Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: 4RmGjrC0n+FrR97gokMocFemk9KiR+h/iYZk6dIC9IY=
Subject key identifier: 30:42:BA:75:B4:53:87:19:CB:63:E6:91:77:61:E7:FC:DA:14:FA:E3
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019D97E1B02DD717BA49BBD1CA81D4BBD454
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0EC0
Signing time: Thu 16 Apr 2026 20:00:43 +0000
Manifest this update: Thu 16 Apr 2026 20:00:43 +0000
Manifest next update: Fri 17 Apr 2026 20:00:43 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: /5Fx4MpXxe0fmEFmYo8jzOdl7h2j3w0C9MiTLSJKTHg=)
2: TbY4MLo9QmUSVk5hp07D_lX76Hc.roa (hash: GGTbtNI+aaL18L5FZQerRlg9rpMiVGf3/pLxdG5oxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:b0:2d:d7:17:ba:49:bb:d1:ca:81:d4:bb:d4:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Apr 16 20:00:43 2026 GMT
Not After : Apr 17 20:00:43 2026 GMT
Subject: CN=3042ba75b4538719cb63e6917761e7fcda14fae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0c:f5:b7:40:17:20:30:a5:27:0e:93:77:c7:
d5:96:a1:29:79:fe:64:75:60:08:79:9a:2f:d1:ef:
88:30:3a:0a:a3:2a:83:c4:7a:75:c2:8d:4a:1d:cf:
f9:ff:af:3e:b7:08:b1:7f:80:1f:b6:3b:43:5c:df:
b2:9f:b2:76:35:17:40:61:d2:df:bf:69:56:f6:3c:
6d:41:11:c3:25:60:67:e9:d4:24:22:2d:f6:14:4d:
ea:41:0f:8f:31:60:23:87:13:9c:13:d7:f4:5a:15:
4d:23:21:fc:77:1f:6a:f5:5d:5b:0d:4f:c7:88:af:
96:3b:07:57:4c:48:f9:28:08:48:37:df:94:2a:04:
85:45:59:6e:58:93:9a:a6:74:ae:f8:01:3b:49:d4:
c3:79:b6:23:22:d5:b8:62:a1:26:d4:56:13:53:63:
cb:92:cc:92:03:a8:80:e1:f6:66:aa:c1:93:30:db:
75:2c:e9:19:34:3e:8b:16:35:a1:33:e1:13:e9:49:
01:e1:4b:e3:e0:d3:ce:c3:2d:62:ff:ac:a4:94:eb:
96:cb:85:bc:41:19:3c:c3:a0:1d:15:f7:c7:ea:1c:
cd:e2:7c:8f:6e:6f:db:ee:a8:fe:b5:df:50:c8:ef:
a7:59:ad:2d:12:e9:88:c2:98:58:c9:dc:fa:1f:99:
e2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:42:BA:75:B4:53:87:19:CB:63:E6:91:77:61:E7:FC:DA:14:FA:E3
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:82:6e:da:56:36:7c:0e:e4:93:2f:e8:54:d2:99:77:91:0d:
85:62:49:95:db:96:82:4c:d0:fd:a9:98:c9:a1:a4:98:e5:b3:
80:26:59:c9:8e:16:1d:a9:1d:b1:54:19:43:e6:76:c0:7d:50:
4e:59:9e:f7:3d:02:c2:d8:94:d5:8c:1d:69:b6:a3:1d:62:86:
c5:49:ab:f3:f7:92:71:d4:33:af:d4:bb:3c:f3:c0:2b:06:3e:
65:3e:06:4c:28:28:41:82:2a:b0:d0:a6:8b:08:d0:62:0b:fa:
a0:c1:55:85:32:a1:5e:85:31:47:69:fe:34:15:89:ca:03:46:
15:1b:d0:16:dd:16:7f:68:1a:51:cc:07:79:48:c6:26:24:36:
ab:1e:d4:f0:b7:58:4d:af:c9:77:8c:78:26:aa:41:59:12:f0:
df:fb:64:e2:b5:70:09:2b:30:10:3d:19:94:1c:8c:fb:b9:9d:
51:06:14:45:7b:33:f7:44:b1:c1:6f:bf:5a:24:48:0c:44:b2:
7d:a1:7f:ad:85:32:7a:3a:7f:87:6e:7a:f6:2c:d8:20:c8:4e:
f1:85:3f:63:64:05:b6:9c:78:4a:6e:e9:3a:1f:00:16:d7:60:
e3:7d:b1:42:00:f6:95:e1:43:3e:c3:1c:8a:8c:d6:7e:d0:d9:
50:4d:88:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2X4bAt1xe6SbvRyoHUu9RUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2OGI2Y2ZiNzIwYTdjOTJhMTgwY2E2MTRiZGIwZWRhMWYx
ZWJlOWQwHhcNMjYwNDE2MjAwMDQzWhcNMjYwNDE3MjAwMDQzWjAzMTEwLwYDVQQD
EygzMDQyYmE3NWI0NTM4NzE5Y2I2M2U2OTE3NzYxZTdmY2RhMTRmYWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiAz1t0AXIDClJw6Td8fVlqEpef5k
dWAIeZov0e+IMDoKoyqDxHp1wo1KHc/5/68+twixf4AftjtDXN+yn7J2NRdAYdLf
v2lW9jxtQRHDJWBn6dQkIi32FE3qQQ+PMWAjhxOcE9f0WhVNIyH8dx9q9V1bDU/H
iK+WOwdXTEj5KAhIN9+UKgSFRVluWJOapnSu+AE7SdTDebYjItW4YqEm1FYTU2PL
ksySA6iA4fZmqsGTMNt1LOkZND6LFjWhM+ET6UkB4Uvj4NPOwy1i/6yklOuWy4W8
QRk8w6AdFffH6hzN4nyPbm/b7qj+td9QyO+nWa0tEumIwphYydz6H5nipwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDBCunW0U4cZy2PmkXdh5/zaFPrjMB8GA1UdIwQY
MBaAFNaLbPtyCnySoYDKYUvbDtofHr6dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW90cy0zSUtmSktoZ01waFM5c08yaDhldnAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9iNTk0NWQtNDkxNS00YmQ3LTkxYzEt
MzNlMzE5YTQ1NGVmLzEvMW90cy0zSUtmSktoZ01waFM5c08yaDhldnAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9iNTk0NWQtNDkxNS00YmQ3LTkxYzEtMzNlMzE5YTQ1NGVm
LzEvMW90cy0zSUtmSktoZ01waFM5c08yaDhldnAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADIJu2lY2
fA7kky/oVNKZd5ENhWJJlduWgkzQ/amYyaGkmOWzgCZZyY4WHakdsVQZQ+Z2wH1Q
Tlme9z0CwtiU1YwdabajHWKGxUmr8/eScdQzr9S7PPPAKwY+ZT4GTCgoQYIqsNCm
iwjQYgv6oMFVhTKhXoUxR2n+NBWJygNGFRvQFt0Wf2gaUcwHeUjGJiQ2qx7U8LdY
Ta/Jd4x4JqpBWRLw3/tk4rVwCSswED0ZlByM+7mdUQYURXsz90SxwW+/WiRIDESy
faF/rYUyejp/h2569izYIMhO8YU/Y2QFtpx4Sm7pOh8AFtdg432xQgD2leFDPsMc
iozWftDZUE2I5w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:24:05 2026 by rpki-client