Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: g6BQAPzC/eY+4sOL1GmEVmf+uk5nVKj7R5Mxn50vpew=
Subject key identifier: AF:A9:42:FB:3F:83:47:4B:60:41:DB:DD:DF:E3:DC:AD:70:1C:B4:84
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 019DA3AEF30FDE33C4A8DB12E788556F0A3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 061D
Signing time: Sun 19 Apr 2026 03:00:44 +0000
Manifest this update: Sun 19 Apr 2026 03:00:44 +0000
Manifest next update: Mon 20 Apr 2026 03:00:44 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: CK+uRuiZ2VCGduzZ2KmdzNklqkZggOrxtvK0GATeXvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:ae:f3:0f:de:33:c4:a8:db:12:e7:88:55:6f:0a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Apr 19 03:00:44 2026 GMT
Not After : Apr 20 03:00:44 2026 GMT
Subject: CN=afa942fb3f83474b6041dbdddfe3dcad701cb484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:19:2a:64:09:0d:98:a0:28:0d:93:de:c9:ad:
9e:32:df:9a:1e:c5:ee:d5:99:c9:20:b6:15:15:88:
00:e9:66:1b:1e:c1:18:46:26:3a:4f:7b:49:e5:27:
6b:dc:5d:7a:7a:2d:93:72:20:fe:ed:66:fd:6f:c9:
5b:0b:f3:1b:08:b7:10:18:a9:08:19:00:4e:8b:e7:
f0:de:86:d2:2d:bf:ba:31:39:97:77:2c:4e:f3:9c:
65:b2:e8:a7:97:0f:0a:f1:05:f3:6e:55:df:23:65:
e5:ee:90:95:79:f3:8d:d5:ce:99:e0:18:9a:9e:e7:
72:ae:79:c3:dd:94:7a:51:72:26:10:bc:bc:23:e7:
b8:50:14:80:53:2a:ae:5b:da:c3:08:d6:3d:24:8a:
43:fe:13:22:fc:53:66:03:f5:c1:08:f2:45:44:87:
17:1d:c7:23:2d:2e:d8:39:ae:61:68:4f:8c:ab:d5:
72:55:14:9b:ec:a6:cb:7f:fc:8e:ab:42:26:36:ba:
a8:51:91:57:48:52:1a:3c:4b:8e:b4:78:11:ec:0b:
b0:41:37:68:6b:c4:c0:d3:62:4d:a0:aa:9e:fd:e0:
60:3a:ea:8a:32:9c:f6:be:78:9d:60:8f:2f:01:6e:
b1:c9:77:4c:02:b2:44:79:35:5a:f7:d3:eb:99:d2:
1b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A9:42:FB:3F:83:47:4B:60:41:DB:DD:DF:E3:DC:AD:70:1C:B4:84
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:fe:f1:4e:95:3d:4e:e8:55:37:2d:14:73:56:a3:8f:10:de:
49:80:97:55:f3:42:1a:a7:9a:64:70:a1:44:2b:35:ea:d1:a4:
2f:c5:f0:4c:f7:2c:89:d3:62:a9:c9:0b:cf:1f:9a:02:d7:33:
69:aa:c1:83:fb:07:10:19:b4:db:9c:98:d6:00:f0:1c:d4:7a:
e3:b7:68:65:6f:48:dc:82:7d:f3:07:67:bf:c5:98:8d:60:0d:
20:0f:62:49:5f:ba:6b:47:a6:a2:0e:9c:71:e0:89:28:b6:8b:
a7:70:48:c9:3e:40:b1:8a:3d:00:c5:7e:77:95:2a:0e:05:a6:
11:69:53:f4:75:47:f5:8b:da:72:3d:b2:84:81:b6:49:1f:31:
af:58:dd:93:cc:e9:69:6d:bf:bd:58:c9:47:71:77:0b:a0:15:
04:15:44:29:08:c8:c6:60:bc:1e:6e:7d:64:db:13:ca:5f:8b:
d5:3e:80:a4:ab:d3:49:68:2d:ca:42:f7:d3:f7:fa:d2:1e:84:
ac:ef:0c:58:12:54:74:56:b1:2e:42:7d:bd:36:41:3b:ff:dd:
58:96:c6:aa:9b:44:1b:b1:08:d1:5b:a5:71:55:46:90:45:1f:
19:a7:fe:0d:84:0a:37:a9:9a:61:9c:fc:a3:18:a1:ec:7e:1f:
71:7f:44:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jrvMP3jPEqNsS54hVbwo/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZWY0YWE1OTc3ZjFmMzcxMzNlNzMxMDgwOWZmZjg5MzVj
MGM4YmMwHhcNMjYwNDE5MDMwMDQ0WhcNMjYwNDIwMDMwMDQ0WjAzMTEwLwYDVQQD
EyhhZmE5NDJmYjNmODM0NzRiNjA0MWRiZGRkZmUzZGNhZDcwMWNiNDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhkqZAkNmKAoDZPeya2eMt+aHsXu
1ZnJILYVFYgA6WYbHsEYRiY6T3tJ5Sdr3F16ei2TciD+7Wb9b8lbC/MbCLcQGKkI
GQBOi+fw3obSLb+6MTmXdyxO85xlsuinlw8K8QXzblXfI2Xl7pCVefON1c6Z4Bia
nudyrnnD3ZR6UXImELy8I+e4UBSAUyquW9rDCNY9JIpD/hMi/FNmA/XBCPJFRIcX
HccjLS7YOa5haE+Mq9VyVRSb7KbLf/yOq0ImNrqoUZFXSFIaPEuOtHgR7AuwQTdo
a8TA02JNoKqe/eBgOuqKMpz2vnidYI8vAW6xyXdMArJEeTVa99PrmdIbYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK+pQvs/g0dLYEHb3d/j3K1wHLSEMB8GA1UdIwQY
MBaAFDnvSqWXfx83Ez5zEICf/4k1wMi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYt
ZTdkNWZjZTZiZmFjLzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYtZTdkNWZjZTZiZmFj
LzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ/7xTpU9
TuhVNy0Uc1ajjxDeSYCXVfNCGqeaZHChRCs16tGkL8XwTPcsidNiqckLzx+aAtcz
aarBg/sHEBm025yY1gDwHNR647doZW9I3IJ98wdnv8WYjWANIA9iSV+6a0emog6c
ceCJKLaLp3BIyT5AsYo9AMV+d5UqDgWmEWlT9HVH9Yvacj2yhIG2SR8xr1jdk8zp
aW2/vVjJR3F3C6AVBBVEKQjIxmC8Hm59ZNsTyl+L1T6ApKvTSWgtykL30/f60h6E
rO8MWBJUdFaxLkJ9vTZBO//dWJbGqptEG7EI0VulcVVGkEUfGaf+DYQKN6maYZz8
oxih7H4fcX9EFA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 12:58:25 2026 by rpki-client