Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: t9orCrkY106coTXUHZD1H7XrR2Hz/bqGkcuzE/nrcJU=
Subject key identifier: 99:E4:21:F7:33:0C:61:2C:CB:D4:E1:6D:CE:15:06:B8:58:2A:FD:91
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019EC1127B7A28BFB8A6DC7CC269FD2611AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 121F
Signing time: Sat 13 Jun 2026 13:01:14 +0000
Manifest this update: Sat 13 Jun 2026 13:01:14 +0000
Manifest next update: Sun 14 Jun 2026 13:01:14 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: HXotKI9ifVLBY+KjyJQ4U1Uc/Zu6NGiH1m7Mu9gDrNc=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:7b:7a:28:bf:b8:a6:dc:7c:c2:69:fd:26:11:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jun 13 13:01:14 2026 GMT
Not After : Jun 14 13:01:14 2026 GMT
Subject: CN=99e421f7330c612ccbd4e16dce1506b8582afd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:84:bf:13:13:78:36:f2:9e:2f:a0:61:39:b4:
0c:68:aa:d2:fa:35:a7:53:05:1a:e7:4e:9d:1f:b5:
00:ad:07:3d:f5:26:ec:da:56:90:bc:57:dc:64:88:
c4:9c:df:8a:b1:ca:15:9f:31:d7:21:2a:ba:6b:61:
0d:38:5a:43:10:72:4a:83:f3:b6:9b:ff:2d:c4:bf:
7a:83:2c:17:c2:41:06:50:73:60:c6:f7:98:76:cd:
a3:30:b1:1f:88:84:b5:67:1d:48:84:36:78:72:6c:
61:ce:dd:06:92:96:e0:6f:5e:bd:94:09:59:a1:74:
14:94:ac:e3:e5:35:50:da:58:ed:65:ac:d3:df:8e:
82:58:f9:54:c2:7e:86:85:9d:04:d3:0e:45:6a:83:
59:6d:11:70:33:47:55:6e:eb:17:44:24:3c:94:97:
f0:df:f4:cf:ae:a8:1f:a4:7e:17:87:af:53:95:a6:
6f:37:93:cd:58:bf:30:a2:1c:7d:9d:5f:e8:28:7a:
b4:a1:b3:84:f9:fc:ae:32:74:33:8e:ff:7c:3b:11:
51:54:6c:00:2e:97:09:06:ec:a9:2e:8c:74:63:29:
df:39:13:d0:3e:99:da:80:f9:16:c8:75:64:c4:df:
e1:0b:40:8b:b2:75:49:c2:4a:f5:5a:4b:85:f7:c3:
5b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E4:21:F7:33:0C:61:2C:CB:D4:E1:6D:CE:15:06:B8:58:2A:FD:91
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:02:69:ce:3f:14:5f:8b:ef:50:7c:55:a2:d8:04:1d:a1:25:
f1:4d:dc:cb:24:2f:fb:da:ac:20:7a:59:50:72:eb:98:c0:e7:
39:a5:b7:f0:46:92:71:bc:7a:89:5e:a7:12:97:6e:d8:18:a2:
55:17:07:5e:e7:b9:dd:34:f5:d1:9d:f2:cf:d7:2b:1f:54:e6:
49:fc:a9:76:f5:7e:2a:05:06:9d:eb:2a:7c:4b:f3:12:28:59:
06:2f:b6:33:47:ec:64:f1:a3:83:af:a1:d5:24:9a:de:88:d5:
70:8f:3a:7c:ee:7a:08:c0:f3:04:2a:e6:3c:68:a0:03:a4:27:
4c:b4:9f:71:94:6c:84:85:58:a4:ca:17:0c:21:74:27:24:e8:
9b:74:df:c0:59:73:b6:9d:a8:c0:48:df:22:5c:c4:d9:b7:5f:
e5:30:ff:19:d4:99:a4:0c:7d:a0:89:19:04:ee:76:c0:fe:de:
8d:38:b6:49:51:52:d5:32:8e:0d:f4:67:c2:dd:27:bc:ff:37:
e9:7c:ce:80:76:48:0f:44:9d:f3:69:6f:24:54:53:25:24:c1:
f4:fc:d6:61:28:bf:4a:12:77:2a:e0:07:01:33:e9:79:8b:37:
2a:ab:f9:07:d4:29:eb:6e:4c:a0:2f:eb:8f:6a:7c:71:21:ad:
f6:46:49:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7BEnt6KL+4ptx8wmn9JhGuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOTM2ZDJmMjk4ZTZjZmQ1NjYwNDU3M2QxZWY5ZTBlODI5
OWI1MjkwHhcNMjYwNjEzMTMwMTE0WhcNMjYwNjE0MTMwMTE0WjAzMTEwLwYDVQQD
Eyg5OWU0MjFmNzMzMGM2MTJjY2JkNGUxNmRjZTE1MDZiODU4MmFmZDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIS/ExN4NvKeL6BhObQMaKrS+jWn
UwUa506dH7UArQc99Sbs2laQvFfcZIjEnN+KscoVnzHXISq6a2ENOFpDEHJKg/O2
m/8txL96gywXwkEGUHNgxveYds2jMLEfiIS1Zx1IhDZ4cmxhzt0Gkpbgb169lAlZ
oXQUlKzj5TVQ2ljtZazT346CWPlUwn6GhZ0E0w5FaoNZbRFwM0dVbusXRCQ8lJfw
3/TPrqgfpH4Xh69TlaZvN5PNWL8wohx9nV/oKHq0obOE+fyuMnQzjv98OxFRVGwA
LpcJBuypLox0YynfORPQPpnagPkWyHVkxN/hC0CLsnVJwkr1WkuF98NbMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJnkIfczDGEsy9Thbc4VBrhYKv2RMB8GA1UdIwQY
MBaAFDqTbS8pjmz9VmBFc9Hvng6CmbUpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQt
YjVmOGVjMGFhZDdjLzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQtYjVmOGVjMGFhZDdj
LzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtwJpzj8U
X4vvUHxVotgEHaEl8U3cyyQv+9qsIHpZUHLrmMDnOaW38EaScbx6iV6nEpdu2Bii
VRcHXue53TT10Z3yz9crH1TmSfypdvV+KgUGnesqfEvzEihZBi+2M0fsZPGjg6+h
1SSa3ojVcI86fO56CMDzBCrmPGigA6QnTLSfcZRshIVYpMoXDCF0JyTom3TfwFlz
tp2owEjfIlzE2bdf5TD/GdSZpAx9oIkZBO52wP7ejTi2SVFS1TKODfRnwt0nvP83
6XzOgHZID0Sd82lvJFRTJSTB9PzWYSi/ShJ3KuAHATPpeYs3Kqv5B9Qp625MoC/r
j2p8cSGt9kZJOw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 22:09:37 2026 by rpki-client