Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json)
Hash identifier: xi5611Q44T5WmZkc8arOKoRm/SY0PnqIyBxO5DEcRoc=
Subject key identifier: 00:D9:DC:FF:9E:ED:A4:DA:74:83:EA:DA:16:23:B9:32:27:3F:87:66
Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Certificate serial: 019EB9580309AD8EC2860232A7A75EB502C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
Manifest number: 05A7
Signing time: Fri 12 Jun 2026 01:00:13 +0000
Manifest this update: Fri 12 Jun 2026 01:00:13 +0000
Manifest next update: Sat 13 Jun 2026 01:00:13 +0000
Files and hashes: 1: A2yTP0lhhFqNva3nkV1odyS6nwE.roa (hash: hsckG++ZXCzFReA5qOo98hpc0d00fMoMGiw+xttmqVs=)
2: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: qhlFtfZa8r4w0mxZ8y6r0YkN2eFDwekDNeqwwdqq5vg=)
3: uBcATutWZCzBK8D7bBIKL9bxPlQ.roa (hash: JIPy3fI3722I5dmkOB2XD2F/6xuJic82XKrmU7yYHNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 01:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:03:09:ad:8e:c2:86:02:32:a7:a7:5e:b5:02:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Validity
Not Before: Jun 12 01:00:13 2026 GMT
Not After : Jun 13 01:00:13 2026 GMT
Subject: CN=00d9dcff9eeda4da7483eada1623b932273f8766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:93:f7:2c:42:2e:53:8e:1e:85:e6:88:07:
17:99:91:b3:32:76:dd:eb:d4:48:1e:3c:04:19:5c:
b5:84:d4:aa:f9:f3:4e:f9:a0:f1:76:72:26:2f:96:
03:ce:62:77:60:29:6c:6f:39:91:c3:7b:19:ba:36:
83:7d:2b:0f:dd:f4:c1:ed:da:db:00:09:46:9c:38:
be:0c:fc:e7:ef:d0:53:b3:55:30:c5:4a:96:eb:0a:
f6:47:d9:cc:5a:aa:9a:c2:61:f4:00:be:b0:f7:22:
f9:c7:33:af:fd:93:ec:e6:ac:64:97:85:9b:11:2b:
75:eb:27:6c:4a:1a:8c:20:a3:8a:af:40:ca:4a:b6:
52:ff:44:8a:ba:81:af:ae:0e:ad:17:a5:c8:c6:fd:
68:39:9d:2b:f0:dd:20:8b:52:98:e8:c6:28:c3:d3:
18:2a:47:0f:c6:73:d7:d6:a2:4d:2d:9d:06:6a:05:
6c:c0:6f:10:c4:1f:29:b1:87:1a:fc:c3:9b:67:4c:
df:02:e6:93:8c:ae:c2:60:fc:bd:f6:2b:9b:df:f5:
9c:f1:b4:52:c5:20:60:44:6e:82:6e:2c:81:54:53:
a0:e9:fe:7d:2e:8f:67:9c:7e:96:6b:31:96:eb:e7:
80:c2:24:76:2d:83:85:e0:34:9c:0d:e1:97:df:7e:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D9:DC:FF:9E:ED:A4:DA:74:83:EA:DA:16:23:B9:32:27:3F:87:66
X509v3 Authority Key Identifier:
keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:94:1f:6a:e9:a2:da:48:24:23:cb:b1:e3:cf:61:b9:e4:6a:
00:5f:f2:99:6a:61:6d:9f:11:8e:db:28:fc:03:87:bd:68:20:
73:5f:04:21:4c:62:eb:49:63:03:e3:39:81:60:ae:69:89:5a:
6e:f0:e4:d9:73:10:8a:6b:96:11:2b:f0:b9:fb:68:e1:8a:25:
e9:4b:9d:af:bf:c8:79:82:ad:cd:ea:2e:05:57:64:ad:10:61:
0b:4e:11:0e:76:44:21:58:67:d0:26:6b:e8:e8:1f:4d:a7:da:
db:ea:65:8c:d8:f6:98:c3:08:91:45:2d:5a:60:9f:04:2d:d0:
b4:66:20:2e:8e:a3:59:d4:71:98:39:67:c0:60:35:e2:cc:33:
25:8e:08:e3:2c:e6:e0:59:5c:a0:24:07:0e:cd:c9:ef:4e:5a:
1e:43:9f:62:c2:cf:49:73:07:45:c2:83:96:c0:67:31:94:b4:
0a:b6:68:3c:46:c3:33:90:dd:e8:95:71:bd:fa:60:1e:03:57:
2e:0a:0e:0b:c8:0c:3e:88:28:5e:d3:f6:f1:91:b0:25:df:b1:
5d:a0:d0:82:a6:61:2c:f0:35:e6:8c:9d:b6:94:c9:f4:8e:44:
26:83:0c:3e:95:4b:c7:24:83:cb:87:37:01:45:87:c9:66:71:
a1:9f:43:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:54:51 2026 by rpki-client