Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: 350HOKMGBxXECdH1sIpvdKqvc1/KN9Xq1FOG/Kb1B2c=
Subject key identifier: 4C:E1:8F:59:B7:46:1D:4A:C2:46:E9:D3:4C:35:13:BF:CA:BA:C0:38
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019F19E7D01BB60673F9A95BC564B8910434
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 124D
Signing time: Tue 30 Jun 2026 19:00:50 +0000
Manifest this update: Tue 30 Jun 2026 19:00:50 +0000
Manifest next update: Wed 01 Jul 2026 19:00:50 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: Uyouj5Wl81pJBrJ5ayb0EB1armbOJYa1pU1HQxfqkh4=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e7:d0:1b:b6:06:73:f9:a9:5b:c5:64:b8:91:04:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jun 30 19:00:50 2026 GMT
Not After : Jul 1 19:00:50 2026 GMT
Subject: CN=4ce18f59b7461d4ac246e9d34c3513bfcabac038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:22:61:3a:21:d4:ef:bf:54:9f:70:4d:da:58:
b8:47:69:b1:45:d2:67:25:b8:c1:4b:e4:51:54:75:
a1:ac:cb:03:46:24:db:6b:eb:27:b6:bb:f9:6a:90:
68:ca:fb:d4:14:68:9a:67:aa:7d:15:13:5c:05:94:
6f:a2:57:c0:cd:66:a2:45:dd:56:24:42:1a:05:8f:
e7:d6:84:e3:4a:ad:74:69:04:4c:95:83:5c:48:69:
f9:0d:ba:1b:d7:f7:f6:84:e1:d4:a4:50:f3:f2:e0:
16:06:4b:04:2d:59:e6:33:e3:41:7d:99:8b:47:e5:
a3:d6:3b:bd:30:4d:5c:e4:20:38:aa:db:7e:64:c0:
b1:d5:af:3d:7c:a6:61:9c:e8:39:56:e6:ec:ff:b4:
f2:68:49:27:89:ba:1b:c5:59:7f:0c:42:20:2f:a0:
3b:08:88:d1:f5:e5:a6:2b:12:9e:2d:af:ac:10:9a:
ce:99:92:61:2a:39:58:d8:fe:fa:46:a6:19:6b:8b:
05:65:8d:7b:6a:f7:9d:a7:c6:8c:a9:6f:c3:a7:71:
31:25:0c:5e:6e:fc:a9:71:b3:1e:8f:e7:71:81:19:
26:0c:22:b6:d5:6a:41:5c:e7:88:7c:0b:58:b4:22:
69:3a:41:6e:e5:36:db:ba:e4:4c:d8:3d:b3:ba:e0:
84:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E1:8F:59:B7:46:1D:4A:C2:46:E9:D3:4C:35:13:BF:CA:BA:C0:38
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:86:a8:e2:60:e9:fb:02:79:1c:2a:d9:82:36:0b:a0:34:cc:
7a:85:a7:a7:1e:28:01:0b:23:3e:c1:f1:51:e7:89:3f:d7:6c:
16:f4:7a:6d:f6:3d:24:28:34:bb:0c:0e:75:fc:38:64:ef:c1:
42:90:2e:f3:b4:b5:5f:5e:2c:17:eb:83:e2:3c:41:9c:cb:3e:
33:8c:2e:e4:3e:a3:36:48:01:86:9c:56:47:19:0d:10:af:d3:
af:ca:8e:b0:82:67:47:17:e0:f0:53:e5:3e:8d:2e:c9:09:e5:
e1:b3:b9:b7:45:2f:ff:b2:b9:fc:6d:99:de:0b:f1:6c:b0:fe:
33:2a:da:7f:b6:42:f4:b4:b1:79:06:0b:b8:67:ee:ce:50:15:
8f:ad:b9:46:52:70:38:97:fb:a2:e4:f9:26:91:78:2b:f9:30:
69:be:a4:7d:68:b8:ed:32:4e:81:da:bc:08:84:32:29:93:17:
f3:25:cc:77:20:10:27:d6:39:ba:f4:cd:88:34:e7:2c:12:cd:
96:23:84:77:77:0c:8d:bc:b2:89:4c:ca:5f:c7:55:36:c7:7b:
21:52:a6:5f:4e:d3:d2:eb:7a:3d:a4:b5:f3:df:9f:13:35:05:
a7:11:42:19:4d:46:bb:49:d9:87:5f:26:03:db:ee:1d:02:9f:
68:a6:b0:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Z59AbtgZz+albxWS4kQQ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOTM2ZDJmMjk4ZTZjZmQ1NjYwNDU3M2QxZWY5ZTBlODI5
OWI1MjkwHhcNMjYwNjMwMTkwMDUwWhcNMjYwNzAxMTkwMDUwWjAzMTEwLwYDVQQD
Eyg0Y2UxOGY1OWI3NDYxZDRhYzI0NmU5ZDM0YzM1MTNiZmNhYmFjMDM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSJhOiHU779Un3BN2li4R2mxRdJn
JbjBS+RRVHWhrMsDRiTba+sntrv5apBoyvvUFGiaZ6p9FRNcBZRvolfAzWaiRd1W
JEIaBY/n1oTjSq10aQRMlYNcSGn5Dbob1/f2hOHUpFDz8uAWBksELVnmM+NBfZmL
R+Wj1ju9ME1c5CA4qtt+ZMCx1a89fKZhnOg5Vubs/7TyaEknibobxVl/DEIgL6A7
CIjR9eWmKxKeLa+sEJrOmZJhKjlY2P76RqYZa4sFZY17avedp8aMqW/Dp3ExJQxe
bvypcbMej+dxgRkmDCK21WpBXOeIfAtYtCJpOkFu5TbbuuRM2D2zuuCEYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEzhj1m3Rh1Kwkbp00w1E7/KusA4MB8GA1UdIwQY
MBaAFDqTbS8pjmz9VmBFc9Hvng6CmbUpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQt
YjVmOGVjMGFhZDdjLzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQtYjVmOGVjMGFhZDdj
LzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABoao4mDp
+wJ5HCrZgjYLoDTMeoWnpx4oAQsjPsHxUeeJP9dsFvR6bfY9JCg0uwwOdfw4ZO/B
QpAu87S1X14sF+uD4jxBnMs+M4wu5D6jNkgBhpxWRxkNEK/Tr8qOsIJnRxfg8FPl
Po0uyQnl4bO5t0Uv/7K5/G2Z3gvxbLD+Myraf7ZC9LSxeQYLuGfuzlAVj625RlJw
OJf7ouT5JpF4K/kwab6kfWi47TJOgdq8CIQyKZMX8yXMdyAQJ9Y5uvTNiDTnLBLN
liOEd3cMjbyyiUzKX8dVNsd7IVKmX07T0ut6PaS189+fEzUFpxFCGU1Gu0nZh18m
A9vuHQKfaKawvQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 22:40:20 2026 by rpki-client