Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: l7VfwZH6IqUe4j4k8FuTh0O0l3yqeFs90gTasfjd1fc=
Subject key identifier: EF:23:38:BB:ED:C6:C6:BF:07:41:B4:F2:A8:4C:55:F0:4F:8A:16:3E
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 019D281702EF97AC25D1BA2FBD452DE3AA71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 05DD
Signing time: Thu 26 Mar 2026 03:01:29 +0000
Manifest this update: Thu 26 Mar 2026 03:01:29 +0000
Manifest next update: Fri 27 Mar 2026 03:01:29 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: nVEeyfpDUPkU8/3L8aR56eLk0wXMqy5Y92PYhcK46as=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:17:02:ef:97:ac:25:d1:ba:2f:bd:45:2d:e3:aa:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Mar 26 03:01:29 2026 GMT
Not After : Mar 27 03:01:29 2026 GMT
Subject: CN=ef2338bbedc6c6bf0741b4f2a84c55f04f8a163e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b0:75:20:fa:f5:6b:cc:73:a9:69:59:7b:ba:
a8:51:6d:b8:c9:b7:39:8a:9d:8f:6f:51:50:50:74:
8f:76:a0:7d:dd:c1:5f:2d:3e:6b:dd:8f:5d:33:28:
17:c7:56:5a:f1:82:c1:8b:fa:6f:95:f5:4e:71:c0:
74:8d:fa:f6:c9:71:21:bd:6a:6e:49:9f:aa:a8:ea:
49:5b:2d:48:2b:c1:38:f4:0a:92:3e:68:f3:40:2e:
1d:77:ce:59:a8:88:18:51:03:7d:66:09:cb:27:68:
4d:01:22:87:b7:95:46:01:29:31:4f:11:e8:87:7a:
96:7c:52:0c:29:77:ce:54:89:5b:1e:77:cc:c6:9c:
58:f8:89:49:21:82:97:58:6e:e0:6f:32:95:1d:40:
5f:0c:87:1f:01:0c:d0:65:c9:b9:b5:85:f2:d2:75:
2f:fb:8c:ef:65:b0:a1:d7:51:d0:57:30:37:27:7b:
aa:82:27:50:5a:bb:00:30:32:0c:92:86:9b:23:f2:
fd:98:a2:92:61:d0:6e:61:c3:15:12:c8:62:90:ca:
ff:f3:31:b2:f0:14:03:59:dc:8d:38:0c:77:f2:48:
8d:3b:6c:49:d8:15:44:0d:38:bd:98:2c:d3:63:62:
bf:81:43:24:89:ea:9c:5c:61:8e:fb:59:4f:a1:c2:
cb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:23:38:BB:ED:C6:C6:BF:07:41:B4:F2:A8:4C:55:F0:4F:8A:16:3E
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:44:bd:c4:19:62:1b:f2:bb:49:5a:ca:b1:b6:00:35:30:dd:
4c:40:30:39:44:b9:f8:9a:c6:65:ff:9c:b4:5d:61:58:87:e5:
c5:ec:9c:5a:b2:61:e6:a3:d3:7f:3b:73:5d:29:8c:20:bc:92:
5f:8c:14:84:2c:17:15:d2:d8:88:f7:2b:09:31:1c:fe:62:20:
a4:95:b2:1d:3f:4a:7d:8c:3c:16:cc:31:a0:6a:91:be:eb:96:
a6:df:17:5b:17:5e:dd:41:5b:56:ef:24:49:bc:b9:5e:1a:a5:
4e:7b:3c:16:58:7f:76:33:6b:32:0a:0e:30:cc:3e:6e:a2:be:
f1:a5:11:89:ee:c0:05:39:88:96:ef:c6:17:d3:e9:c9:8b:84:
1c:9c:d0:e5:55:b3:20:d9:93:17:12:8f:4c:3b:b8:d5:6d:50:
05:7d:2e:b9:15:fc:00:19:34:4d:88:7d:c6:bc:07:bc:55:8e:
1c:b0:66:57:e6:27:69:03:e7:ac:64:df:3d:40:ff:a5:74:92:
02:39:e4:ca:34:61:77:a8:f4:1c:20:f0:67:64:1c:b8:24:15:
b5:ec:01:a0:ba:f8:db:09:b3:23:c8:78:37:db:85:a9:49:66:
be:eb:a8:e7:3b:48:82:82:d2:5c:bd:f8:c1:ae:75:6d:21:0c:
ba:13:52:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFwLvl6wl0bovvUUt46pxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZWY0YWE1OTc3ZjFmMzcxMzNlNzMxMDgwOWZmZjg5MzVj
MGM4YmMwHhcNMjYwMzI2MDMwMTI5WhcNMjYwMzI3MDMwMTI5WjAzMTEwLwYDVQQD
EyhlZjIzMzhiYmVkYzZjNmJmMDc0MWI0ZjJhODRjNTVmMDRmOGExNjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrB1IPr1a8xzqWlZe7qoUW24ybc5
ip2Pb1FQUHSPdqB93cFfLT5r3Y9dMygXx1Za8YLBi/pvlfVOccB0jfr2yXEhvWpu
SZ+qqOpJWy1IK8E49AqSPmjzQC4dd85ZqIgYUQN9ZgnLJ2hNASKHt5VGASkxTxHo
h3qWfFIMKXfOVIlbHnfMxpxY+IlJIYKXWG7gbzKVHUBfDIcfAQzQZcm5tYXy0nUv
+4zvZbCh11HQVzA3J3uqgidQWrsAMDIMkoabI/L9mKKSYdBuYcMVEshikMr/8zGy
8BQDWdyNOAx38kiNO2xJ2BVEDTi9mCzTY2K/gUMkieqcXGGO+1lPocLLYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO8jOLvtxsa/B0G08qhMVfBPihY+MB8GA1UdIwQY
MBaAFDnvSqWXfx83Ez5zEICf/4k1wMi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYt
ZTdkNWZjZTZiZmFjLzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYtZTdkNWZjZTZiZmFj
LzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqkS9xBli
G/K7SVrKsbYANTDdTEAwOUS5+JrGZf+ctF1hWIflxeycWrJh5qPTfztzXSmMILyS
X4wUhCwXFdLYiPcrCTEc/mIgpJWyHT9KfYw8FswxoGqRvuuWpt8XWxde3UFbVu8k
Sby5XhqlTns8Flh/djNrMgoOMMw+bqK+8aURie7ABTmIlu/GF9PpyYuEHJzQ5VWz
INmTFxKPTDu41W1QBX0uuRX8ABk0TYh9xrwHvFWOHLBmV+YnaQPnrGTfPUD/pXSS
AjnkyjRhd6j0HCDwZ2QcuCQVtewBoLr42wmzI8h4N9uFqUlmvuuo5ztIgoLSXL34
wa51bSEMuhNS5w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:47 2026 by rpki-client