Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: 4hijFepvUb8KU9j9S5xu/FVO2gp6PveMq3+oQdwy1Tg=
Subject key identifier: D3:E0:D1:82:2D:AF:94:CC:67:CF:29:5D:FE:FA:A7:3A:54:44:37:2E
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019EC5261CD5BE7764D8825D152F28A42EFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1967
Signing time: Sun 14 Jun 2026 08:01:09 +0000
Manifest this update: Sun 14 Jun 2026 08:01:09 +0000
Manifest next update: Mon 15 Jun 2026 08:01:09 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: F3a8fdZ3QkLg2nFOwuOmRA2L8N+jai3iug1IhQBjmIg=)
2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c5:26:1c:d5:be:77:64:d8:82:5d:15:2f:28:a4:2e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Jun 14 08:01:09 2026 GMT
Not After : Jun 15 08:01:09 2026 GMT
Subject: CN=d3e0d1822daf94cc67cf295dfefaa73a5444372e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:3a:d9:fa:0b:55:c5:d4:99:3f:df:d3:74:
65:89:85:1b:14:89:7b:c3:63:a9:e5:a5:b1:0a:2a:
9e:5b:ab:49:f7:a3:51:69:27:25:6d:61:ec:73:09:
6c:c0:28:0e:38:1b:df:ec:c8:d4:71:ae:2a:ce:50:
3e:4e:ef:52:82:f7:e3:d0:c9:e4:54:b7:86:6c:45:
45:61:aa:60:4f:66:bd:90:fc:2e:66:3e:d3:98:58:
9f:0e:55:60:44:86:10:1a:99:af:00:49:aa:27:93:
1e:b7:e0:7b:74:dd:70:91:0a:9e:85:07:6c:20:ee:
58:23:da:66:0e:51:24:a4:b5:b2:f4:e7:45:37:c7:
29:45:92:db:f0:ab:91:3c:bb:d1:1f:97:91:14:8f:
02:c1:1e:ca:1a:6f:4e:49:54:43:5a:cb:36:de:0f:
a7:d3:b1:bb:d5:40:98:0c:0a:ba:0c:31:a0:1e:5a:
30:2f:75:f0:a0:2b:3e:1c:43:c4:9c:4f:78:83:69:
f2:18:70:bf:13:67:c6:d8:48:a7:61:86:97:16:cf:
fd:e4:92:45:f3:54:43:0f:30:38:bc:c8:5a:6b:89:
c9:f0:13:0b:86:ff:75:52:9f:4a:06:c7:7d:b1:ec:
7b:bb:bf:93:60:04:e4:38:7f:5e:8d:f6:75:6e:d1:
26:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E0:D1:82:2D:AF:94:CC:67:CF:29:5D:FE:FA:A7:3A:54:44:37:2E
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:7a:e6:b3:37:3e:67:37:94:dd:d6:0d:ec:23:8f:32:2c:86:
cd:62:42:34:cb:81:96:b6:e9:b8:cc:c8:d4:62:8c:2f:23:de:
53:3b:7c:04:9f:fb:91:3f:27:20:aa:14:36:30:6b:42:22:19:
f6:04:59:d2:11:d7:fd:f5:da:87:5c:19:36:6a:bf:7a:14:8b:
ee:a2:07:80:13:da:58:36:57:c5:a4:5b:76:dd:f3:4d:a4:09:
96:09:56:f6:c5:de:46:fe:8d:84:bc:72:21:69:12:d1:b4:ea:
44:a7:f5:13:a8:b4:d1:84:5f:83:e1:9d:2b:a1:00:1e:6b:fb:
96:fa:3f:f9:7a:47:66:c9:11:69:72:65:0b:ac:52:29:23:76:
bb:0b:53:55:ac:0f:52:6e:86:55:41:1c:bf:72:c4:ec:f1:9d:
71:98:0e:3f:99:37:f9:aa:0d:45:a9:a6:13:41:89:15:e8:c0:
83:29:4a:8c:34:6f:37:fe:f7:eb:61:5a:5c:e0:81:b1:b0:4b:
97:79:7a:49:b4:59:3c:45:33:d6:54:86:7f:0e:c7:22:5e:29:
00:6c:ef:d6:e5:93:43:05:0a:23:8d:a7:70:68:30:59:ba:23:
65:22:94:80:82:21:84:93:32:de:49:52:d0:b7:50:b0:1a:47:
32:57:0f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 14:05:16 2026 by rpki-client