Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
File: OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft (raw, json)
Hash identifier: PL2jPgN+5SQhIYvK61fHkL5zz2lWcKbLFO7Mdm6uSLI=
Subject key identifier: 16:A7:39:05:D9:9C:BA:B6:6B:1A:33:7F:F7:84:DE:28:2A:F9:5F:19
Authority key identifier: 38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
Certificate issuer: /CN=389755423f832a528c93136110f0fe4b10453582
Certificate serial: 019EC3A575F1D8C064127AB11EAAD8418178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
Manifest number: 0FF2
Signing time: Sun 14 Jun 2026 01:01:01 +0000
Manifest this update: Sun 14 Jun 2026 01:01:01 +0000
Manifest next update: Mon 15 Jun 2026 01:01:01 +0000
Files and hashes: 1: OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl (hash: 9RInR+zdaB5L5WJd5/JS2VGo11bKOG8ls84U0pYbGs4=)
2: dvF-ax6xW9w6QlzjTOaIlgyWKik.roa (hash: E53mXDTZAgvYtLPLUqhUWEPa5aOM6nnfYCB3KgCjcD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a5:75:f1:d8:c0:64:12:7a:b1:1e:aa:d8:41:81:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389755423f832a528c93136110f0fe4b10453582
Validity
Not Before: Jun 14 01:01:01 2026 GMT
Not After : Jun 15 01:01:01 2026 GMT
Subject: CN=16a73905d99cbab66b1a337ff784de282af95f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d6:0b:22:37:cf:3b:f4:76:be:2e:2f:5e:f7:
77:e5:8c:4f:3d:d1:d8:0a:ba:b7:0c:a5:ef:c6:bc:
3d:53:87:fe:9d:d1:e1:9a:aa:58:6b:0a:3e:49:b0:
00:6f:3d:c5:d2:4a:49:f5:a9:52:02:b8:3f:dd:d5:
5f:92:43:e0:a4:d3:c5:93:6b:86:93:30:33:ba:85:
e9:b3:44:aa:4d:4e:e7:94:12:78:8c:f8:06:ec:87:
0a:0b:01:64:07:19:bf:2d:32:c1:e7:21:f0:e6:4a:
47:32:82:8b:d9:ff:53:26:34:12:da:65:3f:fd:71:
cd:1f:f9:24:19:cd:c8:bd:47:44:b3:46:b2:bc:d6:
54:99:76:11:04:de:dd:10:f8:1c:8d:a4:cf:7f:c8:
f6:bd:81:4a:1f:f1:96:b8:75:41:b2:eb:21:0c:40:
d2:8a:d0:96:09:65:c8:e9:e1:99:b3:06:d2:44:64:
a1:aa:92:2c:da:36:84:4b:d4:52:47:dd:3f:42:ce:
c2:3e:df:fe:5c:03:c7:b1:b8:a7:18:31:b7:2f:2b:
36:33:26:5c:a2:e2:f2:87:42:19:2a:3d:1e:57:ab:
97:aa:28:05:20:e8:f5:07:f3:eb:bc:04:6d:8b:67:
9f:85:7f:66:0b:46:b0:be:32:84:74:4a:6f:c0:9a:
b1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A7:39:05:D9:9C:BA:B6:6B:1A:33:7F:F7:84:DE:28:2A:F9:5F:19
X509v3 Authority Key Identifier:
keyid:38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:37:51:d1:ff:12:f2:61:f5:80:ad:3f:94:11:88:97:1b:20:
d1:ad:8e:3c:1c:94:13:29:89:88:31:ab:62:d5:06:f3:9c:68:
