Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: W/F9RbQmFpLI0CjmsBJNggC3BlHwYZfviNPt+EAjbOw=
Subject key identifier: 13:79:76:E0:25:05:99:BE:66:A4:CC:49:D1:55:62:46:3C:88:AC:82
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 019E21367A0D7AA3DF47814AE72D3C2DDBEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 132C
Signing time: Wed 13 May 2026 12:01:18 +0000
Manifest this update: Wed 13 May 2026 12:01:18 +0000
Manifest next update: Thu 14 May 2026 12:01:18 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: kEPrteUS4XBrLLND7w3ItmKG4Cf6eofiZD0MeYPUYcs=)
2: Wsump-ruMTHeCIUMQYq9YHizRHM.roa (hash: PRDR807Wy2QehMf95nyisTATR9YQb1obROcnB9juLnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 12:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:36:7a:0d:7a:a3:df:47:81:4a:e7:2d:3c:2d:db:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: May 13 12:01:18 2026 GMT
Not After : May 14 12:01:18 2026 GMT
Subject: CN=137976e0250599be66a4cc49d15562463c88ac82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4c:cb:83:82:8b:9b:03:e6:42:f7:e8:ea:ee:
a2:c2:60:6a:78:10:08:08:46:dc:30:90:56:5a:1f:
c7:95:94:5a:18:74:fa:24:ca:50:51:0e:bd:0c:18:
f0:f9:4a:27:af:46:9d:b4:f1:98:cf:c7:29:8e:f3:
7b:33:ae:77:86:fd:84:13:75:ac:e1:ea:bb:da:96:
c3:fd:66:42:1f:fc:31:44:cd:bd:07:dc:db:55:a6:
97:f3:cf:47:f4:3d:09:89:85:41:f0:e3:eb:f1:8f:
18:fd:68:0e:30:76:d1:38:04:e5:2c:7c:7e:03:ea:
da:c6:d4:19:dc:80:1f:e1:84:cc:17:ca:13:1f:4a:
48:b1:fb:2f:08:36:b2:50:86:6e:5a:fc:5d:8b:45:
c4:9f:bc:e4:45:b1:48:0a:55:10:aa:63:df:e5:79:
f5:89:8d:8b:d3:2c:3f:8d:8d:69:56:9c:46:41:c2:
b0:ea:e2:71:92:0d:fa:d4:10:c7:3d:39:64:d7:8d:
29:a6:49:a3:77:2d:0d:a5:49:73:1b:15:96:a0:7a:
7d:fe:70:3c:22:b3:e8:00:9c:c0:d5:01:e9:ba:27:
02:90:ba:2d:fc:c0:53:da:25:a0:77:87:25:5f:eb:
b0:04:45:ef:9c:4d:07:6b:22:4d:1f:c5:0d:f7:f5:
e9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:76:E0:25:05:99:BE:66:A4:CC:49:D1:55:62:46:3C:88:AC:82
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:30:eb:6b:88:64:2f:ac:00:03:97:ae:00:f3:4c:4c:40:ea:
d7:bc:b3:ed:e7:93:ab:3b:c1:83:ed:d2:80:25:6f:7d:88:50:
ee:28:1f:c5:23:ca:8a:f4:9a:66:f0:32:7f:74:f6:1b:96:2c:
bb:b6:4a:c0:4f:71:05:d5:e9:99:33:e3:ee:d8:28:d8:29:9a:
fa:2b:41:89:1a:25:a2:86:91:48:dc:3d:01:41:31:18:db:2e:
fe:55:a2:a8:95:a0:e5:07:0d:47:d9:fd:03:96:63:67:51:b5:
ac:a6:e2:c7:79:fd:e3:24:69:16:5e:de:d2:5d:f1:06:6f:24:
6f:8e:77:c0:48:ac:11:77:0f:72:04:8c:88:b1:11:9a:12:00:
d7:57:41:fe:8c:a4:24:d1:a6:50:03:73:ec:8d:89:34:86:16:
cd:39:43:ff:e1:c3:fe:75:d0:cd:62:a5:1a:80:31:8d:2e:52:
cb:70:fc:18:2b:ed:fa:6e:40:76:7c:c5:a9:fa:29:08:db:50:
17:4c:29:97:2b:2e:50:05:b9:86:5f:e9:b4:90:12:12:9a:fe:
d8:17:59:a7:42:f0:de:94:76:e5:77:79:4d:73:46:6b:4b:7a:
76:ec:41:25:08:14:a9:51:20:2d:e3:d0:70:a6:06:3a:55:27:
c7:c4:ae:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:48:35 2026 by rpki-client