Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: dqPtIPluyTX+nqOfx3tTLH9hPcTQs2qJgfX+LRIdvRU=
Subject key identifier: FA:36:AF:9B:CF:F9:E9:A4:08:E3:28:C3:5D:53:21:8D:8E:EC:01:EF
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019E9C2A719A4BBE63DF99B3576F50177F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 10CA
Signing time: Sat 06 Jun 2026 09:01:27 +0000
Manifest this update: Sat 06 Jun 2026 09:01:27 +0000
Manifest next update: Sun 07 Jun 2026 09:01:27 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: Di+bM6UG/JJxNy+kgfNnkGaYD2rmE2JB7BQhSBCuOiQ=)
2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:2a:71:9a:4b:be:63:df:99:b3:57:6f:50:17:7f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Jun 6 09:01:27 2026 GMT
Not After : Jun 7 09:01:27 2026 GMT
Subject: CN=fa36af9bcff9e9a408e328c35d53218d8eec01ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5d:e9:6c:ab:2b:ab:e5:96:8d:a4:a5:37:10:
a9:6c:30:b1:4a:d7:51:df:a5:23:a6:f9:68:8a:07:
74:43:7e:fc:d2:e3:39:a7:72:8e:9a:43:98:e7:d8:
e9:60:1d:79:a5:47:76:90:ef:18:36:a3:42:31:39:
45:a4:77:72:13:64:01:c1:96:67:b7:7f:18:18:0f:
79:93:15:7d:a0:bc:5e:ae:6a:42:71:fa:94:62:0c:
f5:4d:b3:1e:ee:34:59:49:44:e3:2b:b6:05:87:df:
f5:35:b1:5b:37:89:cd:23:bc:ac:cd:f4:d1:88:2c:
7d:3b:19:9e:b2:1e:05:1b:d9:7d:f0:57:ef:ed:da:
e0:de:c9:bc:6a:00:c8:1e:a4:e4:42:21:34:fa:fb:
1d:3b:e3:1f:8f:9a:e9:bb:8a:45:91:5f:91:c8:c9:
76:ec:b7:12:46:2b:80:d7:08:fa:07:44:a4:48:03:
63:dd:2f:91:36:9a:f9:6c:73:80:6c:e3:95:4d:0d:
64:f7:c2:58:ae:7f:7f:4f:33:f4:04:ab:c0:da:6d:
76:c6:81:89:05:70:63:26:37:9a:15:dd:cf:80:37:
ca:9f:ff:7f:09:e7:5b:53:66:cf:59:bf:ac:ea:8a:
17:90:80:e7:aa:7f:1b:f5:21:3d:f2:cf:b6:2c:45:
f3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:36:AF:9B:CF:F9:E9:A4:08:E3:28:C3:5D:53:21:8D:8E:EC:01:EF
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:92:b5:2c:39:19:59:2e:27:70:38:d8:f3:36:21:3a:a2:1f:
a4:a4:be:72:48:66:34:10:a6:28:23:f7:40:63:97:85:a2:bd:
e2:d5:61:2c:b8:00:b7:0a:51:e0:9b:ee:94:ce:13:db:40:39:
1b:0c:e9:f3:18:7e:05:76:7d:42:88:5d:95:ee:1e:2c:37:8f:
65:52:82:31:31:8b:94:47:84:8a:74:7c:60:a2:21:b0:e0:b4:
7d:7f:aa:c3:0e:bd:ce:6b:63:9e:a9:4f:3c:1f:6f:d0:3e:4c:
15:ce:94:7a:fe:41:36:aa:7b:ed:cd:63:1c:e0:37:6d:5a:40:
9b:04:2d:fa:7f:60:8d:24:17:3b:68:62:f3:79:e1:35:30:c5:
9a:3d:d1:52:90:25:d4:77:6f:76:4f:85:15:e0:f7:76:ba:11:
ff:e7:52:27:5f:0b:ff:00:f9:a1:4d:89:33:b3:19:85:ac:33:
75:2b:82:a0:c7:82:82:cb:16:66:73:84:8f:24:cd:ef:0d:ed:
b8:2c:8b:6f:76:c7:9c:43:14:ad:b4:8f:05:e8:50:12:de:9a:
cd:34:68:3d:6a:29:84:df:73:4c:38:de:7c:0f:86:33:cd:1c:
db:04:b4:fa:f1:32:0d:10:ef:91:27:5a:e3:a7:87:1b:c8:ed:
1e:e9:64:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6cKnGaS75j35mzV29QF3+aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli
ZDNhOWEwHhcNMjYwNjA2MDkwMTI3WhcNMjYwNjA3MDkwMTI3WjAzMTEwLwYDVQQD
EyhmYTM2YWY5YmNmZjllOWE0MDhlMzI4YzM1ZDUzMjE4ZDhlZWMwMWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4l3pbKsrq+WWjaSlNxCpbDCxStdR
36Ujpvloigd0Q3780uM5p3KOmkOY59jpYB15pUd2kO8YNqNCMTlFpHdyE2QBwZZn
t38YGA95kxV9oLxermpCcfqUYgz1TbMe7jRZSUTjK7YFh9/1NbFbN4nNI7yszfTR
iCx9Oxmesh4FG9l98Ffv7drg3sm8agDIHqTkQiE0+vsdO+Mfj5rpu4pFkV+RyMl2
7LcSRiuA1wj6B0SkSANj3S+RNpr5bHOAbOOVTQ1k98JYrn9/TzP0BKvA2m12xoGJ
BXBjJjeaFd3PgDfKn/9/CedbU2bPWb+s6ooXkIDnqn8b9SE98s+2LEXzMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPo2r5vP+emkCOMow11TIY2O7AHvMB8GA1UdIwQY
MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt
MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi
LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpK1LDkZ
WS4ncDjY8zYhOqIfpKS+ckhmNBCmKCP3QGOXhaK94tVhLLgAtwpR4JvulM4T20A5
Gwzp8xh+BXZ9Qohdle4eLDePZVKCMTGLlEeEinR8YKIhsOC0fX+qww69zmtjnqlP
PB9v0D5MFc6Uev5BNqp77c1jHOA3bVpAmwQt+n9gjSQXO2hi83nhNTDFmj3RUpAl
1Hdvdk+FFeD3droR/+dSJ18L/wD5oU2JM7MZhawzdSuCoMeCgssWZnOEjyTN7w3t
uCyLb3bHnEMUrbSPBehQEt6azTRoPWophN9zTDjefA+GM80c2wS0+vEyDRDvkSda
46eHG8jtHulkLw==
-----END CERTIFICATE-----
Generated at Sat Jun 6 12:09:27 2026 by rpki-client