cc:23:27:2e:b3:1a:6f:97:a8:e6:2c:e1:48:de:42:c3:c9:f5:
36:bb:fb:06:ff:64:69:04:26:00:5f:6a:cc:07:f9:77:fd:ab:
32:cb:65:4a:40:ca:09:89:31:37:c7:96:b9:22:41:5f:24:88:
04:a5:30:76:2c:da:a0:e4:6a:37:b5:e9:d4:e5:f3:93:07:29:
72:1c:20:96:b5:03:b6:b4:45:50:e6:ac:dd:65:f1:10:29:b9:
4f:3b:01:ad:c7:9b:44:18:83:78:02:bf:71:5b:a2:8a:f2:df:
74:e8:62:32:52:27:e1:04:a0:c7:16:49:3c:b7:64:80:a0:6b:
9c:bc:fd:3b:36:57:9c:c9:17:a1:d5:52:88:4b:99:04:89:4a:
4d:2e:8b:ca:42:91:06:88:f2:80:92:b0:64:83:bc:81:35:ce:
a2:26:4e:a0:d6:b7:58:fe:1d:8d:19:4b:e2:1b:f7:e2:d0:23:
de:a3:16:a3:aa:0e:14:87:d6:fd:f8:7a:c8:1e:92:04:23:0b:
84:9f:1d:ba:79:9c:33:49:97:d1:12:8b:5b:cd:d6:d2:e1:a6:
bc:59:fe:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7DpXXx2MBkEnqxHqrYQYF4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OTc1NTQyM2Y4MzJhNTI4YzkzMTM2MTEwZjBmZTRiMTA0
NTM1ODIwHhcNMjYwNjE0MDEwMTAxWhcNMjYwNjE1MDEwMTAxWjAzMTEwLwYDVQQD
EygxNmE3MzkwNWQ5OWNiYWI2NmIxYTMzN2ZmNzg0ZGUyODJhZjk1ZjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytYLIjfPO/R2vi4vXvd35YxPPdHY
Crq3DKXvxrw9U4f+ndHhmqpYawo+SbAAbz3F0kpJ9alSArg/3dVfkkPgpNPFk2uG
kzAzuoXps0SqTU7nlBJ4jPgG7IcKCwFkBxm/LTLB5yHw5kpHMoKL2f9TJjQS2mU/
/XHNH/kkGc3IvUdEs0ayvNZUmXYRBN7dEPgcjaTPf8j2vYFKH/GWuHVBsushDEDS
itCWCWXI6eGZswbSRGShqpIs2jaES9RSR90/Qs7CPt/+XAPHsbinGDG3Lys2MyZc
ouLyh0IZKj0eV6uXqigFIOj1B/PrvARti2efhX9mC0awvjKEdEpvwJqxrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBanOQXZnLq2axozf/eE3igq+V8ZMB8GA1UdIwQY
MBaAFDiXVUI/gypSjJMTYRDw/ksQRTWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0pkVlFqLURLbEtNa3hOaEVQRC1TeEJGTllJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9kOWI1OTYtNjAxZS00NDI2LWE0Mjgt
NDY5NTdiZDg4NjBkLzEvT0pkVlFqLURLbEtNa3hOaEVQRC1TeEJGTllJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9kOWI1OTYtNjAxZS00NDI2LWE0MjgtNDY5NTdiZDg4NjBk
LzEvT0pkVlFqLURLbEtNa3hOaEVQRC1TeEJGTllJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATzdR0f8S
8mH1gK0/lBGIlxsg0a2OPByUEymJiDGrYtUG85xozCMnLrMab5eo5izhSN5Cw8n1
Nrv7Bv9kaQQmAF9qzAf5d/2rMstlSkDKCYkxN8eWuSJBXySIBKUwdizaoORqN7Xp
1OXzkwcpchwglrUDtrRFUOas3WXxECm5TzsBrcebRBiDeAK/cVuiivLfdOhiMlIn
4QSgxxZJPLdkgKBrnLz9OzZXnMkXodVSiEuZBIlKTS6LykKRBojygJKwZIO8gTXO
oiZOoNa3WP4djRlL4hv34tAj3qMWo6oOFIfW/fh6yB6SBCMLhJ8dunmcM0mX0RKL
W83W0uGmvFn+GQ==
-----END CERTIFICATE-----
Generated at Sun Jun 14 05:24:13 2026 by rpki-client