Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: LkPACNoinGTNfeIAf5ohRW9SnF1JL0GCwGqGzkCRR48=
Subject key identifier: D3:AC:60:53:B3:E3:33:15:A0:D1:28:55:6F:A8:42:F4:0B:20:29:96
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019CC44EFEC16B9C5243AFD62BF08A6F19D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 1851
Signing time: Fri 06 Mar 2026 18:00:37 +0000
Manifest this update: Fri 06 Mar 2026 18:00:37 +0000
Manifest next update: Sat 07 Mar 2026 18:00:37 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: ro1FJiV+kJJeXA8qNCDwnL4F7jkCSZ7/npbjfk34zzw=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 18:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c4:4e:fe:c1:6b:9c:52:43:af:d6:2b:f0:8a:6f:19:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: Mar 6 18:00:37 2026 GMT
Not After : Mar 7 18:00:37 2026 GMT
Subject: CN=d3ac6053b3e33315a0d128556fa842f40b202996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d7:62:6f:f6:47:2e:b3:20:89:f2:e3:ac:53:
1f:aa:a8:9e:68:e3:fc:32:e1:9b:17:8d:88:b6:3c:
f8:2c:84:70:49:2f:b7:6c:ad:10:d2:86:00:ec:0f:
2f:8d:d9:0c:a3:b9:cf:27:6f:aa:73:e3:25:9e:dd:
e0:64:a5:e4:5c:eb:4d:80:db:e0:49:b9:2b:c0:97:
1a:f8:45:e2:3c:a3:6f:f4:76:86:c7:11:5f:94:a4:
0a:d6:81:3c:50:6e:7d:6d:57:6c:5d:2e:a9:f6:a8:
81:c5:8a:73:8d:c9:c9:ac:f8:2a:70:21:34:8c:b5:
9a:5b:df:35:3e:26:ee:f2:df:c7:dc:89:a5:50:7a:
59:e4:1e:1f:7d:4c:3b:9e:2d:09:83:1e:22:7c:c3:
05:5e:c1:b5:6d:66:e4:8b:b5:cd:f3:e9:c3:6e:e1:
cb:cc:fa:e3:05:26:4b:6a:38:ef:b9:af:b5:45:15:
c3:07:ef:3f:70:a8:85:c1:f9:ee:48:6c:76:52:94:
8f:56:30:86:e2:eb:73:06:10:b9:6f:e5:2b:27:b9:
cb:ce:86:7b:2f:a9:25:1e:5f:0b:d8:8d:51:68:cb:
7e:bf:84:6e:35:62:da:7b:ec:76:09:98:df:68:b8:
b1:cb:ba:9a:db:b4:e4:da:b2:ac:f0:44:c4:23:e3:
00:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AC:60:53:B3:E3:33:15:A0:D1:28:55:6F:A8:42:F4:0B:20:29:96
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:1e:93:08:7f:4b:e4:d5:fd:70:e7:52:ba:36:d6:6a:64:c7:
0e:5a:49:c8:5c:1f:e8:cb:4f:93:6b:fd:0a:d9:07:fb:72:77:
d1:03:e5:6a:1f:d3:c3:90:7d:d7:bc:87:8d:72:9f:d7:44:76:
85:17:4f:2a:99:d8:51:52:6c:82:2a:67:7c:15:8f:ee:e4:94:
a4:b4:f5:5e:e9:f7:eb:87:59:09:4b:eb:c7:8f:c7:06:c4:02:
ed:61:98:4b:4f:d0:a8:33:3e:96:ed:49:d9:5d:b6:59:3a:31:
f1:cc:fd:70:fd:f8:e7:c1:2f:06:af:1a:65:ef:28:92:12:89:
84:46:a2:c0:51:3b:cd:8e:be:1d:33:82:71:d9:77:ed:6a:0c:
d8:4c:34:5a:da:ca:83:10:23:93:a7:c6:e8:fc:74:6f:d2:62:
47:3c:b2:dd:db:f4:10:63:12:48:51:f9:bc:a4:c5:60:df:11:
bd:0f:6a:4d:72:04:f3:f5:66:1e:bb:e8:4b:f2:e2:a8:a1:08:
b7:e3:c8:2e:32:28:bb:ed:03:5c:91:6b:46:6e:bf:c0:21:1f:
dd:6e:26:42:f4:9b:29:57:22:d0:8c:28:da:3f:74:ba:1e:ad:
9b:f1:6a:af:16:9e:9e:71:91:e9:9f:37:d2:5e:38:69:52:3a:
14:3a:28:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzETv7Ba5xSQ6/WK/CKbxnSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OWMwMzAwMzY3NTZhYjhjZGFjOTIyYjFhZjIzN2JjZTEz
NjdjZTAwHhcNMjYwMzA2MTgwMDM3WhcNMjYwMzA3MTgwMDM3WjAzMTEwLwYDVQQD
EyhkM2FjNjA1M2IzZTMzMzE1YTBkMTI4NTU2ZmE4NDJmNDBiMjAyOTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttdib/ZHLrMgifLjrFMfqqieaOP8
MuGbF42Itjz4LIRwSS+3bK0Q0oYA7A8vjdkMo7nPJ2+qc+Mlnt3gZKXkXOtNgNvg
SbkrwJca+EXiPKNv9HaGxxFflKQK1oE8UG59bVdsXS6p9qiBxYpzjcnJrPgqcCE0
jLWaW981Pibu8t/H3ImlUHpZ5B4ffUw7ni0Jgx4ifMMFXsG1bWbki7XN8+nDbuHL
zPrjBSZLajjvua+1RRXDB+8/cKiFwfnuSGx2UpSPVjCG4utzBhC5b+UrJ7nLzoZ7
L6klHl8L2I1RaMt+v4RuNWLae+x2CZjfaLixy7qa27Tk2rKs8ETEI+MAAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNOsYFOz4zMVoNEoVW+oQvQLICmWMB8GA1UdIwQY
MBaAFDicAwA2dWq4zaySKxryN7zhNnzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMt
NjcxN2I5YmFiYjM0LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMtNjcxN2I5YmFiYjM0
LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdx6TCH9L
5NX9cOdSujbWamTHDlpJyFwf6MtPk2v9CtkH+3J30QPlah/Tw5B917yHjXKf10R2
hRdPKpnYUVJsgipnfBWP7uSUpLT1Xun364dZCUvrx4/HBsQC7WGYS0/QqDM+lu1J
2V22WTox8cz9cP3458EvBq8aZe8okhKJhEaiwFE7zY6+HTOCcdl37WoM2Ew0WtrK
gxAjk6fG6Px0b9JiRzyy3dv0EGMSSFH5vKTFYN8RvQ9qTXIE8/VmHrvoS/LiqKEI
t+PILjIou+0DXJFrRm6/wCEf3W4mQvSbKVci0Iwo2j90uh6tm/FqrxaennGR6Z83
0l44aVI6FDoo4Q==
-----END CERTIFICATE-----
Generated at Sat Mar 7 00:38:03 2026 by rpki-client