Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: ZpF7gG6NH9YsV3VQhtsxenJJP0xZGJZwqekxsiwuv0k=
Subject key identifier: A2:EB:75:CC:6E:D9:33:06:91:EE:71:7F:1A:85:8B:86:98:1E:0D:9A
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019E2F9736A51E2C3C2C48D8B5F7DB330297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 07:01:39 +0000
Manifest this update: Sat 16 May 2026 07:01:39 +0000
Manifest next update: Sun 17 May 2026 07:01:39 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: THKWNfGAJ2TkZx8TfE5GveNOcsGm7NfSeG11wD3Pi30=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:36:a5:1e:2c:3c:2c:48:d8:b5:f7:db:33:02:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: May 16 07:01:39 2026 GMT
Not After : May 17 07:01:39 2026 GMT
Subject: CN=a2eb75cc6ed9330691ee717f1a858b86981e0d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fc:2c:67:8a:b4:b8:6f:0e:09:5e:8b:5d:a9:
23:74:0b:73:63:bf:a2:c3:69:c2:c1:ae:fb:dc:06:
60:68:a9:35:92:cc:84:8a:30:35:f4:bc:c7:30:16:
18:ec:f6:32:83:75:f9:f3:27:a0:2c:21:1e:50:f8:
9e:47:8a:bf:14:71:a6:61:e0:69:86:df:31:be:f6:
ae:42:7e:dc:92:c1:5c:5e:5b:5a:03:72:94:50:ba:
a2:a7:c0:1b:86:4c:6b:60:7b:5f:61:b3:1b:f7:47:
f7:39:ba:e7:f3:1c:ef:0c:f0:e9:60:d5:50:73:ae:
38:df:43:b5:31:69:8c:c9:03:75:b1:1e:47:fd:c3:
f4:95:a2:e8:de:70:80:0c:d2:65:2f:3c:04:dd:5d:
03:2c:1d:c9:24:ea:e1:48:32:c1:8c:03:39:34:7f:
f0:72:97:f5:d8:28:81:42:a3:ef:9c:33:2b:74:ae:
30:26:61:43:bf:fa:e9:06:e3:59:14:47:a4:67:93:
2d:72:bb:56:87:9f:dc:6d:47:97:0c:ba:00:6e:b9:
47:bf:aa:03:7c:4b:0e:59:28:37:af:ec:08:c5:6c:
ef:19:0f:62:d3:e7:44:69:34:ba:f1:13:54:9a:c0:
4c:2c:23:84:15:ec:6a:25:e8:ee:2b:33:7c:ce:14:
1f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EB:75:CC:6E:D9:33:06:91:EE:71:7F:1A:85:8B:86:98:1E:0D:9A
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:5f:05:42:f8:91:03:ea:03:cc:4e:3c:17:8b:36:90:96:76:
fb:e4:8c:e4:72:b1:8e:60:de:db:5c:0f:85:d4:54:1d:aa:72:
ba:1e:4a:73:a4:1c:24:95:dc:60:39:5b:39:62:96:0a:7e:09:
74:30:a8:96:15:86:2a:a4:3b:99:54:3c:b3:9b:f8:ee:7d:23:
c4:1f:5d:e5:47:ed:54:dd:a1:c1:26:4f:ae:36:86:f4:8f:b1:
d8:d9:60:20:ab:2d:0d:d9:7a:5b:68:fa:50:ca:bc:39:27:66:
1f:30:ee:f5:08:2e:19:2f:38:b0:ff:38:b4:cd:b7:bb:b0:8e:
f7:78:61:eb:6f:bb:00:1a:27:07:be:15:58:f3:34:d7:d5:60:
22:db:51:67:88:b1:7c:3a:5f:ad:8f:55:9f:6f:b9:38:af:48:
83:44:ad:9e:fc:5b:ed:a7:89:e8:e8:11:53:90:47:49:e9:59:
be:da:04:24:c4:2f:ef:fc:60:67:e1:dd:47:fb:81:5f:29:26:
9a:b5:1d:84:5f:c5:e3:2c:55:c0:11:ad:6d:0c:61:13:6d:0b:
89:d0:cd:2e:69:d8:88:fd:2b:29:b7:43:cb:cb:32:4e:8f:39:
65:67:a5:48:08:c4:26:41:27:62:b1:ae:c1:91:2b:4a:51:6f:
79:4d:59:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:37:09 2026 by rpki-client