Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
File: OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft (raw, json)
Hash identifier: Nxarb5CdnzY2v6XD3DsQ054FKuSI9mesDEft7Bbro6s=
Subject key identifier: BD:55:53:96:B2:FB:77:AD:62:05:DA:8B:BB:A3:4F:36:D1:F4:FC:C3
Authority key identifier: 39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
Certificate issuer: /CN=39d43c26468819c07b1925115fe4921f84203d16
Certificate serial: 019F129C5F34D71610337FC505E4D0805226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
Manifest number: 1983
Signing time: Mon 29 Jun 2026 09:01:05 +0000
Manifest this update: Mon 29 Jun 2026 09:01:05 +0000
Manifest next update: Tue 30 Jun 2026 09:01:05 +0000
Files and hashes: 1: 6EaN192CjrCwlHATB-QjEseTMPI.roa (hash: gRsvMkimlDX2AdHsbVLZmaIf2SyXZuU/L2zLOOUZzvk=)
2: IHAfMYxIFJ2pmcHYjuMlA7NoPQg.asa (hash: w9lR4ON+b59p837ru2OLVhKsOC/JMVjvCSI6iRqeFUs=)
3: OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl (hash: u4JL3OLjt/ZRzaGIwH8e2WiPuFel//SqK9Zj9ewyv3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:5f:34:d7:16:10:33:7f:c5:05:e4:d0:80:52:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39d43c26468819c07b1925115fe4921f84203d16
Validity
Not Before: Jun 29 09:01:05 2026 GMT
Not After : Jun 30 09:01:05 2026 GMT
Subject: CN=bd555396b2fb77ad6205da8bbba34f36d1f4fcc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ae:69:87:fa:dd:05:52:2a:a0:b0:aa:6d:40:
84:64:6a:a4:3a:e8:83:a4:58:09:28:06:f8:57:be:
bb:fe:2c:fe:71:40:57:d5:c8:1b:32:ed:bb:12:c5:
26:ff:e2:b8:51:dc:90:c4:c7:72:1e:67:c7:e6:34:
7a:4a:75:86:b7:c9:44:f8:be:00:ba:0c:1e:b7:1d:
f6:ce:d5:3a:95:d6:26:ee:7a:27:17:b0:80:69:cf:
0a:4d:3b:ff:e2:73:cb:01:20:fe:4f:8a:2d:b6:4d:
4b:18:41:61:97:c1:5b:e4:0f:8a:cb:5f:ee:59:21:
fa:d1:a4:03:12:44:38:8c:41:b2:1f:be:d7:a6:d2:
61:85:67:3f:f8:be:16:c9:59:d9:5a:3b:3f:bd:41:
d8:0c:62:ed:c0:17:1c:12:ca:7e:38:8e:b5:06:7f:
e0:ec:d2:6e:4f:82:5f:00:32:cd:9a:d4:91:7f:3c:
60:51:23:b8:3f:44:2b:93:73:97:65:da:c6:91:60:
4b:d1:dc:91:ef:ed:3c:83:29:80:83:08:15:e2:f7:
ba:c6:c1:87:54:2d:53:16:29:71:1e:cc:aa:ac:8a:
f7:92:ad:d8:24:44:31:3b:a8:d2:e0:55:6e:a6:0f:
5e:26:f4:2d:05:d2:17:d8:fb:6a:c4:8d:d1:95:6e:
47:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:55:53:96:B2:FB:77:AD:62:05:DA:8B:BB:A3:4F:36:D1:F4:FC:C3
X509v3 Authority Key Identifier:
keyid:39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:a4:8e:96:0e:7b:4f:18:e2:7e:b5:28:3d:37:88:74:16:d7:
