Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: PW6WBF2at7NCrZtgFCtHt2VRsO5VfmbJ6BjzTGw7luc=
Subject key identifier: 55:3F:63:68:3B:6B:05:3C:E7:25:CD:CA:0E:9A:05:45:1C:45:07:33
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019EC0DBA20F507A163A6264E5E3F5D5F6B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 10DD
Signing time: Sat 13 Jun 2026 12:01:19 +0000
Manifest this update: Sat 13 Jun 2026 12:01:19 +0000
Manifest next update: Sun 14 Jun 2026 12:01:19 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: tKmDhDj0mFBh68qhv9gAeiypiSP9O6b+n/anBuTjWnA=)
2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:a2:0f:50:7a:16:3a:62:64:e5:e3:f5:d5:f6:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Jun 13 12:01:19 2026 GMT
Not After : Jun 14 12:01:19 2026 GMT
Subject: CN=553f63683b6b053ce725cdca0e9a05451c450733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:30:84:f7:d1:5f:26:a1:e1:15:93:da:b2:d6:
74:88:a5:96:4b:1c:3e:d3:15:ae:86:6c:e1:46:da:
de:e6:bb:7a:f3:27:69:f5:bc:31:5e:21:4d:50:a8:
29:06:31:ae:47:50:40:76:d4:95:4b:ef:df:59:41:
5e:8b:7f:19:ef:e2:37:7c:11:9d:c6:a1:2b:a6:86:
f1:48:c1:a1:4f:cc:18:df:06:32:1e:3d:31:27:16:
cd:83:f6:9b:2f:c0:73:94:59:57:e5:75:9b:78:dd:
35:b1:85:68:86:83:09:50:0f:e7:16:39:ae:01:8b:
6a:d2:5d:05:a6:f6:ac:6d:ab:55:c3:06:9d:79:d7:
cb:82:e3:a6:ca:f7:93:ff:e8:3b:fc:ad:ed:09:d3:
65:1f:4a:2a:2d:f0:c9:16:c8:52:1a:4c:2e:e1:49:
e6:19:a2:5b:e3:82:70:cc:94:38:f4:e0:d9:d2:c8:
03:b7:38:7a:89:61:a2:20:19:6f:9f:ac:c9:77:44:
db:29:4d:5e:8e:68:a0:83:bd:ee:d6:d7:7a:c0:5c:
17:b6:c9:0d:9b:9c:8d:6d:b0:b8:7a:27:34:43:7b:
0c:0c:3b:bc:52:93:1b:f4:70:08:f0:e4:3b:08:f7:
8d:0a:76:09:0e:e9:38:56:c6:82:0f:4e:bc:7c:dc:
cb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3F:63:68:3B:6B:05:3C:E7:25:CD:CA:0E:9A:05:45:1C:45:07:33
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:63:b7:0e:88:20:c1:3d:5e:8a:80:25:a7:b8:4f:27:d3:bd:
03:7d:91:14:58:fd:6d:e5:32:2b:4d:0c:59:09:94:36:62:3a:
83:65:4d:1a:c7:a2:76:7b:84:c0:b4:1a:6c:71:06:6f:1c:77:
af:e8:77:67:25:dc:41:55:95:cc:0b:3e:8c:cd:fe:2e:28:5a:
45:3f:c5:a2:b3:e4:2c:eb:db:bf:40:af:e4:dc:67:d2:84:75:
54:2a:af:6a:e5:ba:c1:09:ab:b3:98:b9:04:ff:7a:ab:ac:f5:
cf:cc:bd:59:d4:a7:be:41:12:d1:5d:0e:d8:31:97:67:cd:de:
7e:b7:14:5b:d3:61:7b:c6:07:51:91:91:54:95:85:15:c5:71:
be:37:e1:3e:d3:a1:56:f4:fe:59:eb:16:a0:ac:cd:fe:3c:b9:
00:c0:a8:aa:ab:e6:25:8c:eb:6d:32:82:ed:29:1f:91:f5:4c:
48:98:39:7d:78:60:53:3a:1d:9c:5e:b3:55:b6:bd:a9:29:c5:
b4:0f:4f:bf:89:78:47:f9:b3:35:08:ed:db:4d:6c:f3:b7:58:
60:ce:82:74:ad:74:82:62:a8:1d:ef:f7:f1:2c:37:29:63:cf:
68:3d:0c:a1:a5:85:fa:c9:99:36:a3:c7:da:f7:2c:88:9f:06:
e6:43:53:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:44:48 2026 by rpki-client