Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: 7qgWCh3y8MmY3MQJcoPSYeW+VrBAtuu6JhDWzfc9tdg=
Subject key identifier: 3A:F2:D0:06:A8:07:A2:18:ED:2C:20:95:DD:F4:1B:A5:45:99:73:51
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019F18306E503137637C7287AB66AD81AE70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0F87
Signing time: Tue 30 Jun 2026 11:00:54 +0000
Manifest this update: Tue 30 Jun 2026 11:00:54 +0000
Manifest next update: Wed 01 Jul 2026 11:00:54 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: 0b2jrrpq+PKNJ1kRhAWIezIIKpHS8o2WrQcs+L5+ADU=)
2: TbY4MLo9QmUSVk5hp07D_lX76Hc.roa (hash: GGTbtNI+aaL18L5FZQerRlg9rpMiVGf3/pLxdG5oxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:6e:50:31:37:63:7c:72:87:ab:66:ad:81:ae:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Jun 30 11:00:54 2026 GMT
Not After : Jul 1 11:00:54 2026 GMT
Subject: CN=3af2d006a807a218ed2c2095ddf41ba545997351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:49:e5:d8:f7:3d:d8:5e:65:78:47:22:04:c6:
b3:70:bb:8f:b7:f4:31:b2:cb:80:03:33:7e:35:b2:
0a:36:a2:74:32:b1:d8:10:fb:e7:be:de:ca:7d:eb:
9c:b9:ac:2b:4a:28:41:56:0f:d9:b5:e1:3b:7e:c9:
99:f9:15:41:f8:ae:b0:ef:86:6d:61:d6:79:34:d6:
2b:15:74:2e:ac:aa:ce:05:a5:47:b7:71:e0:0b:9b:
bc:f2:3c:90:0e:56:9e:fa:97:3c:ad:57:02:8e:f9:
76:4f:73:bc:c2:4c:93:df:73:ff:1c:5d:99:71:b4:
64:fc:92:55:43:64:b9:3a:dc:97:14:c2:1d:43:96:
e2:0f:33:2e:a5:a6:6b:b9:b4:6a:46:db:7c:5b:0c:
7f:d4:98:7d:43:69:6c:6c:64:92:2f:8a:d1:a7:38:
9f:9c:22:3f:03:0d:05:de:da:60:43:d1:bd:8c:4a:
cb:98:b1:08:26:a3:45:78:b4:ac:d6:aa:83:6e:3d:
ba:03:bc:2c:19:f5:c1:22:5c:1c:d6:70:69:7a:ae:
21:65:34:a7:8a:36:82:f7:b4:ac:6e:e3:bd:50:1b:
c5:20:db:7b:e7:4a:10:f8:62:cc:87:5a:b3:b6:0c:
d4:f0:26:f8:4d:a1:32:eb:50:29:93:9c:c5:1d:04:
2f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F2:D0:06:A8:07:A2:18:ED:2C:20:95:DD:F4:1B:A5:45:99:73:51
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:d3:06:7c:7a:42:1f:0f:f0:85:b7:40:2e:6e:5b:86:60:cf:
ed:f1:96:4f:8c:1d:31:83:6e:ac:41:a3:0a:38:35:21:dc:76:
07:cd:af:dc:7e:26:d8:d9:0f:0f:b8:16:12:5a:34:cf:f2:8e:
16:1d:3b:fc:7f:23:1f:60:dd:81:52:8d:74:f0:42:3b:09:ec:
9f:f0:9d:2d:47:5d:8e:c1:2a:58:d2:eb:58:0c:57:68:14:83:
dc:5f:d7:24:28:88:ec:05:e4:e1:ac:3d:b4:1a:5a:7a:b7:d7:
4a:73:61:38:af:17:44:fa:eb:cc:2b:02:3a:cb:a5:a4:46:c3:
8f:4c:3c:77:09:42:36:9b:fc:c4:c7:d4:a4:23:7f:c8:b1:08:
21:32:65:06:d1:89:03:77:b9:3c:e0:fd:44:75:7b:f6:6a:68:
a5:b9:a2:9e:a1:15:35:17:51:5e:41:52:94:3b:40:96:ed:ea:
4a:a0:5b:45:f6:29:71:8e:3d:2e:3c:9d:e7:83:d7:a8:92:f7:
3b:7a:30:48:85:43:81:3d:c2:e7:be:21:75:53:10:51:fa:a9:
96:84:05:6d:6b:05:97:d3:a1:0d:95:0e:d6:54:57:34:aa:9b:
bd:e2:9f:c2:70:29:1b:b2:86:4e:ec:ca:cf:86:d4:a9:fe:b6:
ee:50:67:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:09:20 2026 by rpki-client