Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: skS4DfwwiQZx3wbSFynHdWpV4raPP2UMvf/QXScg3cs=
Subject key identifier: 5E:5E:68:93:BE:CB:7E:52:99:1A:03:AF:8B:E7:C0:7E:3A:F8:C9:8B
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 019EEEFE0B30320C732B945CAF3DC7CADC28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 14F0
Signing time: Mon 22 Jun 2026 11:01:26 +0000
Manifest this update: Mon 22 Jun 2026 11:01:26 +0000
Manifest next update: Tue 23 Jun 2026 11:01:26 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: fXgd8k3pkjhVRmNNTX8+PHX5VujtjgC9BudtCclJEdc=)
2: wHo6ZTM3-jzipse2lB9xc8s3uRA.roa (hash: 4oFkl4sS+vN5C2DeyY08mCPgjzjmSD8SNhBeGnmU75Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:fe:0b:30:32:0c:73:2b:94:5c:af:3d:c7:ca:dc:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Jun 22 11:01:26 2026 GMT
Not After : Jun 23 11:01:26 2026 GMT
Subject: CN=5e5e6893becb7e52991a03af8be7c07e3af8c98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fb:76:cf:92:2d:1b:84:cb:62:32:39:41:cc:
56:b0:51:38:a6:9c:f7:78:4c:a1:3f:48:54:0d:b2:
6b:0f:03:49:b6:7e:30:05:2c:cf:18:b6:f5:55:97:
04:31:f4:b9:2f:26:38:ed:f9:fe:6b:e0:22:8a:b9:
c8:8b:31:d3:9a:b4:c4:d4:3a:b7:39:51:01:19:4d:
d9:d9:7c:7c:dc:5f:68:6d:60:93:45:b8:28:e3:fd:
50:8e:79:b6:40:00:93:09:67:2b:94:21:e1:a4:40:
24:76:46:76:61:b6:05:fc:43:49:bd:c9:57:90:7e:
19:88:9d:b4:ce:7a:f0:5a:36:45:70:8a:be:18:37:
18:d7:a2:39:59:94:15:5e:e4:0c:25:ff:0f:f7:20:
30:d3:9f:e4:84:55:c4:57:47:91:c7:9b:61:eb:dd:
2b:fa:92:00:a6:c7:f7:a7:9d:ba:3d:93:dc:59:f8:
d5:70:fd:b3:2c:08:38:85:bc:d9:2f:b1:38:cc:78:
6b:5b:9b:a1:71:70:98:70:ac:6d:69:fc:2d:58:67:
26:ae:7d:28:4f:95:b8:d5:d4:2f:b5:a8:19:f2:fb:
f1:54:a1:eb:78:8a:c5:96:e4:a7:c5:fb:30:4a:b6:
5d:63:7f:6e:78:90:59:a4:45:26:ec:58:73:4f:46:
aa:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5E:68:93:BE:CB:7E:52:99:1A:03:AF:8B:E7:C0:7E:3A:F8:C9:8B
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:54:fa:3b:9f:b8:e5:9b:36:f9:bf:f4:5b:d7:42:a8:54:04:
bf:ca:58:05:ee:aa:2f:b5:27:a2:8f:cc:cf:2d:51:b0:20:b0:
7a:ee:ff:9b:eb:0d:15:57:cb:9c:84:f8:6c:20:13:4f:c2:73:
17:6c:cb:0d:0e:ea:6b:28:5c:d7:b3:58:26:d4:be:aa:c6:41:
90:36:75:86:62:df:2b:89:26:89:4b:c2:6f:f3:89:10:fb:57:
b5:c6:51:49:b8:5e:1b:8a:91:00:2a:1c:78:bf:7b:e0:cf:77:
7a:97:b2:6d:a0:b2:4f:37:86:77:fd:46:86:16:3d:fe:d2:dd:
c4:b9:17:c7:c2:d1:e6:5e:ed:ff:38:7a:60:75:86:1b:4b:69:
03:c3:4c:01:38:d0:ed:4e:16:24:b2:85:f2:4c:f6:3f:56:f0:
51:e1:1e:7a:77:a3:a2:ce:8e:ae:8a:79:97:9b:3f:48:d6:21:
c3:66:62:1d:ea:e6:5e:16:e7:2b:bb:95:b0:2d:4a:dd:87:c4:
26:8e:71:80:24:01:0f:16:37:fe:60:0e:6d:1b:0f:9b:15:85:
af:6b:70:cc:f2:80:4c:19:bf:9c:c9:16:e0:99:8c:32:cb:a7:
b2:ef:a5:5d:fd:47:0f:71:18:b2:0f:68:98:fd:dc:42:50:06:
cf:90:bf:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7u/gswMgxzK5Rcrz3HytwoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2
YmJlZTIwHhcNMjYwNjIyMTEwMTI2WhcNMjYwNjIzMTEwMTI2WjAzMTEwLwYDVQQD
Eyg1ZTVlNjg5M2JlY2I3ZTUyOTkxYTAzYWY4YmU3YzA3ZTNhZjhjOThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Pt2z5ItG4TLYjI5QcxWsFE4ppz3
eEyhP0hUDbJrDwNJtn4wBSzPGLb1VZcEMfS5LyY47fn+a+AiirnIizHTmrTE1Dq3
OVEBGU3Z2Xx83F9obWCTRbgo4/1Qjnm2QACTCWcrlCHhpEAkdkZ2YbYF/ENJvclX
kH4ZiJ20znrwWjZFcIq+GDcY16I5WZQVXuQMJf8P9yAw05/khFXEV0eRx5th690r
+pIApsf3p526PZPcWfjVcP2zLAg4hbzZL7E4zHhrW5uhcXCYcKxtafwtWGcmrn0o
T5W41dQvtagZ8vvxVKHreIrFluSnxfswSrZdY39ueJBZpEUm7FhzT0aqHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5eaJO+y35SmRoDr4vnwH46+MmLMB8GA1UdIwQY
MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt
ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5
LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANlT6O5+4
5Zs2+b/0W9dCqFQEv8pYBe6qL7Unoo/Mzy1RsCCweu7/m+sNFVfLnIT4bCATT8Jz
F2zLDQ7qayhc17NYJtS+qsZBkDZ1hmLfK4kmiUvCb/OJEPtXtcZRSbheG4qRACoc
eL974M93epeybaCyTzeGd/1GhhY9/tLdxLkXx8LR5l7t/zh6YHWGG0tpA8NMATjQ
7U4WJLKF8kz2P1bwUeEeenejos6Orop5l5s/SNYhw2ZiHermXhbnK7uVsC1K3YfE
Jo5xgCQBDxY3/mAObRsPmxWFr2twzPKATBm/nMkW4JmMMsunsu+lXf1HD3EYsg9o
mP3cQlAGz5C/5A==
-----END CERTIFICATE-----
Generated at Mon Jun 22 12:54:56 2026 by rpki-client