Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: IFt4dwS0J6fMdfk0N9Bd1Y5qZ6Oxd0Jub2dToqI9dYM=
Subject key identifier: 05:66:E7:3C:39:A7:01:2B:ED:52:69:2A:65:9E:42:E9:92:97:FB:11
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019D98F44DB4FDF8BBB4B214DFA49BFBD343
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0C1C
Signing time: Fri 17 Apr 2026 01:00:40 +0000
Manifest this update: Fri 17 Apr 2026 01:00:40 +0000
Manifest next update: Sat 18 Apr 2026 01:00:40 +0000
Files and hashes: 1: GWIPuzYrr1ZkVb6zUh724dGRI1w.roa (hash: 8ZDylGUDk0rJ7fPM3ZJJKDsoUpKFNi+95rGt5nvLIKg=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: kd9U35+5FFBYIscZ4tmTXyjXJ83nqLdLSakrGQJE6uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:4d:b4:fd:f8:bb:b4:b2:14:df:a4:9b:fb:d3:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Apr 17 01:00:40 2026 GMT
Not After : Apr 18 01:00:40 2026 GMT
Subject: CN=0566e73c39a7012bed52692a659e42e99297fb11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c6:22:f5:91:fa:1c:77:d0:9a:2a:ce:0b:c7:
1a:f2:be:74:01:41:60:98:b8:0c:4c:0d:89:01:23:
3a:31:5c:27:5a:fe:0f:f1:37:ad:3f:ae:d9:77:50:
83:77:37:24:22:78:de:29:9c:c4:ee:14:3c:43:47:
90:9f:65:d6:5a:e9:e6:88:0e:0f:be:77:aa:8d:6f:
d8:b9:b2:c8:c2:71:52:9f:9d:67:d2:0e:e8:a0:47:
e6:c0:30:d9:29:ab:56:20:c7:39:aa:de:31:07:9a:
b8:e8:44:f9:24:36:9f:7e:46:de:92:37:42:90:b4:
aa:7e:05:c8:e8:e0:66:42:17:21:5c:af:5a:d7:e2:
e2:8f:99:a4:12:14:f8:cd:fd:fb:eb:aa:ba:67:13:
4a:a4:9e:9f:6f:d5:42:95:c7:81:76:51:44:aa:24:
ba:9d:81:b8:47:1c:8a:c5:d5:10:3a:b8:c4:6f:49:
d4:ad:96:53:88:cb:a1:c3:1b:21:b8:90:6b:d9:c6:
2d:f8:23:56:e4:1d:a7:8f:a6:7e:e1:1e:5a:ad:22:
c4:ad:57:8f:4b:11:75:f3:e1:a3:df:84:d9:b4:54:
5c:6d:43:cf:c5:9b:95:97:92:3e:e6:4d:f7:6e:ad:
bd:f7:4d:fc:78:c2:ff:bd:87:ce:fa:14:aa:d3:35:
5e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:66:E7:3C:39:A7:01:2B:ED:52:69:2A:65:9E:42:E9:92:97:FB:11
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:b9:07:b7:32:94:54:c7:fc:28:be:74:6c:af:35:ee:ff:3e:
e5:6f:94:18:96:0a:93:a0:56:79:33:46:5f:29:39:0b:2b:23:
45:79:24:36:9d:ff:8b:7d:5f:fd:4a:6b:ee:d7:10:2f:d0:84:
87:61:aa:f3:84:c9:52:ac:29:2f:d6:10:8f:56:2f:19:c2:8d:
d3:33:6f:a1:35:0f:cd:18:14:15:1f:a7:b3:ed:85:c2:2f:30:
22:c1:42:86:96:e9:86:19:76:ae:bd:12:2e:a6:05:12:8d:d5:
51:71:06:e1:7b:6f:ef:aa:42:8f:5a:45:d8:72:43:a2:0b:ea:
c5:d6:63:e3:a9:56:3a:c3:c3:37:6c:ab:62:d8:d9:3c:cd:5d:
25:18:09:91:cc:ec:22:2e:3c:4f:f2:17:a4:a2:32:f3:78:76:
d5:29:ee:43:e5:f4:67:c7:e0:01:63:2f:78:42:66:3a:eb:7b:
bb:f3:9e:55:a2:4f:1e:a1:3b:ec:8f:c9:1e:5f:8f:aa:c1:f6:
81:68:db:10:6c:d1:89:a9:21:3b:33:2c:56:3c:2b:1d:de:54:
0a:d5:89:77:4d:23:9d:15:e5:d5:70:ff:33:fe:b8:1e:6b:7d:
a1:5d:53:72:77:08:27:84:30:fa:d4:6e:30:c4:b0:e4:59:8d:
c0:6d:9d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:58:25 2026 by rpki-client