Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: dyr7G6pluYADxiQDuWRnwOQEAnrlS8eNKGiuNImTZ1M=
Subject key identifier: E3:CF:A1:C0:04:AA:FB:B2:D0:7A:45:7D:2D:BA:9B:71:88:DA:09:82
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019EB9C6707837C719AE5F31C32D26F1E414
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 18E9
Signing time: Fri 12 Jun 2026 03:00:50 +0000
Manifest this update: Fri 12 Jun 2026 03:00:50 +0000
Manifest next update: Sat 13 Jun 2026 03:00:50 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: hjaHwPAlTXwX/dlIpY4pxeO0w713vVg4LV44SLTVPp0=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:70:78:37:c7:19:ae:5f:31:c3:2d:26:f1:e4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Jun 12 03:00:50 2026 GMT
Not After : Jun 13 03:00:50 2026 GMT
Subject: CN=e3cfa1c004aafbb2d07a457d2dba9b7188da0982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:88:35:83:73:69:3a:7e:a1:42:5e:79:05:
c3:2c:c3:2d:52:03:c6:d7:dd:1c:33:ca:79:c2:81:
bc:b7:5a:2a:c8:fd:3c:9e:48:7b:d7:a1:93:ab:2b:
4e:f5:69:c0:11:dd:81:77:97:c5:d1:86:8a:49:46:
ed:61:05:99:80:31:3a:72:b0:21:0e:0c:a9:61:b3:
32:58:41:b4:47:3b:71:f4:61:d2:d8:68:ca:85:91:
a0:3a:d7:aa:c3:c8:fa:f3:e2:b6:29:4f:a2:9d:dc:
55:4b:ff:57:31:e3:6e:6d:e8:2b:43:10:cc:67:e7:
6a:41:6c:cf:5d:14:1b:64:d1:b8:98:1d:07:59:3a:
3f:df:3a:50:86:76:b7:a9:cb:69:a0:af:03:e1:45:
be:76:d6:4b:e2:f5:bb:91:5e:f5:d3:6d:dd:93:e7:
b6:94:71:a0:28:cf:6c:09:7a:99:ca:b3:60:76:1f:
03:53:eb:a9:50:2e:6f:15:99:e6:56:12:b8:91:bb:
1d:04:73:da:ab:72:dc:f4:13:50:c1:0a:a2:a6:f3:
d1:3e:05:2f:32:98:5d:5b:5a:dc:bd:13:a2:2e:57:
ea:f6:53:8e:d8:81:1a:bc:b4:21:79:51:aa:da:c8:
34:8b:e7:56:56:6c:25:54:ff:cd:4e:3b:aa:9a:bb:
53:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CF:A1:C0:04:AA:FB:B2:D0:7A:45:7D:2D:BA:9B:71:88:DA:09:82
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:10:f7:7f:9c:45:6c:1a:7a:8b:5f:29:25:0f:98:e9:fc:f4:
00:af:1b:6d:dc:d1:ee:72:25:5d:80:e6:b2:07:e4:a9:70:5e:
78:ec:a4:ac:3f:a5:df:16:33:ae:10:ad:e8:d8:18:40:b7:4c:
0c:52:76:ef:76:be:b5:52:21:8e:21:c7:73:30:67:70:52:bb:
9c:9f:82:95:d9:df:a2:ed:c8:6c:1a:87:ed:4c:34:d8:1a:29:
03:47:45:ae:7d:31:7c:76:fd:74:c4:00:e7:63:a3:1c:94:81:
8b:3b:3b:fa:ef:83:ab:a2:f2:6d:62:63:d4:d6:df:fb:80:ee:
fc:d0:a3:44:51:67:dd:96:40:8f:31:8e:f5:33:bf:19:ab:d1:
9c:80:01:b6:12:f4:3f:22:14:74:65:3f:5c:d7:df:c0:0c:2a:
40:81:6b:50:33:bc:36:fd:35:d1:bf:f3:59:75:8d:d1:d3:37:
a9:ac:cb:42:65:6f:d1:81:bb:a3:df:ae:6f:ca:d5:02:b5:33:
17:b0:62:75:37:4a:9a:16:27:f0:87:49:84:8f:cc:33:13:e8:
87:83:f3:a8:c8:81:1f:21:1f:d2:04:48:88:af:d8:b2:3e:15:
a0:4a:98:91:0f:e3:a5:14:28:7a:4c:44:6a:78:d7:de:ea:ae:
6d:33:b6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:04:18 2026 by rpki-client