Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: 2aq34DklXkVrbh0uhd+f/o/W0vrz+ZkB3UVEjSz/Cnc=
Subject key identifier: 43:22:2A:52:60:4C:43:01:92:5E:65:6E:80:C8:28:B3:98:7F:D7:D1
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 019EBAA227818B490B09262F2D4C70FB88C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 1623
Signing time: Fri 12 Jun 2026 07:00:49 +0000
Manifest this update: Fri 12 Jun 2026 07:00:49 +0000
Manifest next update: Sat 13 Jun 2026 07:00:49 +0000
Files and hashes: 1: 0BJKSsJW7qiVAHXCjZXJq3R-Kpk.roa (hash: r7csimlTjHrK6Lrz57cYuylUp8cy5+rV8BLjohqs/qU=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: bwX56q0POPk+Ar/z9OkQxITAoi+X2YQRK41ebI7sGrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 05:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:a2:27:81:8b:49:0b:09:26:2f:2d:4c:70:fb:88:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Jun 12 07:00:49 2026 GMT
Not After : Jun 13 07:00:49 2026 GMT
Subject: CN=43222a52604c4301925e656e80c828b3987fd7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d2:a9:f1:5e:be:68:0f:d8:f2:87:73:b9:15:
47:25:42:d1:71:c8:90:0b:34:69:0d:01:96:c2:64:
73:c1:a2:11:67:02:94:46:ba:7b:c2:65:6d:30:3e:
f6:ae:9d:f4:f8:9b:de:94:00:dc:1a:be:b8:ef:b3:
1d:c2:19:aa:06:85:4b:0a:b9:b2:cd:57:59:2e:b8:
ee:93:25:22:b4:5c:7f:20:b6:0b:3d:d6:f7:f9:30:
26:d9:77:55:eb:f3:6c:73:5f:4f:f6:85:94:bc:b3:
ea:39:c1:42:3a:4d:23:40:e0:93:19:1f:94:1d:b9:
20:49:56:6a:84:f5:94:39:e4:49:02:ca:fc:34:da:
95:18:85:80:6d:c4:9a:90:e3:c9:e9:6b:48:e1:3e:
39:78:16:03:0b:55:e9:35:83:c5:6a:e1:f4:d7:d1:
4f:8a:e0:23:74:d8:a6:cd:8c:7e:32:b0:e8:ee:14:
cb:fc:e3:ae:9a:27:ae:3e:a8:12:e1:02:16:d0:40:
75:e5:ed:6d:8c:74:50:6f:47:65:34:cc:8e:b6:b5:
06:b5:96:62:75:20:e0:a0:7a:fd:e0:de:83:9b:6c:
72:b1:3d:c3:39:51:b6:fd:18:48:7b:1e:35:f1:44:
ba:8f:b7:03:1b:39:29:e1:8e:aa:2c:6e:b7:1d:68:
19:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:22:2A:52:60:4C:43:01:92:5E:65:6E:80:C8:28:B3:98:7F:D7:D1
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:de:91:c5:8d:e1:cc:36:58:5d:b3:df:03:75:c1:b0:49:0a:
6d:b2:43:39:d2:2d:44:2f:d3:2c:ab:15:14:03:be:59:7f:64:
82:c5:b2:92:09:f5:17:fa:4e:f2:5e:43:c7:1a:81:2e:e1:95:
8e:67:ea:17:37:1a:24:d0:ff:8c:4d:cd:ec:aa:c8:c7:ae:85:
a9:08:8c:7f:76:5b:4b:e8:cf:5c:4c:4f:23:75:b8:c1:f9:f8:
f9:61:96:70:11:b3:a2:9c:60:df:14:51:ef:ca:29:1d:a1:12:
51:25:a3:61:77:a8:74:05:1a:5d:07:f7:da:53:71:68:5f:f6:
3d:2b:56:92:cc:ab:d6:75:94:0c:d8:1d:0c:18:f5:e7:d7:eb:
a1:e6:de:69:9f:71:da:9f:98:fa:b6:e8:bf:53:be:e6:2f:69:
c9:b0:d6:de:94:af:34:34:b0:32:22:e8:ee:87:57:5f:d1:64:
76:0b:5e:ad:cb:7c:45:84:8b:29:9c:33:33:db:c8:12:ff:65:
3c:c0:0d:23:5e:d5:dd:dc:25:93:10:34:d4:09:70:ee:9b:17:
82:03:e0:63:46:f3:aa:43:24:f2:33:b9:c6:84:d3:fa:2d:20:
17:6b:50:95:c4:8b:cb:47:f9:44:db:c2:31:eb:cc:27:e9:9a:
34:4f:de:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ66oieBi0kLCSYvLUxw+4jBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWE4ZGUzMWNlY2E1NTgwM2NmM2FmMTRkNGE3Mjc5YWU4
NDQ2ZDAwHhcNMjYwNjEyMDcwMDQ5WhcNMjYwNjEzMDcwMDQ5WjAzMTEwLwYDVQQD
Eyg0MzIyMmE1MjYwNGM0MzAxOTI1ZTY1NmU4MGM4MjhiMzk4N2ZkN2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndKp8V6+aA/Y8odzuRVHJULRcciQ
CzRpDQGWwmRzwaIRZwKURrp7wmVtMD72rp30+JvelADcGr6477MdwhmqBoVLCrmy
zVdZLrjukyUitFx/ILYLPdb3+TAm2XdV6/Nsc19P9oWUvLPqOcFCOk0jQOCTGR+U
HbkgSVZqhPWUOeRJAsr8NNqVGIWAbcSakOPJ6WtI4T45eBYDC1XpNYPFauH019FP
iuAjdNimzYx+MrDo7hTL/OOumieuPqgS4QIW0EB15e1tjHRQb0dlNMyOtrUGtZZi
dSDgoHr94N6Dm2xysT3DOVG2/RhIex418US6j7cDGzkp4Y6qLG63HWgZewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMiKlJgTEMBkl5lboDIKLOYf9fRMB8GA1UdIwQY
MBaAFKHqjeMc7KVYA8868U1KcnmuhEbQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jYTk5ZDgtODUyNy00NWI4LWFmNmEt
NzY1MjYyZjI5ZWFmLzEvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jYTk5ZDgtODUyNy00NWI4LWFmNmEtNzY1MjYyZjI5ZWFm
LzEvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYd6RxY3h
zDZYXbPfA3XBsEkKbbJDOdItRC/TLKsVFAO+WX9kgsWykgn1F/pO8l5DxxqBLuGV
jmfqFzcaJND/jE3N7KrIx66FqQiMf3ZbS+jPXExPI3W4wfn4+WGWcBGzopxg3xRR
78opHaESUSWjYXeodAUaXQf32lNxaF/2PStWksyr1nWUDNgdDBj159froebeaZ9x
2p+Y+rbov1O+5i9pybDW3pSvNDSwMiLo7odXX9Fkdgterct8RYSLKZwzM9vIEv9l
PMANI17V3dwlkxA01Alw7psXggPgY0bzqkMk8jO5xoTT+i0gF2tQlcSLy0f5RNvC
MevMJ+maNE/enQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 09:14:44 2026 by rpki-client