Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
File: OCvsQ90a_pemT1brhUx58WP6TuY.mft (raw, json)
Hash identifier: Fh4uHfh1Ts/brzov2yCD/VPSgYDoS2wHN7/XxdT35vU=
Subject key identifier: 44:03:FA:F9:1E:DA:02:D0:1F:BB:26:A1:FB:09:76:14:20:2C:14:D5
Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Certificate serial: 019E2324B299C4E947678118D105B3A65545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
Manifest number: 190B
Signing time: Wed 13 May 2026 21:01:07 +0000
Manifest this update: Wed 13 May 2026 21:01:07 +0000
Manifest next update: Thu 14 May 2026 21:01:07 +0000
Files and hashes: 1: OCvsQ90a_pemT1brhUx58WP6TuY.crl (hash: 5IIphgDOKriVNPAQ825pDqx13plxK4nT2bgxfL6zGMk=)
2: koNJsw7rhD5IJatTFzpoPL-Nrc0.roa (hash: Wndxcrvpmd8iBNHp55napUJ/eEMGTsK13AYEaJxB1y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 21:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:23:24:b2:99:c4:e9:47:67:81:18:d1:05:b3:a6:55:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Validity
Not Before: May 13 21:01:07 2026 GMT
Not After : May 14 21:01:07 2026 GMT
Subject: CN=4403faf91eda02d01fbb26a1fb097614202c14d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:dd:ab:8d:f4:67:9d:52:1f:68:34:4e:b0:91:
49:99:5b:41:b7:80:75:4a:ae:03:4f:a4:05:40:30:
87:35:7c:89:86:39:3e:19:6c:84:8a:04:95:cf:05:
11:26:2c:c2:1c:41:e4:c4:52:7b:0f:b9:08:0d:4b:
f3:e8:df:bc:f6:c8:b1:92:2c:d4:60:e3:76:e8:67:
03:cc:af:65:49:71:86:9b:d9:9a:58:9e:07:86:35:
22:b6:51:05:c1:64:d9:6b:24:17:93:b5:c6:25:88:
76:a5:db:fd:03:04:ff:94:4d:81:d1:a5:e7:98:b4:
23:38:7d:77:b0:f4:57:f6:4b:82:5b:23:a8:6d:82:
10:e9:78:0d:e6:04:a9:55:89:df:13:23:01:bc:b3:
ea:cc:9a:e7:02:3a:7f:96:9d:30:26:dc:55:81:dc:
54:70:27:df:c3:02:eb:ee:c1:9d:65:6f:28:23:7c:
0f:28:f3:65:1d:86:b6:5e:3a:02:8a:eb:66:ab:8d:
be:27:b1:06:62:7d:c2:95:28:7d:d7:a9:3b:94:87:
79:21:a6:32:b7:be:e4:77:84:f8:03:aa:a4:4a:87:
47:93:c5:26:78:da:1b:d0:6f:5f:08:b8:96:82:21:
09:df:d0:27:44:78:ef:54:87:94:cc:40:04:80:cb:
26:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:03:FA:F9:1E:DA:02:D0:1F:BB:26:A1:FB:09:76:14:20:2C:14:D5
X509v3 Authority Key Identifier:
keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:55:29:dc:9c:0a:36:1d:9f:b5:46:37:7b:f3:bd:d2:c5:51:
13:94:da:d1:b5:c5:26:65:ed:6d:67:51:08:7e:32:41:e3:fb:
48:97:c3:c8:50:48:18:db:ed:6d:42:2a:33:65:ef:d2:19:a5:
39:ff:cf:b5:26:50:ac:d3:e1:be:ea:de:ff:43:c6:8a:f2:43:
36:b4:66:9f:24:5d:68:d3:ee:51:6d:26:3a:f9:22:7e:54:3f:
db:42:82:23:85:03:ee:33:66:13:e2:53:6d:77:f7:3e:03:55:
bc:f7:a1:96:06:d0:cf:fa:8b:b5:2c:77:a6:3f:04:df:7e:11:
50:5e:8d:2b:fa:43:d5:2c:03:62:ac:dd:43:ac:95:3f:a7:91:
6c:04:44:52:e7:73:37:67:e6:f4:b2:a7:88:16:e1:eb:58:c9:
ec:0e:e1:eb:de:85:be:53:5f:7d:95:44:e4:81:9b:1d:e0:97:
c0:46:39:96:a8:87:c7:9d:f3:31:fa:23:7f:c2:55:7b:3c:b3:
b9:8b:7d:e7:ef:39:80:60:56:a7:c4:c3:e1:4b:8f:7c:ce:70:
aa:cf:13:6e:3c:ec:bd:cd:9c:db:5c:85:a5:ef:b5:35:bd:88:
16:81:29:89:d8:a9:1f:7a:91:93:ea:c5:96:a4:fc:bc:ba:47:
eb:35:49:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4jJLKZxOlHZ4EY0QWzplVFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MmJlYzQzZGQxYWZlOTdhNjRmNTZlYjg1NGM3OWYxNjNm
YTRlZTYwHhcNMjYwNTEzMjEwMTA3WhcNMjYwNTE0MjEwMTA3WjAzMTEwLwYDVQQD
Eyg0NDAzZmFmOTFlZGEwMmQwMWZiYjI2YTFmYjA5NzYxNDIwMmMxNGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmd2rjfRnnVIfaDROsJFJmVtBt4B1
Sq4DT6QFQDCHNXyJhjk+GWyEigSVzwURJizCHEHkxFJ7D7kIDUvz6N+89sixkizU
YON26GcDzK9lSXGGm9maWJ4HhjUitlEFwWTZayQXk7XGJYh2pdv9AwT/lE2B0aXn
mLQjOH13sPRX9kuCWyOobYIQ6XgN5gSpVYnfEyMBvLPqzJrnAjp/lp0wJtxVgdxU
cCffwwLr7sGdZW8oI3wPKPNlHYa2XjoCiutmq42+J7EGYn3ClSh916k7lId5IaYy
t77kd4T4A6qkSodHk8UmeNob0G9fCLiWgiEJ39AnRHjvVIeUzEAEgMsmGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQD+vke2gLQH7smofsJdhQgLBTVMB8GA1UdIwQY
MBaAFDgr7EPdGv6Xpk9W64VMefFj+k7mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2Qt
Mjc1MDk3MTFlMzdmLzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2QtMjc1MDk3MTFlMzdm
LzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN1Up3JwK
Nh2ftUY3e/O90sVRE5Ta0bXFJmXtbWdRCH4yQeP7SJfDyFBIGNvtbUIqM2Xv0hml
Of/PtSZQrNPhvure/0PGivJDNrRmnyRdaNPuUW0mOvkiflQ/20KCI4UD7jNmE+JT
bXf3PgNVvPehlgbQz/qLtSx3pj8E334RUF6NK/pD1SwDYqzdQ6yVP6eRbAREUudz
N2fm9LKniBbh61jJ7A7h696FvlNffZVE5IGbHeCXwEY5lqiHx53zMfojf8JVezyz
uYt95+85gGBWp8TD4UuPfM5wqs8Tbjzsvc2c21yFpe+1Nb2IFoEpidipH3qRk+rF
lqT8vLpH6zVJag==
-----END CERTIFICATE-----
Generated at Thu May 14 00:50:58 2026 by rpki-client