6d:b5:cd:2e:39:1e:9d:39:f2:b0:b7:77:d1:f6:5a:cc:3d:34:
c4:bd:2a:b1:07:d2:8b:fd:f9:7d:37:55:e6:47:84:19:1d:ec:
48:94:de:67:31:77:fb:7f:89:83:b3:19:b9:7c:a5:91:2a:b7:
5c:d5:36:14:94:92:cc:be:af:ca:4c:53:f9:45:10:37:0b:ae:
c0:f7:c6:ae:d3:82:bb:17:93:cc:62:3d:be:95:fa:10:e2:7d:
bd:c4:23:92:df:12:cb:e8:dd:56:c7:27:63:9a:d5:ae:ea:f9:
a8:83:37:f0:c6:4b:ab:99:83:ec:75:b5:de:ae:c6:dd:d6:41:
1d:64:8a:2b:ca:26:4b:20:32:8a:a8:ee:b1:46:58:57:a3:a2:
3b:73:9f:6a:c3:76:be:70:3c:62:d8:cc:c9:58:9f:29:33:34:
ee:60:9f:0d:e9:db:35:5c:6c:74:9f:62:b4:ad:67:46:1c:2e:
64:70:3e:02:29:e9:05:ab:5e:3b:f5:11:d3:ec:7f:32:5f:fa:
e8:17:cd:42:a2:54:e0:91:70:b1:a2:52:1e:72:e8:2f:22:91:
5a:94:19:6e:54:31:9d:e8:e9:e2:49:37:e5:c7:07:78:12:3f:
8a:f5:bc:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SnF801xYQM3/FBeTQgFImMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZDQzYzI2NDY4ODE5YzA3YjE5MjUxMTVmZTQ5MjFmODQy
MDNkMTYwHhcNMjYwNjI5MDkwMTA1WhcNMjYwNjMwMDkwMTA1WjAzMTEwLwYDVQQD
EyhiZDU1NTM5NmIyZmI3N2FkNjIwNWRhOGJiYmEzNGYzNmQxZjRmY2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl65ph/rdBVIqoLCqbUCEZGqkOuiD
pFgJKAb4V767/iz+cUBX1cgbMu27EsUm/+K4UdyQxMdyHmfH5jR6SnWGt8lE+L4A
ugwetx32ztU6ldYm7nonF7CAac8KTTv/4nPLASD+T4ottk1LGEFhl8Fb5A+Ky1/u
WSH60aQDEkQ4jEGyH77XptJhhWc/+L4WyVnZWjs/vUHYDGLtwBccEsp+OI61Bn/g
7NJuT4JfADLNmtSRfzxgUSO4P0Qrk3OXZdrGkWBL0dyR7+08gymAgwgV4ve6xsGH
VC1TFilxHsyqrIr3kq3YJEQxO6jS4FVupg9eJvQtBdIX2PtqxI3RlW5HpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL1VU5ay+3etYgXai7ujTzbR9PzDMB8GA1UdIwQY
MBaAFDnUPCZGiBnAexklEV/kkh+EID0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2RROEprYUlHY0I3R1NVUlgtU1NINFFnUFJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9hZmZjMDEtYTU4Zi00ZjcwLWE0MDQt
YWJmMGVhMDdlZmFmLzEvT2RROEprYUlHY0I3R1NVUlgtU1NINFFnUFJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9hZmZjMDEtYTU4Zi00ZjcwLWE0MDQtYWJmMGVhMDdlZmFm
LzEvT2RROEprYUlHY0I3R1NVUlgtU1NINFFnUFJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgqSOlg57
TxjifrUoPTeIdBbXbbXNLjkenTnysLd30fZazD00xL0qsQfSi/35fTdV5keEGR3s
SJTeZzF3+3+Jg7MZuXylkSq3XNU2FJSSzL6vykxT+UUQNwuuwPfGrtOCuxeTzGI9
vpX6EOJ9vcQjkt8Sy+jdVscnY5rVrur5qIM38MZLq5mD7HW13q7G3dZBHWSKK8om
SyAyiqjusUZYV6OiO3OfasN2vnA8YtjMyVifKTM07mCfDenbNVxsdJ9itK1nRhwu
ZHA+AinpBateO/UR0+x/Ml/66BfNQqJU4JFwsaJSHnLoLyKRWpQZblQxnejp4kk3
5ccHeBI/ivW8Vg==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:34:53 2026 by rpki-client