Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: s21tzNku55u9NbQCEQyiPBvs4sSM4NBE5PhJjXQyiEY=
Subject key identifier: 29:3A:6B:44:7D:15:70:E6:16:21:E1:F6:B0:66:02:F1:7B:20:F6:85
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019ED3BE1C42EC0F63BA07FD811460AE161F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0CBF
Signing time: Wed 17 Jun 2026 04:01:51 +0000
Manifest this update: Wed 17 Jun 2026 04:01:51 +0000
Manifest next update: Thu 18 Jun 2026 04:01:51 +0000
Files and hashes: 1: GWIPuzYrr1ZkVb6zUh724dGRI1w.roa (hash: 8ZDylGUDk0rJ7fPM3ZJJKDsoUpKFNi+95rGt5nvLIKg=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: ePYlr9jSfiSI/A2EJgn+v9XINGiB4EGEvOM4dnugPec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 04:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:be:1c:42:ec:0f:63:ba:07:fd:81:14:60:ae:16:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Jun 17 04:01:51 2026 GMT
Not After : Jun 18 04:01:51 2026 GMT
Subject: CN=293a6b447d1570e61621e1f6b06602f17b20f685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1f:e0:8e:f3:bf:3a:d8:09:7a:9d:19:15:fb:
27:ca:0e:bb:c9:31:58:d0:95:43:62:0f:bc:89:3e:
a0:1e:a5:23:c2:ef:29:0c:56:47:99:18:1d:c2:2a:
59:48:a8:f8:11:6c:fc:e3:09:72:ca:9c:65:fc:fc:
9a:fa:9b:04:7f:c5:84:5d:4e:c4:c5:30:6c:99:37:
c9:21:2a:c0:c7:fa:67:cc:1a:08:c4:e4:30:a7:b7:
90:8d:26:b7:42:8e:9e:44:dc:02:df:03:2a:f1:c4:
91:7f:d2:24:8f:24:9e:60:22:c1:8a:a4:6e:fa:45:
e2:cd:f2:cd:6a:3d:17:6a:7c:97:82:be:8d:9b:d9:
d2:ba:48:ad:fa:20:50:89:cb:96:c7:c5:b1:8b:48:
91:3b:ba:f6:57:3a:a9:4d:b4:50:a7:55:5f:47:57:
05:3f:fc:98:27:14:29:54:28:a4:6e:74:6f:85:8c:
ba:2a:3c:73:ea:51:76:8f:f0:fb:8d:ce:ce:f2:a0:
d4:6e:ef:0d:14:97:32:7b:f9:33:65:4d:c1:7e:0e:
e8:85:fc:38:3c:36:58:09:bc:98:8f:a4:6e:d8:dc:
74:a2:4d:ec:37:ec:ab:c2:ea:fa:c2:ab:62:e8:f5:
34:7f:ca:14:87:f2:c2:a9:8e:56:33:63:29:aa:dd:
47:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3A:6B:44:7D:15:70:E6:16:21:E1:F6:B0:66:02:F1:7B:20:F6:85
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:85:83:43:0e:5e:cc:41:4a:49:5e:a2:6b:9a:04:3e:33:d7:
d6:65:08:22:58:8a:50:d3:00:c8:95:f8:5a:86:d3:f8:48:72:
df:5d:1f:d3:e5:f6:8c:80:f0:5c:66:50:3c:9b:cd:3f:bd:16:
ad:ef:b8:31:43:de:06:d5:20:b5:97:67:37:79:3b:db:85:da:
22:cc:ea:7a:e7:c2:3a:04:8e:b2:12:72:e8:0b:32:84:09:58:
a2:4a:a7:99:8f:aa:72:c8:13:f2:fe:9d:ab:68:12:d7:eb:6f:
04:94:49:cf:07:b0:f0:b5:cf:bf:ee:f4:e2:89:f1:cd:f6:cd:
99:45:db:ec:ed:ad:a3:70:86:65:50:64:af:b3:d7:13:36:a8:
97:cf:0f:e0:17:4a:30:e0:60:7a:c9:81:82:b6:02:68:9f:53:
68:32:5a:2d:1f:3f:d9:b9:c7:80:91:6b:35:40:5d:dc:06:45:
36:0e:5d:ae:87:be:2d:10:b2:2e:af:b2:ce:47:71:1e:0a:4e:
c7:31:25:63:18:6f:43:98:31:85:2e:b0:21:de:52:59:6c:f0:
fe:08:d0:31:be:21:e9:7c:60:05:01:c4:4a:63:6c:0e:8c:dc:
8b:96:8a:29:1d:55:89:3f:6f:0c:47:b5:b4:7f:31:85:51:2c:
d1:49:48:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:00:32 2026 by rpki-client