Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json)
Hash identifier: +DTDs9fUMzZSAUFEOM15OLopbkvsDEiObMaGIMQ5Rr8=
Subject key identifier: 52:11:AB:4D:E0:10:3C:68:33:8B:4B:CF:7C:8D:8A:07:A2:58:42:1B
Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Certificate serial: 019DD1639E96F49EBAF3C1446B2E84DB7DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
Manifest number: 052E
Signing time: Tue 28 Apr 2026 00:00:59 +0000
Manifest this update: Tue 28 Apr 2026 00:00:59 +0000
Manifest next update: Wed 29 Apr 2026 00:00:59 +0000
Files and hashes: 1: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: Nm1QwM/L8sidSU5fkB+KOZyNtdgStyAjtQdve6JJTss=)
2: QTaYixkWug0WkImFD5gnGK_ASr4.roa (hash: w7qx/N8YQKmCAl0otduhK8XuUZj0HapOBC1Dku0mdTQ=)
3: xo3gR3-KM6S_Zel79WurR5Cgqhw.roa (hash: Dhbvi9g1SOEv1jJ9w629oy4OgTHWzucQiL6zYBKcTBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 00:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:63:9e:96:f4:9e:ba:f3:c1:44:6b:2e:84:db:7d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Validity
Not Before: Apr 28 00:00:59 2026 GMT
Not After : Apr 29 00:00:59 2026 GMT
Subject: CN=5211ab4de0103c68338b4bcf7c8d8a07a258421b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d3:d5:ca:f3:1e:d2:24:6a:bf:6a:61:91:dc:
23:08:96:a9:d5:d3:58:e8:3e:11:a6:e3:10:f6:29:
38:8e:94:bf:e5:da:ba:8a:e1:b5:31:be:c6:f2:50:
78:03:de:47:94:4d:2d:a8:56:74:b0:12:eb:d8:65:
be:39:0b:f6:74:a6:a3:55:84:0d:1f:ea:57:3a:f1:
d0:67:48:19:ee:93:15:73:88:1a:7f:95:f3:06:f3:
35:ae:f6:f6:d6:3c:5c:7d:f4:17:c1:fc:f8:12:36:
31:5f:c8:a9:1b:a1:55:67:62:80:b6:c7:52:b6:60:
a9:d2:19:87:d1:fc:77:f7:b5:0d:e8:94:0e:c0:c8:
72:c5:0f:6e:43:10:df:d7:b8:7f:dd:8c:98:77:a5:
8b:0d:c2:ca:f1:bf:4d:aa:84:4f:65:4d:9d:a5:29:
d2:07:9d:cd:d3:ff:75:91:f5:b9:8e:0b:ba:97:b6:
92:f2:1c:84:bb:10:ae:58:56:21:c5:b2:53:4b:54:
4f:e7:2f:33:c5:20:d2:55:33:c1:a8:21:aa:3f:a8:
d0:21:41:34:d5:5b:f4:46:b2:23:d2:42:89:e1:56:
15:a3:d7:0c:2e:f2:12:4f:7c:42:2f:d2:60:fa:a1:
d0:b4:e6:7f:2f:bf:4d:c5:27:50:60:7f:41:0b:59:
de:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:11:AB:4D:E0:10:3C:68:33:8B:4B:CF:7C:8D:8A:07:A2:58:42:1B
X509v3 Authority Key Identifier:
keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:01:1c:e8:c4:5e:9b:5e:f7:5d:9a:dc:25:ee:a0:b1:40:65:
e3:a5:ac:f3:28:db:95:45:d4:4e:6c:b4:76:70:90:04:73:84:
66:53:6c:e0:fe:b5:2f:f2:a6:7d:5c:96:41:eb:79:50:64:a8:
3e:40:3c:fa:6d:57:39:f9:0d:d1:03:28:ed:69:13:5f:07:90:
cf:83:84:30:53:e1:85:cc:ce:db:97:1a:a1:1a:cf:26:b7:16:
8e:e9:35:1a:76:21:70:d4:77:62:6d:42:9b:ae:d1:90:a6:f2:
09:23:2f:55:32:3e:7c:43:39:70:4b:fd:ce:d4:8d:90:58:9f:
50:6e:c7:0a:19:ea:f8:b7:23:2e:16:fe:35:56:8e:26:14:3a:
ad:d8:7c:77:17:9c:fc:bd:4e:43:f2:21:f7:35:a5:92:14:e6:
ee:e0:c1:c9:01:3c:d9:a9:ec:17:97:ef:96:7f:f2:5a:13:c1:
79:60:14:60:a1:65:23:74:90:bf:f4:73:c7:d1:6b:d6:2c:08:
3e:59:87:e7:1b:b1:d1:fa:93:52:32:ed:2a:21:57:d8:5a:99:
87:1d:c4:be:6f:f8:eb:86:ed:da:d9:cd:41:2d:87:4e:a6:e0:
ec:ee:2e:31:0f:2b:b4:8d:dd:d6:81:d7:b6:8b:43:14:72:1b:
1d:2a:21:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3RY56W9J6688FEay6E2336MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YmM3OTRjNWZiYWFjNjMyYTdmZmI0M2RiMTRmNzM5Y2Q1
M2IyYzQwHhcNMjYwNDI4MDAwMDU5WhcNMjYwNDI5MDAwMDU5WjAzMTEwLwYDVQQD
Eyg1MjExYWI0ZGUwMTAzYzY4MzM4YjRiY2Y3YzhkOGEwN2EyNTg0MjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdPVyvMe0iRqv2phkdwjCJap1dNY
6D4RpuMQ9ik4jpS/5dq6iuG1Mb7G8lB4A95HlE0tqFZ0sBLr2GW+OQv2dKajVYQN
H+pXOvHQZ0gZ7pMVc4gaf5XzBvM1rvb21jxcffQXwfz4EjYxX8ipG6FVZ2KAtsdS
tmCp0hmH0fx397UN6JQOwMhyxQ9uQxDf17h/3YyYd6WLDcLK8b9NqoRPZU2dpSnS
B53N0/91kfW5jgu6l7aS8hyEuxCuWFYhxbJTS1RP5y8zxSDSVTPBqCGqP6jQIUE0
1Vv0RrIj0kKJ4VYVo9cMLvIST3xCL9Jg+qHQtOZ/L79NxSdQYH9BC1nesQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIRq03gEDxoM4tLz3yNigeiWEIbMB8GA1UdIwQY
MBaAFDi8eUxfuqxjKn/7Q9sU9znNU7LEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYt
ZDk4NTM5NGUzYzEwLzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYtZDk4NTM5NGUzYzEw
LzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxwEc6MRe
m173XZrcJe6gsUBl46Ws8yjblUXUTmy0dnCQBHOEZlNs4P61L/KmfVyWQet5UGSo
PkA8+m1XOfkN0QMo7WkTXweQz4OEMFPhhczO25caoRrPJrcWjuk1GnYhcNR3Ym1C
m67RkKbyCSMvVTI+fEM5cEv9ztSNkFifUG7HChnq+LcjLhb+NVaOJhQ6rdh8dxec
/L1OQ/Ih9zWlkhTm7uDByQE82ansF5fvln/yWhPBeWAUYKFlI3SQv/Rzx9Fr1iwI
PlmH5xux0fqTUjLtKiFX2FqZhx3Evm/464bt2tnNQS2HTqbg7O4uMQ8rtI3d1oHX
totDFHIbHSohHg==
-----END CERTIFICATE-----
Generated at Tue Apr 28 08:23:21 2026 by rpki-client