Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: 6tvTAX24SQwHgsmlZmLDt6J1g48+O1JEdOCyliusE7A=
Subject key identifier: C0:70:BD:8E:24:8D:41:46:E3:C0:16:91:98:CA:4B:B9:72:C7:AB:9B
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 019CAC7E6776802847EB319A3066646EB737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 059D
Signing time: Mon 02 Mar 2026 03:01:31 +0000
Manifest this update: Mon 02 Mar 2026 03:01:31 +0000
Manifest next update: Tue 03 Mar 2026 03:01:31 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: 4cJRtyH4BKWDZ+R1w3lhvE6ONg3f4FzH/WGrtOrkI/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:67:76:80:28:47:eb:31:9a:30:66:64:6e:b7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Mar 2 03:01:31 2026 GMT
Not After : Mar 3 03:01:31 2026 GMT
Subject: CN=c070bd8e248d4146e3c0169198ca4bb972c7ab9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:93:1d:82:d9:a3:34:07:f6:d5:96:fa:34:f1:
30:7a:e0:36:a4:ab:f5:5a:87:95:f9:7f:0e:d5:df:
f4:0b:c7:84:57:08:79:ed:c5:77:4c:f4:9c:57:52:
e5:2b:3f:7d:99:fe:2f:ca:d0:84:87:44:8f:aa:6b:
bd:bc:1d:01:93:35:25:58:01:34:71:3a:2b:55:5a:
7b:12:f2:89:b3:70:49:cf:3a:9e:dc:53:9d:42:af:
78:4e:e1:01:e7:d2:1c:b0:cd:0e:7f:ee:59:51:2f:
4a:ac:17:58:8b:23:e6:93:73:c9:74:1c:5e:e6:7c:
25:4a:e1:35:1d:cc:3f:65:bb:84:05:69:d4:52:2b:
64:93:b9:16:ce:6b:ad:fb:de:f2:20:7e:33:d4:72:
18:60:8c:7b:ec:c6:a9:42:e4:f4:e1:a4:b7:48:29:
b6:9a:ac:e1:5e:28:4e:f3:b5:68:bf:21:0e:2d:f5:
6b:71:a8:c4:77:68:ec:ce:a9:a9:14:74:14:eb:b2:
bb:04:98:db:c8:12:cb:05:46:76:49:62:3b:3e:5e:
3d:c4:a8:e3:4c:8f:17:25:6a:bc:f7:aa:ce:29:12:
87:1a:50:1e:b6:98:0e:dd:bf:1b:ac:ec:d7:38:c5:
38:86:1a:6e:d6:86:4b:02:c1:5b:51:e5:bb:26:ef:
97:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:70:BD:8E:24:8D:41:46:E3:C0:16:91:98:CA:4B:B9:72:C7:AB:9B
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:53:58:8b:fc:89:83:ee:83:22:63:11:7e:5d:c4:04:a8:e1:
de:f7:de:a8:a6:e4:d2:86:c8:50:43:5f:f9:af:6d:09:89:77:
78:60:2a:db:72:ae:32:81:77:59:02:93:89:41:7f:22:c0:10:
76:3c:38:f8:dc:bd:e4:d4:d7:2c:c8:95:03:ce:a8:e0:e0:02:
fb:ef:70:5d:a7:76:38:80:46:be:c6:d3:aa:86:87:01:5f:03:
df:1d:e3:6a:ae:1b:e1:d2:f7:b2:50:c4:ed:0e:01:0a:5e:e4:
ef:5e:cd:5f:ad:35:db:03:9e:96:c8:e0:42:71:de:dc:d2:fd:
99:3f:ae:ab:b8:83:49:f4:f4:bf:69:c3:82:dd:f9:7a:10:09:
34:e2:d2:56:79:62:78:f6:e6:ab:07:09:07:4a:24:0f:35:5e:
a9:29:65:23:96:f6:70:8c:b7:bb:73:3d:b9:52:3b:2d:fd:0f:
c8:29:a4:30:ee:79:09:b5:e2:ad:04:48:e3:88:05:53:14:b7:
bd:9e:03:f6:b1:e3:3e:ba:32:24:67:07:8c:76:a5:ea:38:1a:
5e:41:23:b6:72:e2:92:e4:af:1d:2c:44:3c:fd:ef:20:fa:2f:
82:a2:9e:59:53:0a:ef:1c:be:15:59:07:3c:26:7d:21:ab:af:
b6:7b:ca:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:39:06 2026 by rpki-client