Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
File: oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft (raw, json)
Hash identifier: nuCvEmS4P39Zl1gljIcqbTCuFUxEGS2F2tHjzvG2afM=
Subject key identifier: B9:1A:06:F9:2A:48:13:B6:4C:E7:FC:08:E3:6D:72:76:F4:E8:E5:2C
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 019CAEDA2465183F652CD970FB065579FB74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 14:00:57 +0000
Manifest this update: Mon 02 Mar 2026 14:00:57 +0000
Manifest next update: Tue 03 Mar 2026 14:00:57 +0000
Files and hashes: 1: 4G9wBnQj2bLIhwU-J0N7Nhw1T6o.roa (hash: Ss9C5TAkahNNPv2NrvJMx+wEmDF2hJNXCum/fvM8j7Q=)
2: Vl6FMo5wU6v03xk_-33ZrOY3oKg.roa (hash: kIWRHZYG1x8ZuZJSnfYu/2Gl4pYaKJvwzf9u/k0+4/Y=)
3: eT2IWPcNjqqYvSRa6WeHp3LmJtA.roa (hash: fIsFP2V7Kpl6K2IEcKVfzsXOwzj5Bhe8+tMHJi7fIAI=)
4: fDPuMYjL7iwuQzRHQw3ok372mfU.roa (hash: zWt5a5APl7Cb8l+lYNIvqdjQJV2PNl8C2Gw5qS4KES8=)
5: oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl (hash: j7rgpHfOl5ixJeE/f2fwS3eAZGXhtik+Oz7ziM3ZkCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:24:65:18:3f:65:2c:d9:70:fb:06:55:79:fb:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Mar 2 14:00:57 2026 GMT
Not After : Mar 3 14:00:57 2026 GMT
Subject: CN=b91a06f92a4813b64ce7fc08e36d7276f4e8e52c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:20:2a:87:e0:ab:ea:4a:a7:78:48:8d:a5:bb:
91:1d:8c:f9:bf:ad:02:25:41:1e:5e:44:cd:d4:06:
39:05:2f:cf:6a:e2:6d:e1:7a:14:81:36:bd:18:3e:
ee:17:3d:d4:34:c5:d4:36:49:62:7f:fb:23:59:f1:
0b:7b:f5:53:4e:fe:7b:88:cf:f7:4e:e5:b6:21:09:
65:0f:ee:68:89:53:a1:20:98:a2:32:dd:dc:61:bd:
7d:5c:23:03:81:3e:bf:7d:a1:1f:48:86:d7:cf:30:
2d:2c:52:da:ee:90:cf:e8:8e:d4:82:2e:13:57:c5:
40:05:32:61:a2:a4:98:5b:cf:4d:f5:15:be:c7:60:
31:30:8c:1b:b4:10:4b:a0:92:89:bd:7f:c6:2c:7a:
9e:34:65:91:12:a5:86:de:10:34:13:5b:39:25:f5:
30:78:c4:20:fa:d5:9c:c6:cf:06:12:2e:97:69:dd:
83:0f:36:1d:e2:66:95:89:ee:fc:24:e3:27:5e:d4:
d9:be:43:c1:13:75:de:aa:c9:e0:cd:95:33:f6:5e:
c5:4a:72:74:4b:27:9d:fe:93:d3:0f:a0:89:c2:3d:
f0:72:a4:19:b3:3a:c8:33:0b:4c:2e:aa:f1:60:9e:
f0:31:58:8a:d0:59:67:05:16:f0:02:d4:08:6a:43:
dd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1A:06:F9:2A:48:13:B6:4C:E7:FC:08:E3:6D:72:76:F4:E8:E5:2C
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:05:3b:54:18:97:05:fd:0c:a8:1b:1d:c4:32:5c:6d:8d:2c:
