Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: 6jMQ+gQbtuIiao4KseGKeuFWNC/95EOvuI0r5mnMvu8=
Subject key identifier: 57:2A:8A:69:16:E1:73:7A:02:4D:61:A5:CE:79:73:5F:25:D5:28:D8
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019E30721229A10B2A6EAA6E4F4BDA94B433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0F0F
Signing time: Sat 16 May 2026 11:00:42 +0000
Manifest this update: Sat 16 May 2026 11:00:42 +0000
Manifest next update: Sun 17 May 2026 11:00:42 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: J4v0+7E1KKECjBHKeW2XTPdIM3Qa4QAulA1oGxRhW40=)
2: TbY4MLo9QmUSVk5hp07D_lX76Hc.roa (hash: GGTbtNI+aaL18L5FZQerRlg9rpMiVGf3/pLxdG5oxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:12:29:a1:0b:2a:6e:aa:6e:4f:4b:da:94:b4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: May 16 11:00:42 2026 GMT
Not After : May 17 11:00:42 2026 GMT
Subject: CN=572a8a6916e1737a024d61a5ce79735f25d528d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:b9:ed:0c:4d:a7:5a:bb:54:1e:a9:8e:e4:
83:bd:34:1c:d5:53:69:52:22:e5:c3:90:bb:cc:02:
c1:20:2f:9c:03:48:37:cf:1a:4c:13:52:81:9c:73:
0f:1c:66:51:9a:54:68:0e:3c:53:d9:f5:e6:51:4d:
9d:84:62:4f:e6:7b:4d:6f:c4:af:45:a9:9c:7b:14:
db:b4:fd:76:6d:57:09:7d:48:a2:30:7e:1e:ff:3a:
99:c0:2b:39:16:66:f0:ef:1a:f2:fd:84:58:95:1f:
09:12:9d:08:dd:a0:24:b7:17:37:88:21:47:11:b7:
b5:cc:b1:dc:21:e6:43:cb:95:43:a0:6d:e3:ec:ca:
78:cd:c5:d9:44:4a:a0:73:cd:82:0e:fe:ad:ee:56:
7e:d6:79:9e:1e:81:91:f7:30:a4:6f:12:6a:f2:8b:
8a:22:55:f4:3d:96:a7:6d:0b:05:54:93:e7:40:aa:
df:9a:0d:39:46:95:e9:71:87:48:01:34:fa:ec:fb:
da:80:65:8a:af:e1:55:24:76:48:4c:4e:0e:72:41:
d4:47:f9:9a:b1:c2:b4:c6:f6:e1:f7:06:f5:10:76:
92:1e:bc:3c:35:cd:25:91:30:ca:d7:b5:6d:3b:f8:
96:c2:42:df:65:eb:ff:d8:a5:ab:be:05:b0:32:f5:
41:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2A:8A:69:16:E1:73:7A:02:4D:61:A5:CE:79:73:5F:25:D5:28:D8
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:bd:df:a6:e7:fa:6b:a6:71:8d:1b:f7:29:eb:20:0d:aa:f1:
80:cd:c9:2a:31:a2:16:d3:67:61:9d:d1:ee:e2:34:19:ec:b9:
20:bc:d1:3a:3f:ea:5f:df:7f:44:1a:d6:62:6c:42:3f:ec:b0:
04:f7:8c:49:da:af:d1:25:d2:44:14:bb:42:8b:d0:39:35:ed:
f6:e5:07:0a:cf:bd:81:5e:2d:aa:c1:7e:47:32:33:a0:75:e9:
a4:90:cd:bb:68:83:7d:f2:a2:92:53:53:31:94:4d:37:57:d3:
ef:1a:de:0f:35:96:ac:76:e8:57:15:e2:45:ac:f0:4b:a0:65:
de:ec:5b:94:a5:46:ac:92:da:8d:98:c5:03:56:2b:ae:60:a1:
4c:3b:8f:b8:6e:54:94:70:05:69:dc:17:eb:ac:98:7a:95:ad:
71:d9:bd:ed:6a:e4:15:c1:a2:66:c0:3e:82:f0:bf:9e:81:de:
a6:3e:fc:33:78:b8:a2:b6:71:21:c2:7c:fd:af:96:15:0c:32:
2f:ca:5b:7a:19:6f:41:10:89:9b:f6:31:ce:4d:fb:02:3e:a4:
f8:61:d9:a9:a1:bf:79:9f:ad:ed:6d:d3:46:82:6b:50:8a:1e:
ae:e9:18:8b:95:05:32:36:b6:46:8f:d3:c0:30:a7:fe:b1:04:
a6:f7:75:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:23:07 2026 by rpki-client