Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: pylZv5URXuGEH5kN1VBDQGa8fUsB6bO5Vk1053WF4oY=
Subject key identifier: A3:2E:B5:0B:CF:F5:60:F2:24:33:E5:5E:FF:87:FF:82:6B:B4:3E:C3
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019EB98F3501C4E3B795C11963EF93C21B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1961
Signing time: Fri 12 Jun 2026 02:00:30 +0000
Manifest this update: Fri 12 Jun 2026 02:00:30 +0000
Manifest next update: Sat 13 Jun 2026 02:00:30 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: e9zvZOlmaaa5iRL7ZAk4eep6yD2vDfzp8ZtVqTAVinU=)
2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:35:01:c4:e3:b7:95:c1:19:63:ef:93:c2:1b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Jun 12 02:00:30 2026 GMT
Not After : Jun 13 02:00:30 2026 GMT
Subject: CN=a32eb50bcff560f22433e55eff87ff826bb43ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:9a:6d:e1:02:19:90:37:8e:67:88:91:31:
6d:46:27:d6:e1:ec:f6:67:8f:7c:33:9d:22:7a:85:
66:18:de:c7:bd:fa:fc:d6:59:2e:29:16:97:72:b7:
9b:99:9c:ee:fb:66:26:46:8c:25:1a:bc:13:75:b3:
67:1c:0c:d4:58:f2:1f:15:16:2f:42:71:44:e4:c5:
02:9a:6f:0d:65:1e:45:f9:82:7a:c8:45:ef:d2:a0:
75:be:ea:fa:6f:68:cb:4b:b9:c3:85:4b:8d:f8:6e:
b6:ce:09:90:da:e7:51:85:91:19:77:7b:e8:74:fd:
6b:34:e5:24:32:6a:e6:26:85:73:c3:43:87:62:0f:
38:02:6e:a0:8e:80:5c:b7:03:b5:ff:0f:81:65:a0:
56:07:e8:21:8d:33:d4:e8:94:f2:40:ab:9f:15:84:
25:cd:a9:8c:66:f3:31:7a:1f:e8:1c:dc:c7:5f:2a:
8c:4a:20:06:dc:6c:bf:58:4f:a2:a4:0f:29:d0:11:
a1:59:3e:1a:6c:cd:69:8a:19:7f:a4:15:fc:2d:65:
4d:1f:96:5e:fa:c3:87:fe:b7:9f:f7:b4:90:0c:bc:
f6:f7:01:51:e4:74:e6:2a:66:a6:5c:b8:60:93:5c:
b6:08:a3:ad:90:95:63:74:bd:ac:65:cb:7d:41:62:
bc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2E:B5:0B:CF:F5:60:F2:24:33:E5:5E:FF:87:FF:82:6B:B4:3E:C3
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:a7:c1:8c:bc:b5:5d:97:33:2f:3f:71:c6:4f:fb:c9:af:0a:
6e:80:0c:ad:80:dc:65:89:a2:11:2d:98:7d:20:0d:ab:3b:76:
e7:de:93:8c:ee:e6:7e:07:60:96:33:92:ef:b7:83:05:ed:70:
2c:7b:25:55:30:c2:f8:6f:4e:71:d0:d6:ee:fd:9e:19:cb:50:
40:fa:7d:88:16:fc:c8:c3:b4:75:e2:67:e6:53:6a:82:da:ae:
92:bb:d6:3f:02:ba:41:6f:92:66:eb:39:32:25:f7:f1:b2:6c:
74:2e:2e:2b:5f:9f:a6:49:4d:bc:0e:48:4b:04:76:ae:5e:71:
76:bd:50:9a:ba:ad:0d:13:87:52:ad:5c:e7:66:11:56:a5:e1:
75:19:c7:6c:24:ba:10:51:f4:cf:bf:d4:c8:f3:ab:90:53:10:
1b:ac:6d:07:02:33:62:54:96:04:9e:fd:a3:35:0d:da:03:ea:
8c:f4:42:5e:43:cb:8c:eb:12:3c:fc:c0:4c:28:38:9f:1f:72:
b4:e5:8b:62:f9:ec:69:f1:de:28:1c:b4:7e:2a:0e:6e:91:4a:
7c:c4:2c:ea:b5:14:91:a3:1e:da:fe:a1:05:b5:ea:3b:a3:64:
bc:67:7a:a0:00:80:10:36:b0:4d:15:5a:ec:e7:54:1b:14:26:
1e:fd:b8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:14:05 2026 by rpki-client