Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: JQGBUABPMx6pIsvdi7DUw53f/CjQg9OF0liKnpyj9AA=
Subject key identifier: 5E:9A:34:19:27:57:4E:E5:9E:88:4C:F8:9E:39:99:8D:6D:F1:8D:4F
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 019E0550E495F0ADDE359AB16221EC8F582B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 1477
Signing time: Fri 08 May 2026 02:00:47 +0000
Manifest this update: Fri 08 May 2026 02:00:47 +0000
Manifest next update: Sat 09 May 2026 02:00:47 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: s/OqAZrPxxNDCaahcRYl88xy24sXY4a3J+c/tsn/bPM=)
2: wHo6ZTM3-jzipse2lB9xc8s3uRA.roa (hash: 4oFkl4sS+vN5C2DeyY08mCPgjzjmSD8SNhBeGnmU75Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 23:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:05:50:e4:95:f0:ad:de:35:9a:b1:62:21:ec:8f:58:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: May 8 02:00:47 2026 GMT
Not After : May 9 02:00:47 2026 GMT
Subject: CN=5e9a341927574ee59e884cf89e39998d6df18d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e3:a9:b4:bc:a6:24:08:20:5c:c9:b9:3b:ce:
36:79:88:25:dd:72:cf:87:c0:21:b3:f4:70:c5:55:
72:f4:a3:b2:82:23:ab:8d:8e:3c:b0:37:c4:a8:82:
04:2b:b6:79:48:46:a2:18:2d:09:a6:68:42:0c:52:
f3:0d:87:0f:ec:ef:a6:65:c2:79:a6:83:52:45:90:
a4:e0:56:ec:63:29:8f:10:6c:ed:e9:55:63:83:1f:
6a:c0:c6:7c:aa:91:c5:cc:ef:93:53:d9:9b:bf:06:
81:be:25:09:24:6f:72:16:fb:05:48:1e:c0:b4:bd:
6b:89:40:a0:16:21:df:26:c6:62:31:5e:c7:db:3e:
f0:31:a1:c0:79:14:91:c2:d0:b2:95:e8:96:cd:9c:
7f:ff:3b:b3:57:46:45:1b:ad:5b:09:ef:a8:63:e5:
e9:67:ae:81:cb:75:d7:d8:77:d2:16:ac:d5:02:40:
0f:be:e4:bb:d4:4a:8f:01:5c:44:c8:81:9b:db:7b:
cc:ed:c4:03:92:97:1e:50:72:54:0d:c1:99:2e:81:
58:57:ff:6e:bd:cf:21:02:59:1b:b0:47:8f:0a:e1:
be:6a:eb:b1:96:31:c4:e4:03:8f:86:4d:88:79:94:
2e:c8:99:8f:e0:34:1e:ce:19:bc:77:fd:f8:9b:ec:
49:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9A:34:19:27:57:4E:E5:9E:88:4C:F8:9E:39:99:8D:6D:F1:8D:4F
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:de:0c:d4:e5:f2:85:4a:d7:7d:92:eb:8f:13:2b:f9:db:c7:
df:79:c9:1c:a3:15:23:d6:d7:df:75:2b:19:85:8b:58:d3:37:
f8:70:44:c0:39:c1:65:ef:ab:03:00:09:fb:43:cd:6c:dd:1a:
07:ec:dd:f5:23:59:f2:85:65:be:6c:82:b7:94:3f:e2:1c:33:
51:fe:44:77:c8:12:fb:e6:d8:3b:81:20:eb:c2:e0:93:73:99:
3a:ee:b9:33:03:91:b1:0d:35:f0:45:77:7d:58:d6:4c:7c:52:
37:dd:67:ea:b3:52:f7:50:84:b7:d2:e0:23:f9:23:65:7b:7d:
63:a9:4b:cd:74:0c:b1:bf:a7:f3:35:d3:68:18:21:0c:c2:16:
a4:11:86:3d:bf:aa:8c:c6:d7:76:5e:e0:2a:65:51:33:f9:f5:
09:ec:a0:3d:0e:c1:d3:d2:16:ce:15:41:c1:2d:fa:c7:dc:4c:
b3:7a:a4:8f:6d:be:10:6a:4f:75:30:a5:64:2a:f5:b9:ee:a1:
48:9b:95:2b:76:8e:68:59:5c:df:7e:84:62:a3:67:f5:fb:b1:
77:85:24:03:76:c2:cf:f8:d8:23:17:de:89:f9:25:6b:2c:78:
1d:bc:40:2e:ef:be:70:e2:5f:22:cf:25:18:c0:9e:ef:8d:d3:
d9:6b:90:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 07:48:24 2026 by rpki-client