Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: gnmha1k6CaULBPXotKz2Jldfj+nnpp0oOk/1HzTkifE=
Subject key identifier: 7C:1D:FD:CB:1F:13:74:75:27:CF:3F:FD:65:A8:0E:6F:EB:DC:90:46
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019EECA1FEA2570D6D4D76325DE4313BE97E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1976
Signing time: Mon 22 Jun 2026 00:01:39 +0000
Manifest this update: Mon 22 Jun 2026 00:01:39 +0000
Manifest next update: Tue 23 Jun 2026 00:01:39 +0000
Files and hashes: 1: LKfnJFP3stLPWkjsWhakvnaxplg.roa (hash: 3FNKamFL0cuW1/UK40gTZTnTQ2szlVWiH3Kqp5bB2Jc=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: NiadmBfnL2VxJV3e1q2U53drQfyjau6Kvg+43L7F3v0=)
3: pAVHO7_V8_WbgzBWy08ggfwQNzk.roa (hash: 48s+jx2jfE5/9tkGuym26/yfL1pMIBfKiFkYHtTjWO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 20:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ec:a1:fe:a2:57:0d:6d:4d:76:32:5d:e4:31:3b:e9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Jun 22 00:01:39 2026 GMT
Not After : Jun 23 00:01:39 2026 GMT
Subject: CN=7c1dfdcb1f13747527cf3ffd65a80e6febdc9046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1e:80:4e:80:14:33:1e:8e:53:00:71:21:b1:
8f:2d:f9:fb:db:75:cb:ce:73:1a:4f:e3:a7:10:9d:
6d:56:f7:19:f3:d3:81:c4:28:b9:db:5e:0c:c7:fe:
84:9f:2f:78:c9:21:db:a0:1c:23:fd:82:69:f9:03:
ee:6b:d7:bb:31:ed:b4:09:10:8a:46:1f:55:e3:c8:
66:c1:7b:1d:22:d9:21:94:49:57:fd:17:30:2b:22:
95:50:de:d1:51:92:85:bc:c1:f4:72:b8:d4:38:67:
5f:cc:4e:ca:a0:2c:4f:3b:af:f1:38:21:c8:0f:d9:
93:88:c3:5e:38:55:81:df:22:d3:8c:00:db:1c:46:
93:bf:e4:42:5a:6b:3d:cd:ec:4d:68:6c:68:a2:93:
d5:0c:3d:79:81:2f:f7:f5:68:9a:c7:17:9d:10:ab:
2e:d0:ca:0d:30:bd:e3:62:42:fa:ce:6b:80:ff:b2:
0f:7c:41:23:4f:0b:56:e8:a7:2f:f6:69:b5:09:ed:
e4:00:1a:58:ad:bb:42:fa:b7:2a:de:99:ab:df:75:
fb:05:34:7d:db:d6:9b:51:a3:75:e5:a1:a0:49:54:
9e:da:b2:8e:65:b5:d0:4a:f7:7d:3b:fa:10:22:c4:
57:b4:0e:f0:5b:24:ea:b4:4d:22:dc:6b:30:29:16:
23:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1D:FD:CB:1F:13:74:75:27:CF:3F:FD:65:A8:0E:6F:EB:DC:90:46
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:a2:5c:79:f9:bf:ef:9e:47:f9:bc:75:0c:5a:29:2f:65:ae:
5b:c0:37:25:af:40:5e:18:e9:33:44:38:c0:52:37:cb:e8:75:
73:1a:7d:01:c9:70:a5:29:d9:11:f2:f1:b4:1f:75:af:94:91:
01:1a:be:8e:ea:88:63:59:11:37:27:8f:22:23:c7:fd:04:f7:
dc:4d:64:28:fd:1a:9e:0a:2e:09:2f:b4:98:76:ec:71:a3:cb:
cb:52:38:91:70:3b:43:67:39:fd:f6:93:cf:79:4d:1e:63:0e:
2b:45:e3:a0:fe:17:1d:6c:41:e4:1d:08:d3:91:90:ec:c6:9c:
b3:63:da:4c:b2:d2:08:31:3f:2d:c6:e3:07:e9:29:ed:e0:7c:
5a:ab:c8:47:f4:29:36:2f:29:18:a1:a6:11:59:7c:4b:4a:76:
6e:59:b8:13:5b:db:83:c4:3e:7a:f4:ae:23:e0:32:89:cc:72:
a5:e1:b0:a3:9b:84:02:b3:ec:cf:2f:93:32:1f:d8:5e:9e:00:
c0:fd:44:0b:72:27:63:2f:63:52:9f:56:80:a8:2a:44:e9:1b:
75:79:b5:51:e5:d9:47:18:39:3f:4b:89:73:ee:40:50:29:bc:
25:94:f3:e1:fc:c3:dd:b7:4d:29:df:db:6b:43:25:9d:f3:88:
92:5a:4a:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7sof6iVw1tTXYyXeQxO+l+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjYwNjIyMDAwMTM5WhcNMjYwNjIzMDAwMTM5WjAzMTEwLwYDVQQD
Eyg3YzFkZmRjYjFmMTM3NDc1MjdjZjNmZmQ2NWE4MGU2ZmViZGM5MDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxB6AToAUMx6OUwBxIbGPLfn723XL
znMaT+OnEJ1tVvcZ89OBxCi5214Mx/6Eny94ySHboBwj/YJp+QPua9e7Me20CRCK
Rh9V48hmwXsdItkhlElX/RcwKyKVUN7RUZKFvMH0crjUOGdfzE7KoCxPO6/xOCHI
D9mTiMNeOFWB3yLTjADbHEaTv+RCWms9zexNaGxoopPVDD15gS/39WiaxxedEKsu
0MoNML3jYkL6zmuA/7IPfEEjTwtW6Kcv9mm1Ce3kABpYrbtC+rcq3pmr33X7BTR9
29abUaN15aGgSVSe2rKOZbXQSvd9O/oQIsRXtA7wWyTqtE0i3GswKRYjvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwd/csfE3R1J88//WWoDm/r3JBGMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2KJcefm/
755H+bx1DFopL2WuW8A3Ja9AXhjpM0Q4wFI3y+h1cxp9AclwpSnZEfLxtB91r5SR
ARq+juqIY1kRNyePIiPH/QT33E1kKP0angouCS+0mHbscaPLy1I4kXA7Q2c5/faT
z3lNHmMOK0XjoP4XHWxB5B0I05GQ7Macs2PaTLLSCDE/LcbjB+kp7eB8WqvIR/Qp
Ni8pGKGmEVl8S0p2blm4E1vbg8Q+evSuI+AyicxypeGwo5uEArPszy+TMh/YXp4A
wP1EC3InYy9jUp9WgKgqROkbdXm1UeXZRxg5P0uJc+5AUCm8JZTz4fzD3bdNKd/b
a0MlnfOIklpKgQ==
-----END CERTIFICATE-----
Generated at Mon Jun 22 05:10:07 2026 by rpki-client