Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: G6CuWVjsVW7BtzIPyZSkh+yYYH/36+5CstII6bmP098=
Subject key identifier: F7:EA:1A:88:D5:2B:4C:E3:76:3E:A4:32:27:86:E1:A7:C5:02:6C:89
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019E1EDA401AA5C6A9BDC76CC35403B33421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 11CB
Signing time: Wed 13 May 2026 01:01:20 +0000
Manifest this update: Wed 13 May 2026 01:01:20 +0000
Manifest next update: Thu 14 May 2026 01:01:20 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: /JLGSc+WoGCr8/3gmFkYKezDMdx2VHDaVd9oN51h35I=)
2: e4qPjYtVZNjFgNgoQb6aifisJTs.roa (hash: 1M+oNLSG3cS6v1C1UyKbtqc0oXSkYgVWMgvB/761VUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:40:1a:a5:c6:a9:bd:c7:6c:c3:54:03:b3:34:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: May 13 01:01:20 2026 GMT
Not After : May 14 01:01:20 2026 GMT
Subject: CN=f7ea1a88d52b4ce3763ea4322786e1a7c5026c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f5:02:d6:e1:63:87:59:6e:f6:1d:9e:f2:92:
4a:d5:78:7e:3d:17:22:5d:3a:3e:b3:a3:d6:43:68:
bd:1c:c1:bc:7e:a4:2b:cd:76:ae:e3:03:24:f3:ae:
be:0f:94:2b:06:11:e4:6e:97:d6:ca:9a:7a:99:0a:
77:cc:3b:6a:a0:a0:d4:26:45:06:69:f8:3d:40:a2:
6d:ab:33:cc:fa:b5:1b:36:50:98:68:0d:8f:45:3f:
3c:cc:b8:d0:56:64:4a:a5:a5:25:e6:2b:9b:4d:a8:
e2:dc:23:be:6c:92:96:4f:75:d7:03:36:a6:d7:fe:
69:0d:20:b2:e6:82:28:41:9e:73:1d:aa:93:b1:e3:
9a:94:8d:26:57:7e:f4:46:57:bb:04:1a:70:95:2c:
98:aa:7f:cc:2d:24:42:5b:e8:2f:47:c8:b1:be:fc:
d9:bc:b8:6d:b0:af:50:1b:be:17:4d:3d:ce:90:5e:
d3:e5:a1:e7:cf:f7:6a:af:cc:fb:9d:ec:07:34:6e:
46:d6:58:2a:ce:b6:fc:b3:e9:cd:2b:7b:ac:1c:da:
6e:be:19:f4:34:ad:9f:a7:19:29:b1:fe:ad:c7:0f:
35:d7:bc:a1:8a:1a:b0:94:2c:89:67:a2:fa:53:2d:
ea:b1:44:71:23:fb:bd:24:99:d3:5c:98:7a:08:f2:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EA:1A:88:D5:2B:4C:E3:76:3E:A4:32:27:86:E1:A7:C5:02:6C:89
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:b4:af:13:ca:d4:ac:46:05:78:fc:96:65:d1:34:f6:d8:3b:
7d:68:9d:2f:9a:bb:7e:bb:05:5a:ef:66:c0:cf:c8:a7:8a:da:
cb:67:4f:08:16:b8:04:c3:7f:94:4d:20:d0:01:ca:83:86:ae:
9e:fb:f5:ae:f5:7e:7e:99:6b:28:55:81:3c:53:49:de:37:cb:
7d:b8:9e:2f:ba:29:f9:ca:4c:b8:2a:2f:68:58:e8:99:3d:be:
6e:cf:f4:39:ec:c4:30:03:0c:15:81:ff:42:a2:30:ca:70:3a:
6a:e1:0c:4a:62:c6:ba:ce:60:7e:e0:95:45:ac:b8:70:44:d4:
e7:31:d2:37:06:be:b3:f2:2f:70:f5:93:41:8c:84:66:94:0e:
a9:69:59:01:e3:1e:f1:a3:99:c2:8d:b1:34:94:6b:ce:c8:ce:
83:45:b3:6e:91:bc:27:14:72:1e:fb:62:a7:ac:1c:26:e8:9b:
dc:19:f8:de:49:ba:a8:96:eb:94:5a:4e:08:c8:a3:7c:a9:62:
47:c2:03:d6:79:61:2d:14:78:0d:7b:e3:e0:49:41:4c:02:8f:
8d:8c:54:8b:df:d2:6d:af:d0:55:b1:a9:6a:d5:23:83:ca:9e:
d5:2f:75:30:c2:10:79:ee:9f:1e:65:95:81:f8:bd:e7:7d:fa:
66:e4:86:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:42:42 2026 by rpki-client