Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: Z1SAUXilutPN9K8sPrMz/o39/NrTi+W2ESF7JLdK4cc=
Subject key identifier: 8C:FC:79:F8:4C:E8:F2:A0:53:1F:84:F1:4F:BC:A6:7C:64:DE:76:D6
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 019F189EA8A1BFF08F67D091E8C8ACC2A311
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 1985
Signing time: Tue 30 Jun 2026 13:01:18 +0000
Manifest this update: Tue 30 Jun 2026 13:01:18 +0000
Manifest next update: Wed 01 Jul 2026 13:01:18 +0000
Files and hashes: 1: 6vVSpTChTKj56P_S9G3QSGEzPpI.roa (hash: oBJVrXqcl3ZmvttgmWCt09AlKEv4UiFRHlZlA6agM0s=)
2: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: LqvaEeAlpmt/7RXQlvG1BHC+3ga+ymKUQ+hcknwCx44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:a8:a1:bf:f0:8f:67:d0:91:e8:c8:ac:c2:a3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Jun 30 13:01:18 2026 GMT
Not After : Jul 1 13:01:18 2026 GMT
Subject: CN=8cfc79f84ce8f2a0531f84f14fbca67c64de76d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b6:f5:55:7e:11:9a:fc:4b:c1:eb:a0:9e:c0:
90:74:65:4d:3b:5a:39:0a:df:bc:55:b5:67:15:c5:
16:3d:1a:d2:9a:bf:f8:77:f4:01:aa:16:80:23:73:
1a:65:84:1a:51:f4:cb:43:f2:1f:88:7b:76:22:87:
90:bd:b3:a2:1a:2c:07:ca:91:aa:43:08:74:9d:8a:
42:9e:f1:4b:54:17:98:c3:1a:4a:ed:cf:49:59:f0:
90:ee:4b:d4:2f:07:11:23:eb:4d:97:68:5d:9c:39:
f5:98:4e:95:9d:c5:c0:18:78:b9:f3:b1:51:3d:2f:
2b:6a:22:ca:c2:76:12:4e:2a:06:38:ae:b9:3f:20:
75:48:cc:5b:dc:a2:e5:f6:99:52:c7:bd:c6:12:71:
e7:ea:6b:af:42:15:69:7c:98:88:02:7c:3f:d6:41:
07:34:f5:d0:9c:d2:2d:de:41:e3:03:cd:91:6b:07:
43:f1:bf:b3:aa:fa:b1:4d:a7:c8:20:b4:bc:ba:e7:
5a:43:e6:5e:7b:57:53:51:58:60:96:14:95:14:bf:
d1:58:34:a8:1c:5d:21:43:3c:61:50:23:c0:c7:c3:
ce:ce:28:cd:cc:10:4d:eb:48:74:6b:37:ec:a4:f0:
4d:51:8f:7c:01:22:3f:a4:2e:b9:12:53:05:bd:0f:
3c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FC:79:F8:4C:E8:F2:A0:53:1F:84:F1:4F:BC:A6:7C:64:DE:76:D6
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d2:4b:5e:25:c8:de:7f:a1:95:8b:7b:21:98:85:b9:1f:5d:
95:99:22:b4:24:6f:0a:91:f9:23:e8:80:85:f5:06:b4:e6:75:
c9:84:da:a9:87:ff:54:13:76:8b:11:51:4e:d0:37:88:4f:a5:
9b:f4:5e:7f:01:88:50:d7:b2:9c:81:d1:81:da:ae:bf:b6:89:
f2:ce:54:1d:82:c9:04:6b:a5:22:82:dc:6b:08:e8:e7:52:6a:
4f:41:c1:c3:90:15:13:f2:56:32:c0:12:5f:ae:ea:e9:45:9d:
8d:ac:10:c8:b4:fe:d0:09:5a:8b:e6:32:7b:1f:48:88:11:55:
de:2f:2e:03:11:72:3b:61:a8:51:20:17:23:ee:93:ea:7c:6e:
cf:11:5d:00:14:4d:2a:c0:4c:61:86:33:f7:90:c9:76:5b:11:
b9:fc:af:16:b5:fb:cb:08:58:07:09:f5:0f:f6:dd:a4:a1:1e:
12:9f:57:e6:72:fc:22:92:d9:8a:31:98:66:46:39:91:cc:2a:
c1:52:f9:7d:c9:7e:85:ed:68:c1:37:47:f0:c4:29:6c:7a:f6:
0a:6f:65:6c:0c:89:fa:40:7e:79:ab:a8:8f:56:69:03:ad:6b:
6a:8a:cb:0f:89:2a:0c:60:8f:be:c6:73:58:ce:e5:07:51:b2:
c3:3a:c8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:36:41 2026 by rpki-client