Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: kYPidOzB3iTeMlmdDHW3+SjwKTFxqlrHp404e7q43M0=
Subject key identifier: 38:2D:E7:24:50:5A:B7:34:72:28:DD:24:74:EE:DB:E1:90:99:FA:26
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019CAB6AEDA6F3CEFB6D4E60F7D352ADE96B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0BA1
Signing time: Sun 01 Mar 2026 22:00:37 +0000
Manifest this update: Sun 01 Mar 2026 22:00:37 +0000
Manifest next update: Mon 02 Mar 2026 22:00:37 +0000
Files and hashes: 1: GWIPuzYrr1ZkVb6zUh724dGRI1w.roa (hash: 8ZDylGUDk0rJ7fPM3ZJJKDsoUpKFNi+95rGt5nvLIKg=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: U38nEOLFGmcEzy6RqwxDV9Zc/ZAQUQgIFDyB0tUuAyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:ed:a6:f3:ce:fb:6d:4e:60:f7:d3:52:ad:e9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Mar 1 22:00:37 2026 GMT
Not After : Mar 2 22:00:37 2026 GMT
Subject: CN=382de724505ab7347228dd2474eedbe19099fa26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9b:22:5e:56:d8:89:1e:0f:35:9f:09:31:af:
2d:f2:67:3f:ef:e2:be:15:14:08:43:db:d1:19:fe:
67:41:37:85:6e:f5:32:08:9b:bb:a9:6b:6e:38:1c:
b2:10:0a:0c:b7:70:fd:d5:1d:2f:c1:30:30:27:a3:
07:cc:8c:0b:4d:3a:2b:22:c0:d1:08:51:4e:5a:f7:
48:97:d6:6f:24:a5:9e:d8:92:03:61:d7:e2:48:9a:
a4:92:0b:1c:82:ac:36:f9:bd:1d:1a:53:da:7d:16:
21:8e:bb:4c:f8:31:10:5e:48:d4:79:ee:4f:87:44:
53:7c:60:99:8f:1a:99:05:c5:a4:0b:65:ab:7a:b1:
dd:66:66:b2:93:c2:bd:9c:3f:c8:df:1a:53:f1:66:
45:c7:5a:dc:07:29:65:5c:c0:34:ea:c7:b4:3e:55:
49:7f:3d:7c:b9:8b:0e:e5:bc:cf:5b:7a:9e:63:74:
ee:99:f3:f6:92:37:4e:8a:5b:63:4b:84:5d:5e:ca:
56:5f:71:fe:e9:d8:cf:3b:50:ae:84:bd:f1:39:7b:
82:05:f5:d1:22:2a:93:21:a0:7d:6b:1f:b9:61:98:
56:f9:18:21:27:31:c9:00:13:8e:84:7d:3e:fe:c4:
a2:a8:0d:9c:47:e9:db:de:18:b4:51:f0:c1:ff:49:
d8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2D:E7:24:50:5A:B7:34:72:28:DD:24:74:EE:DB:E1:90:99:FA:26
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:9d:b6:cb:8c:c4:ab:79:a0:28:2c:bc:d1:e7:8e:59:88:80:
e5:0f:1a:56:fd:90:9e:a7:fd:3c:e0:0c:6e:46:0d:0b:6a:b2:
62:b6:4d:68:92:be:17:60:52:25:4a:db:41:b0:51:30:58:29:
ae:fe:1f:5d:5c:af:f4:7b:7e:a3:90:42:d6:43:35:5b:29:59:
db:2b:54:1c:dd:a3:55:02:9e:95:75:76:98:f3:18:ae:31:a7:
61:d0:cf:97:d4:15:44:1c:15:83:12:5d:99:cf:5f:37:e0:e4:
30:cc:eb:52:c6:d0:30:4d:41:76:4a:9c:dd:ed:a2:22:f6:6a:
0d:45:b6:15:52:57:b3:7e:28:9e:71:e6:35:ff:38:2e:79:63:
68:f9:af:98:91:5b:2b:94:f1:e1:69:bc:6a:6a:1f:0c:98:2a:
0f:3e:a4:1a:5c:69:78:ae:73:ac:00:ed:b2:ba:b0:c9:dc:cf:
2e:db:dc:12:19:38:a7:76:c6:55:80:d4:d1:30:c2:2b:8b:4d:
e9:d1:26:dc:65:ca:76:ac:40:cd:ca:e6:b5:2c:fc:34:4b:20:
d8:f5:3b:39:82:32:40:0b:10:43:1a:08:3a:2d:8e:17:a4:4a:
b5:84:5c:27:24:a6:e5:c3:03:d8:92:ed:65:ce:e5:2b:29:8f:
c1:ff:06:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrau2m8877bU5g99NSrelrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZWM3MWRjM2Q2OGNkZThmOTA3N2QzYWY2Njc1MWMyOWZj
ZWVhNGMwHhcNMjYwMzAxMjIwMDM3WhcNMjYwMzAyMjIwMDM3WjAzMTEwLwYDVQQD
EygzODJkZTcyNDUwNWFiNzM0NzIyOGRkMjQ3NGVlZGJlMTkwOTlmYTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JsiXlbYiR4PNZ8JMa8t8mc/7+K+
FRQIQ9vRGf5nQTeFbvUyCJu7qWtuOByyEAoMt3D91R0vwTAwJ6MHzIwLTTorIsDR
CFFOWvdIl9ZvJKWe2JIDYdfiSJqkkgscgqw2+b0dGlPafRYhjrtM+DEQXkjUee5P
h0RTfGCZjxqZBcWkC2WrerHdZmayk8K9nD/I3xpT8WZFx1rcByllXMA06se0PlVJ
fz18uYsO5bzPW3qeY3TumfP2kjdOiltjS4RdXspWX3H+6djPO1CuhL3xOXuCBfXR
IiqTIaB9ax+5YZhW+RghJzHJABOOhH0+/sSiqA2cR+nb3hi0UfDB/0nYKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDgt5yRQWrc0cijdJHTu2+GQmfomMB8GA1UdIwQY
MBaAFDnscdw9aM3o+Qd9OvZnUcKfzupMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8xYmZkZjctYTE5Zi00MThlLTg5Yzct
ZGIzZjIyNzA1ZGQ2LzEvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8xYmZkZjctYTE5Zi00MThlLTg5YzctZGIzZjIyNzA1ZGQ2
LzEvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf522y4zE
q3mgKCy80eeOWYiA5Q8aVv2Qnqf9POAMbkYNC2qyYrZNaJK+F2BSJUrbQbBRMFgp
rv4fXVyv9Ht+o5BC1kM1WylZ2ytUHN2jVQKelXV2mPMYrjGnYdDPl9QVRBwVgxJd
mc9fN+DkMMzrUsbQME1Bdkqc3e2iIvZqDUW2FVJXs34onnHmNf84LnljaPmvmJFb
K5Tx4Wm8amofDJgqDz6kGlxpeK5zrADtsrqwydzPLtvcEhk4p3bGVYDU0TDCK4tN
6dEm3GXKdqxAzcrmtSz8NEsg2PU7OYIyQAsQQxoIOi2OF6RKtYRcJySm5cMD2JLt
Zc7lKymPwf8GdA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:06 2026 by rpki-client