Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: uwlghPR5u8A4eCS0oNzf3hkQy6KU9kZOSPWW1tCXQiE=
Subject key identifier: 6C:37:6F:E8:E8:19:25:3E:80:0B:16:73:19:C9:05:57:9C:A2:96:EB
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019D378935F329F727C90531C56EC8428B15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 03:00:32 +0000
Manifest this update: Sun 29 Mar 2026 03:00:32 +0000
Manifest next update: Mon 30 Mar 2026 03:00:32 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: EDOlO+Nnrb6Mq2mwg/URr6mcB1HizztJdF+kkTmwLeU=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:35:f3:29:f7:27:c9:05:31:c5:6e:c8:42:8b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Mar 29 03:00:32 2026 GMT
Not After : Mar 30 03:00:32 2026 GMT
Subject: CN=6c376fe8e819253e800b167319c905579ca296eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:53:66:b9:d7:2d:37:12:39:19:f3:39:f2:bd:
24:95:15:28:51:af:4d:25:eb:fe:51:db:48:aa:85:
c1:ef:57:32:d2:28:2d:a4:d0:dd:b4:1f:92:88:f6:
99:63:8c:bb:b2:12:d1:16:75:45:62:8d:11:37:59:
c2:3f:23:15:37:06:87:a1:da:c0:c2:95:e5:3e:5a:
f4:5e:49:c0:54:85:68:98:bf:a1:7e:d2:48:af:f2:
a1:dd:5d:41:a4:68:97:a9:c9:ac:64:48:6b:72:a6:
54:10:54:54:3f:5f:f5:7b:94:e5:44:87:c1:6a:e7:
85:bd:4e:0f:b3:a7:7a:a2:6c:aa:87:c9:7e:85:17:
f9:f5:b5:8c:f1:85:f7:37:9e:6e:f5:7f:10:d8:ba:
4f:1a:90:3d:30:c5:43:58:28:30:e9:e5:32:b7:bf:
e6:a0:bd:7c:8e:a7:f7:cb:8d:66:d2:86:3a:89:72:
cd:19:51:4d:83:73:b4:b2:ea:03:df:55:33:09:54:
25:95:b8:f3:ba:c1:ba:2b:13:3c:db:8f:94:25:15:
87:7b:64:64:e5:3f:a7:60:4a:26:92:fb:ae:b4:c6:
38:67:5e:f4:f9:34:c5:a5:03:cb:c4:70:bb:c0:01:
0d:7f:72:65:cb:ec:10:d3:e3:be:5e:37:1c:6b:ee:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:37:6F:E8:E8:19:25:3E:80:0B:16:73:19:C9:05:57:9C:A2:96:EB
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:ab:32:0e:45:f1:03:cb:b5:20:b0:1f:54:ca:cd:ce:a8:a8:
ea:4f:e7:28:e4:14:45:71:41:c0:7c:95:2d:51:31:c3:68:38:
22:c2:5a:fc:c9:9b:0b:8d:bd:52:e6:99:9a:5b:47:81:3f:1d:
1c:11:da:00:3f:b7:ed:f3:8f:95:56:6c:1c:30:c6:dc:6d:ac:
a6:a2:94:62:32:81:bc:96:4a:cf:59:97:9b:b4:87:5c:1d:06:
60:91:f1:d6:75:8c:ca:0f:1a:fe:98:c5:b9:4a:0a:51:f4:b5:
f3:e5:14:a3:16:9b:60:9f:8a:45:9b:b8:cf:e4:9e:c4:03:90:
09:ba:76:cd:5f:fc:ad:2f:16:c5:ce:6f:2e:d5:10:83:8e:56:
f6:ac:26:d0:a2:4b:c5:36:43:38:79:eb:97:7d:71:5f:d6:37:
dc:ac:67:68:7c:89:d6:03:11:f0:80:25:92:5d:c7:22:1b:20:
50:a8:6c:65:d5:bc:a5:8c:d7:e6:38:9e:a2:c5:c9:af:24:d2:
29:3a:c3:6a:69:c8:00:fb:5c:de:44:79:43:95:c8:43:71:a9:
83:b8:2e:39:75:ae:8c:bb:f1:27:16:f8:10:ae:89:fb:8d:95:
9f:96:3f:cc:47:51:ed:fb:9f:8a:ec:bb:64:6b:0b:fd:d3:c0:
c8:d3:fa:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iTXzKfcnyQUxxW7IQosVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDhlMDMzZGViNjRhYzQyNDNjNzJjZTg5OWQ1MzgyMmRm
Njk5NmQwHhcNMjYwMzI5MDMwMDMyWhcNMjYwMzMwMDMwMDMyWjAzMTEwLwYDVQQD
Eyg2YzM3NmZlOGU4MTkyNTNlODAwYjE2NzMxOWM5MDU1NzljYTI5NmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1NmudctNxI5GfM58r0klRUoUa9N
Jev+UdtIqoXB71cy0igtpNDdtB+SiPaZY4y7shLRFnVFYo0RN1nCPyMVNwaHodrA
wpXlPlr0XknAVIVomL+hftJIr/Kh3V1BpGiXqcmsZEhrcqZUEFRUP1/1e5TlRIfB
aueFvU4Ps6d6omyqh8l+hRf59bWM8YX3N55u9X8Q2LpPGpA9MMVDWCgw6eUyt7/m
oL18jqf3y41m0oY6iXLNGVFNg3O0suoD31UzCVQllbjzusG6KxM824+UJRWHe2Rk
5T+nYEomkvuutMY4Z170+TTFpQPLxHC7wAENf3Jly+wQ0+O+Xjcca+6MuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGw3b+joGSU+gAsWcxnJBVecopbrMB8GA1UdIwQY
MBaAFDpI4DPetkrEJDxyzomdU4It9pltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEt
YzUzMjFkYzllNjRiLzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEtYzUzMjFkYzllNjRi
LzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxqsyDkXx
A8u1ILAfVMrNzqio6k/nKOQURXFBwHyVLVExw2g4IsJa/MmbC429UuaZmltHgT8d
HBHaAD+37fOPlVZsHDDG3G2spqKUYjKBvJZKz1mXm7SHXB0GYJHx1nWMyg8a/pjF
uUoKUfS18+UUoxabYJ+KRZu4z+SexAOQCbp2zV/8rS8Wxc5vLtUQg45W9qwm0KJL
xTZDOHnrl31xX9Y33KxnaHyJ1gMR8IAlkl3HIhsgUKhsZdW8pYzX5jieosXJryTS
KTrDamnIAPtc3kR5Q5XIQ3Gpg7guOXWujLvxJxb4EK6J+42Vn5Y/zEdR7fufiuy7
ZGsL/dPAyNP6ow==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:36 2026 by rpki-client