08:9b:7e:fe:70:e6:d5:43:76:ce:69:09:03:9e:91:4e:22:80:
d4:88:cc:3b:9a:7a:f2:70:3e:3a:15:e7:29:a7:cb:7e:49:28:
17:c6:28:71:71:74:42:20:b9:36:d4:58:dd:23:1f:0e:66:99:
ab:5a:d4:10:d0:da:9c:09:29:e8:29:04:ab:13:b4:4a:5c:39:
ae:86:dd:94:9c:98:49:c6:9c:fd:f4:45:39:30:77:d5:0c:99:
fc:0c:24:17:2f:53:d2:86:3d:ce:60:50:90:85:b3:a8:5c:ea:
0f:1c:0a:a3:57:9b:b0:0e:3f:35:a4:64:54:24:17:4b:3c:59:
c0:30:02:65:3b:d9:15:38:63:a0:f6:cb:90:4f:da:24:91:02:
2e:fd:0e:af:ad:34:e1:4a:62:65:75:46:ed:41:17:4e:7d:c0:
03:15:b1:11:92:47:18:6d:fd:13:e9:41:66:9d:07:8c:59:f2:
b1:e9:fb:18:e3:02:f6:8b:53:10:96:b4:00:d1:98:a1:01:ba:
e0:fc:27:70:c7:5b:ff:21:66:60:96:44:bc:25:ad:4a:3e:a8:
90:5f:0a:13:c9:f7:d6:8f:e5:1e:e6:18:1e:11:04:f0:28:0a:
20:8c:cd:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyu2iRlGD9lLNlw+wZVeft0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYWZlMWZlZDFmMmI3ZGIyNGEwYzJkMWY2MTAxMDY4NGU5
M2NiZDUwHhcNMjYwMzAyMTQwMDU3WhcNMjYwMzAzMTQwMDU3WjAzMTEwLwYDVQQD
EyhiOTFhMDZmOTJhNDgxM2I2NGNlN2ZjMDhlMzZkNzI3NmY0ZThlNTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCAqh+Cr6kqneEiNpbuRHYz5v60C
JUEeXkTN1AY5BS/PauJt4XoUgTa9GD7uFz3UNMXUNklif/sjWfELe/VTTv57iM/3
TuW2IQllD+5oiVOhIJiiMt3cYb19XCMDgT6/faEfSIbXzzAtLFLa7pDP6I7Ugi4T
V8VABTJhoqSYW89N9RW+x2AxMIwbtBBLoJKJvX/GLHqeNGWREqWG3hA0E1s5JfUw
eMQg+tWcxs8GEi6Xad2DDzYd4maVie78JOMnXtTZvkPBE3XeqsngzZUz9l7FSnJ0
Syed/pPTD6CJwj3wcqQZszrIMwtMLqrxYJ7wMViK0FlnBRbwAtQIakPdEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkaBvkqSBO2TOf8CONtcnb06OUsMB8GA1UdIwQY
MBaAFKCv4f7R8rfbJKDC0fYQEGhOk8vVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMjAyYWQtN2I0Ni00MjJkLWE0ZDIt
ZWNhNTNhN2Y3NzYyLzEvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zMjAyYWQtN2I0Ni00MjJkLWE0ZDItZWNhNTNhN2Y3NzYy
LzEvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKQU7VBiX
Bf0MqBsdxDJcbY0sCJt+/nDm1UN2zmkJA56RTiKA1IjMO5p68nA+OhXnKafLfkko
F8YocXF0QiC5NtRY3SMfDmaZq1rUENDanAkp6CkEqxO0Slw5robdlJyYScac/fRF
OTB31QyZ/AwkFy9T0oY9zmBQkIWzqFzqDxwKo1ebsA4/NaRkVCQXSzxZwDACZTvZ
FThjoPbLkE/aJJECLv0Or6004UpiZXVG7UEXTn3AAxWxEZJHGG39E+lBZp0HjFny
sen7GOMC9otTEJa0ANGYoQG64PwncMdb/yFmYJZEvCWtSj6okF8KE8n31o/lHuYY
HhEE8CgKIIzNAg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:55:45 2026 by rpki-client