Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: wq713v3bASZA2VMc7Qy+W4qzv7qzKCxuwWhgSCJtt4s=
Subject key identifier: 9C:99:EA:43:B8:05:06:B6:75:B6:BC:0B:6A:70:6E:FC:2D:F2:9F:6E
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019EC2244B1130EEB5D9F0110380F3DDF135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1960
Signing time: Sat 13 Jun 2026 18:00:18 +0000
Manifest this update: Sat 13 Jun 2026 18:00:18 +0000
Manifest next update: Sun 14 Jun 2026 18:00:18 +0000
Files and hashes: 1: LKfnJFP3stLPWkjsWhakvnaxplg.roa (hash: 3FNKamFL0cuW1/UK40gTZTnTQ2szlVWiH3Kqp5bB2Jc=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: kfx1YzQid8LwtbuoKgAtryAsfUNDmeVR/446HvZnPFo=)
3: pAVHO7_V8_WbgzBWy08ggfwQNzk.roa (hash: 48s+jx2jfE5/9tkGuym26/yfL1pMIBfKiFkYHtTjWO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:4b:11:30:ee:b5:d9:f0:11:03:80:f3:dd:f1:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Jun 13 18:00:18 2026 GMT
Not After : Jun 14 18:00:18 2026 GMT
Subject: CN=9c99ea43b80506b675b6bc0b6a706efc2df29f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0a:11:33:3f:00:51:14:07:8a:71:45:c7:09:
f3:99:60:12:0e:34:ef:46:f8:44:79:63:3d:98:65:
6d:4b:33:55:a8:b2:ce:57:db:b6:f0:86:79:c3:f9:
6e:c6:93:ac:eb:9d:bc:21:98:16:ea:7f:16:52:12:
39:cf:4c:f2:d3:9a:69:8b:c3:ef:93:69:58:a4:23:
aa:4f:4f:5a:e8:25:ba:a4:2b:80:33:fc:ff:12:be:
c8:35:a0:97:c7:c8:1b:dc:71:68:74:6a:16:97:f5:
b5:b6:4c:73:5c:04:2e:15:e2:de:48:62:2b:46:7b:
79:41:81:44:6d:eb:5c:c6:b4:f7:67:13:f1:ee:c4:
42:d5:04:e9:a7:7f:3a:af:74:6f:28:b9:22:89:97:
f4:84:c7:01:6c:1b:5a:0f:39:41:3a:44:57:c8:12:
07:8e:af:9d:39:44:02:ce:85:f4:02:86:e4:d1:28:
cc:6b:9f:bd:05:47:f2:4b:05:05:7c:5c:c7:1e:9e:
97:62:3d:d8:4b:7c:f7:9c:93:ac:9b:6c:b8:30:57:
fe:28:b7:f0:3e:a4:9e:9c:a2:0b:70:a3:1e:48:f5:
ea:df:d9:c9:b8:af:22:a6:39:cf:41:0f:1f:1d:5b:
cb:ad:20:59:c9:c1:ed:63:c9:82:05:e6:c0:10:17:
69:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:99:EA:43:B8:05:06:B6:75:B6:BC:0B:6A:70:6E:FC:2D:F2:9F:6E
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:42:6c:10:0c:f0:ae:44:19:7b:86:d4:f4:b3:2c:7f:ed:68:
d7:b7:ba:d0:73:df:73:f9:68:02:5f:79:9b:18:4d:1a:98:df:
2f:e2:db:12:cd:8f:7b:62:6e:eb:4f:54:04:c7:24:36:90:d2:
e1:ee:31:83:fc:7a:22:30:81:61:cd:21:15:71:2b:60:5e:6c:
6e:cc:64:28:83:ac:2d:55:72:10:fd:33:85:aa:f0:cd:a9:f5:
e9:98:02:ce:14:cc:31:fc:e7:be:0e:e3:72:00:73:5c:7f:c3:
31:1e:15:d9:71:7f:f9:a6:a8:50:bb:3d:d2:c4:87:28:93:ca:
f2:ef:ca:3b:96:ce:8d:97:c8:19:c8:1f:cd:d3:fa:ba:fa:5a:
89:1f:16:c2:0c:97:cc:29:a4:aa:ee:5e:51:89:22:f7:37:c5:
0e:22:35:ae:a8:ab:7a:dd:e2:97:3e:1e:3e:2f:9c:62:da:80:
c4:27:12:b7:88:b7:c6:da:9b:ce:01:bd:5c:5e:a9:19:45:f8:
24:7b:71:14:1a:fe:d9:60:29:ce:ca:af:81:b2:cf:3f:ff:53:
16:7d:cc:28:8c:95:69:ed:16:c0:f9:97:25:ea:33:a2:02:35:
23:a8:ad:77:ea:a1:84:27:11:67:ef:5a:db:a2:89:d9:14:9e:
47:f2:f3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:03:16 2026 by rpki-client