Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: 6IQdBdt9ydhN1rwK8DQdy0vAGfRX39C0RcP2864abrg=
Subject key identifier: AD:71:86:F0:41:12:D5:42:CB:A3:A6:28:4C:F9:86:4D:E7:79:09:86
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019D386670D5C7B931960B5BEB910C9D5015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:02:10 +0000
Manifest this update: Sun 29 Mar 2026 07:02:10 +0000
Manifest next update: Mon 30 Mar 2026 07:02:10 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: shUCXPnwtXtTuFtr858zm5IfFfp440IMLOe2ZhPnbnE=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:70:d5:c7:b9:31:96:0b:5b:eb:91:0c:9d:50:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Mar 29 07:02:10 2026 GMT
Not After : Mar 30 07:02:10 2026 GMT
Subject: CN=ad7186f04112d542cba3a6284cf9864de7790986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:84:83:dc:42:df:2f:dd:b3:29:1f:89:94:ee:
05:32:cc:45:0e:08:58:3f:f5:6f:b7:54:fe:c2:6e:
71:85:bb:b7:48:fa:71:0f:e9:bd:2c:a2:5b:02:f1:
31:47:e6:d4:da:0c:93:84:78:cd:f7:80:ac:db:5d:
7c:21:99:5a:d3:31:5c:98:b2:1c:bf:aa:19:67:e0:
29:6e:11:b1:4a:55:67:2c:e2:ae:5a:8c:ff:4d:77:
50:03:a4:68:d5:96:b9:08:ab:2b:35:c7:aa:fe:c9:
9a:10:07:b3:c7:41:7f:3c:ed:77:1f:87:f2:e1:58:
c1:c2:4e:fd:f4:fb:10:ee:e2:e2:13:42:f9:a5:c7:
1a:c4:92:ca:30:9e:c6:32:b8:a0:8d:04:0a:7a:c3:
8d:05:bf:23:81:1a:0b:ac:d0:09:c9:00:0c:db:63:
73:a8:8e:ad:be:f7:85:80:e0:1b:d9:9c:d6:cf:d5:
c7:27:2c:cc:cd:6a:d6:47:6d:0f:b9:56:d8:4c:83:
dc:85:97:59:c8:cc:33:d6:8c:66:d5:ac:1c:72:be:
af:da:09:72:4b:44:99:d4:4d:e6:21:a8:44:72:7b:
5a:7c:22:7f:a2:91:4f:c1:8f:b2:23:5c:d6:6a:1d:
14:a1:82:c7:2d:e1:dc:bc:d2:8e:79:43:4c:4e:34:
a3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:71:86:F0:41:12:D5:42:CB:A3:A6:28:4C:F9:86:4D:E7:79:09:86
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:0c:a0:21:59:de:83:ce:42:d3:84:ef:43:79:5a:15:3e:33:
53:e0:dc:a0:19:01:52:5a:3d:3d:c8:d0:2b:d6:8c:88:02:de:
08:74:b0:ce:6b:df:9d:2d:f0:7f:14:f5:ba:34:08:b7:1b:d2:
10:d9:9f:66:49:e7:97:9b:8a:c9:33:52:5e:83:47:dd:c0:ca:
37:9e:57:98:2c:2c:89:c0:be:c0:12:df:ca:14:ba:15:e9:fc:
de:dd:c4:fa:a7:8c:31:0c:89:ce:75:fb:4f:a1:9c:96:65:c7:
9b:1a:fb:bd:6b:65:1c:32:1e:55:94:92:59:c7:92:fa:ba:bb:
a6:f6:14:60:7f:23:1f:c0:ca:15:d1:01:d0:d0:46:6c:e7:a3:
31:da:e1:b8:13:71:19:b1:29:cf:42:39:cb:9b:61:d1:f7:96:
ab:ac:e1:e2:8d:6c:a6:eb:3a:23:d8:5e:07:20:eb:fa:76:03:
7c:96:3a:2c:7f:74:3d:6e:19:21:2d:ce:d4:fb:bc:1d:be:71:
f5:4f:5c:80:39:51:93:70:73:a8:c2:0e:92:cf:76:96:99:a5:
c1:24:47:90:12:ef:d1:4a:1b:25:ee:61:e6:ff:73:d8:fd:0d:
d0:8a:df:de:5d:7d:f2:65:9c:9e:ae:c0:0d:2c:a8:0b:e5:f2:
3e:29:a5:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZnDVx7kxlgtb65EMnVAVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjYwMzI5MDcwMjEwWhcNMjYwMzMwMDcwMjEwWjAzMTEwLwYDVQQD
EyhhZDcxODZmMDQxMTJkNTQyY2JhM2E2Mjg0Y2Y5ODY0ZGU3NzkwOTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYSD3ELfL92zKR+JlO4FMsxFDghY
P/Vvt1T+wm5xhbu3SPpxD+m9LKJbAvExR+bU2gyThHjN94Cs2118IZla0zFcmLIc
v6oZZ+ApbhGxSlVnLOKuWoz/TXdQA6Ro1Za5CKsrNceq/smaEAezx0F/PO13H4fy
4VjBwk799PsQ7uLiE0L5pccaxJLKMJ7GMrigjQQKesONBb8jgRoLrNAJyQAM22Nz
qI6tvveFgOAb2ZzWz9XHJyzMzWrWR20PuVbYTIPchZdZyMwz1oxm1awccr6v2gly
S0SZ1E3mIahEcntafCJ/opFPwY+yI1zWah0UoYLHLeHcvNKOeUNMTjSjHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK1xhvBBEtVCy6OmKEz5hk3neQmGMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGAygIVne
g85C04TvQ3laFT4zU+DcoBkBUlo9PcjQK9aMiALeCHSwzmvfnS3wfxT1ujQItxvS
ENmfZknnl5uKyTNSXoNH3cDKN55XmCwsicC+wBLfyhS6Fen83t3E+qeMMQyJznX7
T6GclmXHmxr7vWtlHDIeVZSSWceS+rq7pvYUYH8jH8DKFdEB0NBGbOejMdrhuBNx
GbEpz0I5y5th0feWq6zh4o1spus6I9heByDr+nYDfJY6LH90PW4ZIS3O1Pu8Hb5x
9U9cgDlRk3BzqMIOks92lpmlwSRHkBLv0UobJe5h5v9z2P0N0Irf3l198mWcnq7A
DSyoC+XyPimltA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:38 2026 by rpki-client