: /K5BHIiPFFVzjhO01FNFNeuu34d0plSUayLcpQknwPk=
Subject key identifier: E4:4F:E5:9E:1A:07:CD:3F:0C:91:C6:1D:C0:3D:92:17:D1:BE:CD:C3
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019EB76A2B779981874E925BC1FF7809A955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 045B
Signing time: Thu 11 Jun 2026 16:00:48 +0000
Manifest this update: Thu 11 Jun 2026 16:00:48 +0000
Manifest next update: Fri 12 Jun 2026 16:00:48 +0000
Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=)
2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: ecbwYFQfdxG9s/aJhN+5lEwqxmpUNdJfAM1ohuBL2K8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:2b:77:99:81:87:4e:92:5b:c1:ff:78:09:a9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Jun 11 16:00:48 2026 GMT
Not After : Jun 12 16:00:48 2026 GMT
Subject: CN=e44fe59e1a07cd3f0c91c61dc03d9217d1becdc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:6d:ea:01:e4:32:05:0f:88:19:42:fa:21:
14:a7:11:f8:26:57:b7:e1:1c:46:fb:2e:af:db:0e:
33:04:c8:8b:f7:4a:21:d8:4b:ae:1c:19:f8:f1:f9:
7c:27:61:de:3d:10:6a:ff:18:3a:eb:a6:8a:bf:c9:
d4:ad:16:d7:5a:c5:7d:5b:7b:2a:91:ff:68:ee:88:
60:92:7e:95:0e:1d:e3:cd:8e:d1:6d:05:ef:37:5f:
62:81:41:a9:29:e4:59:27:9c:d1:34:d3:8b:89:ea:
73:b5:6d:9d:81:7e:fb:68:a7:26:5d:91:d0:5c:42:
fc:16:9d:0c:78:26:88:0c:55:cc:dc:60:bd:a1:f6:
af:90:2d:dc:c6:47:2b:36:52:48:2e:6f:8c:c8:3a:
02:f7:f5:dc:82:56:5a:5c:82:f5:bc:d8:02:fb:68:
a6:da:58:8e:e7:96:5e:30:03:35:e4:b8:0c:92:35:
8b:28:32:1a:b5:09:d9:e2:8a:69:db:29:61:5e:1f:
64:9e:fa:49:db:7b:40:32:ab:6e:45:76:e8:ac:78:
79:be:58:69:60:dc:7b:93:a7:cf:2c:75:b5:dc:80:
eb:b0:cf:39:d8:ed:00:96:40:73:ba:0b:cc:f5:f2:
03:12:2f:2d:ca:ea:46:5b:41:8c:76:3c:da:b7:4a:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4F:E5:9E:1A:07:CD:3F:0C:91:C6:1D:C0:3D:92:17:D1:BE:CD:C3
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:56:7d:a3:e0:33:f1:cd:a2:d3:25:77:14:7f:42:e1:ad:a1:
49:6a:c2:9c:74:4a:67:a5:6a:77:b4:e4:db:58:57:2b:41:d4:
33:07:e5:c2:a1:f1:54:39:82:a1:7e:3b:78:80:d9:63:bc:5b:
f5:c1:ba:00:31:5f:dc:6c:6c:85:ea:5c:4b:6b:89:22:c6:d2:
2f:a1:01:a6:77:96:a5:84:dc:f5:92:47:89:f4:87:23:1e:30:
a7:3f:1f:3e:e2:12:b7:55:2d:42:0a:c0:d6:5c:84:f9:b5:ec:
8b:00:98:48:e5:55:0a:e4:84:54:fe:0c:bf:96:cc:cc:f8:4b:
71:10:c2:3a:37:90:a5:99:e2:b2:b1:f8:6a:42:1a:d5:65:9c:
7c:fe:d4:da:32:9b:98:4f:7a:7a:58:ea:2e:39:a3:a8:9d:1d:
fc:12:23:8f:84:df:60:e2:a5:f2:59:63:6b:45:bb:ec:59:4f:
e9:90:25:26:d9:7b:9f:b9:69:43:96:10:41:4a:fd:2c:0b:ac:
bf:bf:fb:d1:43:d7:17:e4:17:36:85:44:3c:bb:0e:38:1d:a3:
5f:d6:dc:4e:c2:07:4f:e6:ea:7a:63:4c:e8:3a:7a:e4:2b:f5:
e1:a3:6b:89:3e:4a:50:eb:04:60:a8:7e:5e:7e:a3:9c:74:07:
9a:55:cc:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:32:52 2026 by rpki-client