Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
File: OUjkpbK65iNUmZE9y-wE38pTHpA.mft (raw, json)
Hash identifier: fSYSWwu4SZrPB4t0n6OgzgPXVjQ+9+T8vcswuuso4Uc=
Subject key identifier: 7F:D2:ED:BF:7E:04:77:FA:2D:AC:4D:C7:30:B2:35:30:C2:69:74:2B
Authority key identifier: 39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
Certificate issuer: /CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Certificate serial: 019D39098A805795D46D7D60F2ADD9887F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
Manifest number: 1761
Signing time: Sun 29 Mar 2026 10:00:19 +0000
Manifest this update: Sun 29 Mar 2026 10:00:19 +0000
Manifest next update: Mon 30 Mar 2026 10:00:19 +0000
Files and hashes: 1: OUjkpbK65iNUmZE9y-wE38pTHpA.crl (hash: 3EghENiuJf1CAGKE+ZSfW9iiguPsRuCxp7gEZ1Od4q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:8a:80:57:95:d4:6d:7d:60:f2:ad:d9:88:7f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Validity
Not Before: Mar 29 10:00:19 2026 GMT
Not After : Mar 30 10:00:19 2026 GMT
Subject: CN=7fd2edbf7e0477fa2dac4dc730b23530c269742b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:b0:30:66:c0:9e:7a:7b:82:a4:e5:68:06:
e9:03:23:32:9a:89:15:6a:7a:51:78:60:22:9f:17:
a6:44:93:86:ca:0e:26:22:c8:9a:93:6c:da:9d:0c:
82:2a:b9:fc:be:66:1d:16:45:60:17:8e:11:d3:9f:
c8:4b:e8:1d:3e:a3:fe:d8:45:fb:83:73:5d:b6:ff:
17:62:1c:e6:d4:58:84:6f:66:39:33:37:48:54:9f:
81:c2:e2:ac:75:52:2b:a3:35:34:06:c1:e2:21:db:
2d:02:d5:c1:5e:89:8f:30:7c:40:d7:3e:75:6c:4e:
7a:c8:fc:9a:1b:99:24:a8:12:a4:27:7f:79:85:f6:
da:78:83:94:52:74:87:97:39:11:5d:58:ab:05:75:
33:0d:ea:88:42:7e:e2:82:32:11:be:b4:ae:83:3d:
04:f0:64:d5:b6:8b:5e:17:6e:5c:1d:5c:ca:3b:0c:
34:1a:89:d4:60:78:01:b0:1f:17:54:e6:3a:34:ed:
af:70:2c:20:5b:2f:87:51:63:fd:84:8e:08:00:63:
44:fd:f2:8b:d5:32:c5:27:2c:2c:3b:81:2f:81:fc:
84:4c:0f:55:b9:5e:1e:32:77:c0:d8:63:8f:67:44:
f9:94:71:fe:c3:85:c9:7b:a8:e2:9d:0c:77:63:6a:
83:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D2:ED:BF:7E:04:77:FA:2D:AC:4D:C7:30:B2:35:30:C2:69:74:2B
X509v3 Authority Key Identifier:
keyid:39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:93:0f:68:b5:36:29:89:6d:6d:e1:14:6e:c5:18:74:b2:c2:
63:1e:69:c0:57:fa:8c:0b:62:ea:4f:5c:67:ab:e1:2f:c9:4c:
42:59:76:4c:8a:d1:4c:47:a2:63:92:8e:7d:a2:35:32:96:6d:
74:9a:33:d4:8c:71:e9:33:10:e4:4e:ed:c8:0e:17:a5:5c:13:
ef:b6:50:96:9f:37:e3:df:84:5e:42:29:59:2d:a2:9b:0a:81:
0f:ce:ff:b2:a6:65:56:85:e5:d8:17:8e:f8:0b:3c:94:6a:8c:
90:53:24:f0:23:60:fa:2e:cf:60:d5:ce:43:1d:15:a3:d1:73:
65:f1:16:39:75:2f:c5:e1:43:0a:45:da:0b:bd:66:ee:46:a6:
75:4a:7f:30:81:95:d8:ad:59:fb:ea:0e:98:5f:80:b4:9f:f5:
e7:e5:3b:0b:66:96:f2:af:19:a5:3b:ab:f3:21:c0:92:e7:93:
72:b4:be:29:34:f6:d3:f6:a3:d2:3d:ae:8d:21:1a:1f:95:6f:
18:ef:23:e7:f4:be:d9:c4:17:e5:65:cd:83:74:82:11:a0:a2:
3d:96:c6:13:6f:ec:48:fa:cc:b4:1d:ef:32:2e:65:40:f6:fe:
51:23:b4:75:45:fc:1c:3f:f0:92:4d:7e:c2:a3:c9:ca:ab:e2:
c3:97:47:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CYqAV5XUbX1g8q3ZiH8mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NDhlNGE1YjJiYWU2MjM1NDk5OTEzZGNiZWMwNGRmY2E1
MzFlOTAwHhcNMjYwMzI5MTAwMDE5WhcNMjYwMzMwMTAwMDE5WjAzMTEwLwYDVQQD
Eyg3ZmQyZWRiZjdlMDQ3N2ZhMmRhYzRkYzczMGIyMzUzMGMyNjk3NDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqP2wMGbAnnp7gqTlaAbpAyMymokV
anpReGAinxemRJOGyg4mIsiak2zanQyCKrn8vmYdFkVgF44R05/IS+gdPqP+2EX7
g3Ndtv8XYhzm1FiEb2Y5MzdIVJ+BwuKsdVIrozU0BsHiIdstAtXBXomPMHxA1z51
bE56yPyaG5kkqBKkJ395hfbaeIOUUnSHlzkRXVirBXUzDeqIQn7igjIRvrSugz0E
8GTVtoteF25cHVzKOww0GonUYHgBsB8XVOY6NO2vcCwgWy+HUWP9hI4IAGNE/fKL
1TLFJywsO4EvgfyETA9VuV4eMnfA2GOPZ0T5lHH+w4XJe6jinQx3Y2qDRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH/S7b9+BHf6LaxNxzCyNTDCaXQrMB8GA1UdIwQY
MBaAFDlI5KWyuuYjVJmRPcvsBN/KUx6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9iMWMzZjMtN2E0MC00MzJjLWI0MWUt
ZjY1MGU1MDdhNzZkLzEvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9iMWMzZjMtN2E0MC00MzJjLWI0MWUtZjY1MGU1MDdhNzZk
LzEvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAapMPaLU2
KYltbeEUbsUYdLLCYx5pwFf6jAti6k9cZ6vhL8lMQll2TIrRTEeiY5KOfaI1MpZt
dJoz1Ixx6TMQ5E7tyA4XpVwT77ZQlp8349+EXkIpWS2imwqBD87/sqZlVoXl2BeO
+As8lGqMkFMk8CNg+i7PYNXOQx0Vo9FzZfEWOXUvxeFDCkXaC71m7kamdUp/MIGV
2K1Z++oOmF+AtJ/15+U7C2aW8q8ZpTur8yHAkueTcrS+KTT20/aj0j2ujSEaH5Vv
GO8j5/S+2cQX5WXNg3SCEaCiPZbGE2/sSPrMtB3vMi5lQPb+USO0dUX8HD/wkk1+
wqPJyqviw5dHwA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:11 2026 by rpki-client