Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: +7DK+Le6FRv1cxHLpVVNc+Nba6a8iwbdA2frMz16PtI=
Subject key identifier: 06:C8:84:B1:95:7E:51:CC:2E:45:02:9C:12:C0:B0:56:33:B6:DA:03
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019F175579C299ECE7A7DE889B4F50D1EE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 07:01:45 +0000
Manifest this update: Tue 30 Jun 2026 07:01:45 +0000
Manifest next update: Wed 01 Jul 2026 07:01:45 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: dK54WODi47FNM/IS8BwwFsp4J648xA+bVu67gQknTKg=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:79:c2:99:ec:e7:a7:de:88:9b:4f:50:d1:ee:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Jun 30 07:01:45 2026 GMT
Not After : Jul 1 07:01:45 2026 GMT
Subject: CN=06c884b1957e51cc2e45029c12c0b05633b6da03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e8:fc:c0:0b:fe:07:48:41:7b:55:cf:e3:1a:
de:a3:4e:b2:be:1a:af:e5:8a:88:fc:33:e6:0d:75:
a9:cc:c7:b3:c9:58:84:b2:d1:bc:e6:72:3b:30:58:
fe:3a:23:43:dd:0b:4f:0b:5a:24:de:33:0f:2e:73:
78:e6:d3:7b:df:55:57:be:66:6e:ed:a9:d0:6d:7c:
f6:f2:9e:2a:e4:64:24:db:34:e3:8a:95:76:5a:8a:
3b:d8:8e:8b:b6:6d:db:57:25:bf:39:db:5d:49:39:
74:05:d4:90:d8:40:40:25:da:47:1a:74:50:b6:4d:
3b:79:8a:5e:14:b6:15:a9:49:64:74:f7:94:63:59:
7b:c1:e2:43:77:f2:68:70:79:6c:62:d3:ba:b6:4f:
f7:2c:04:b7:24:65:60:29:ff:61:d9:54:f9:c8:bd:
bb:70:f2:e6:2e:9f:52:7e:19:80:4a:fa:7a:bc:43:
66:af:7a:84:5c:32:15:95:40:b2:c8:f3:84:1c:ec:
63:38:31:f3:f2:fb:fa:34:63:c0:ce:06:9c:a2:61:
d0:20:5a:f7:df:ac:5e:af:6d:8b:67:1f:ec:f1:67:
b5:d8:b2:41:42:8f:37:a2:d7:72:53:27:67:6c:21:
65:86:b0:60:e4:a4:c4:80:47:f9:df:e8:64:ae:3e:
f1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C8:84:B1:95:7E:51:CC:2E:45:02:9C:12:C0:B0:56:33:B6:DA:03
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:46:29:db:79:d9:f6:fc:06:32:c8:ff:c4:62:02:3c:69:b1:
63:02:ea:9b:d3:d9:a2:4e:53:83:dd:10:79:82:d9:c1:cd:73:
71:e2:6f:94:d0:4b:24:5a:83:0c:13:2a:f9:dd:cf:bb:4f:90:
d6:fe:7e:2e:92:d8:7c:71:12:00:98:b4:ad:96:02:cd:00:d6:
c8:2e:2b:c6:63:e3:04:86:8d:4e:09:6f:cf:5a:65:28:3c:21:
97:2e:a8:52:83:0a:d4:86:fe:24:34:0f:80:5f:84:ed:30:62:
da:05:bb:40:fd:28:8c:9a:cd:79:a5:c1:39:0a:fc:cd:ae:5c:
2d:f0:34:62:32:36:58:52:e5:37:43:f4:3b:b1:3a:b2:2d:85:
6b:58:e1:e5:52:ef:72:93:d3:73:b1:ac:ca:7c:77:08:6d:68:
16:81:f9:bc:06:36:56:9a:10:c1:bc:84:59:d9:a7:f8:7a:e7:
ba:58:1e:39:4f:d3:88:53:ed:a1:f2:f8:76:10:d8:30:ed:9a:
40:90:f5:23:5e:90:ed:5f:e5:78:a0:53:33:4a:cf:e5:dc:b3:
e9:1e:59:34:9c:a4:d2:3d:88:be:06:41:29:86:fa:2a:8e:f0:
bf:66:84:dd:11:75:a3:bd:97:f9:4e:52:d5:09:b9:d5:49:2d:
40:fe:04:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8XVXnCmeznp96Im09Q0e4kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjYwNjMwMDcwMTQ1WhcNMjYwNzAxMDcwMTQ1WjAzMTEwLwYDVQQD
EygwNmM4ODRiMTk1N2U1MWNjMmU0NTAyOWMxMmMwYjA1NjMzYjZkYTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArej8wAv+B0hBe1XP4xreo06yvhqv
5YqI/DPmDXWpzMezyViEstG85nI7MFj+OiND3QtPC1ok3jMPLnN45tN731VXvmZu
7anQbXz28p4q5GQk2zTjipV2Woo72I6Ltm3bVyW/OdtdSTl0BdSQ2EBAJdpHGnRQ
tk07eYpeFLYVqUlkdPeUY1l7weJDd/JocHlsYtO6tk/3LAS3JGVgKf9h2VT5yL27
cPLmLp9SfhmASvp6vENmr3qEXDIVlUCyyPOEHOxjODHz8vv6NGPAzgacomHQIFr3
36xer22LZx/s8We12LJBQo83otdyUydnbCFlhrBg5KTEgEf53+hkrj7xsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAbIhLGVflHMLkUCnBLAsFYzttoDMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeEYp23nZ
9vwGMsj/xGICPGmxYwLqm9PZok5Tg90QeYLZwc1zceJvlNBLJFqDDBMq+d3Pu0+Q
1v5+LpLYfHESAJi0rZYCzQDWyC4rxmPjBIaNTglvz1plKDwhly6oUoMK1Ib+JDQP
gF+E7TBi2gW7QP0ojJrNeaXBOQr8za5cLfA0YjI2WFLlN0P0O7E6si2Fa1jh5VLv
cpPTc7Gsynx3CG1oFoH5vAY2VpoQwbyEWdmn+HrnulgeOU/TiFPtofL4dhDYMO2a
QJD1I16Q7V/leKBTM0rP5dyz6R5ZNJyk0j2IvgZBKYb6Ko7wv2aE3RF1o72X+U5S
1Qm51UktQP4ERA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:22:18 2026 by rpki-client