Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier: +f2BaUkB+WMsQdmS6Xp3oInUCNrPmeokuNNkq2ILGSw=
Subject key identifier: 10:3E:DA:9A:A8:8A:2F:7D:93:C5:31:F6:18:D1:C7:D9:07:19:6A:02
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial: 019DA45391CB50D365310849D43437746CBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number: 18C5
Signing time: Sun 19 Apr 2026 06:00:33 +0000
Manifest this update: Sun 19 Apr 2026 06:00:33 +0000
Manifest next update: Mon 20 Apr 2026 06:00:33 +0000
Files and hashes: 1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: MZ6vt3rSI3Rh0JsiqvyHOpPhbSXkk00r+on11C+icC0=)
2: UDNnbwScWIceduT3mK8HBVvLzOg.roa (hash: vhtxGUgVNJ9daTmq66lTJXKGFzwiSTw9nac1gcWaxBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:91:cb:50:d3:65:31:08:49:d4:34:37:74:6c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
Validity
Not Before: Apr 19 06:00:33 2026 GMT
Not After : Apr 20 06:00:33 2026 GMT
Subject: CN=103eda9aa88a2f7d93c531f618d1c7d907196a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:7c:27:f4:fd:4a:f9:63:7e:5a:79:d5:bb:
26:64:21:5f:46:d7:1c:b2:3f:3c:92:7c:08:d3:80:
c2:14:ae:dc:f3:b5:8e:59:55:d8:23:42:ce:ac:dd:
f8:7a:3a:64:a0:f8:4e:15:57:23:f7:59:46:e2:ad:
44:2a:69:b8:cb:aa:f8:18:e0:e3:87:79:9b:cf:ea:
69:b7:b2:b3:42:7d:94:c6:25:70:7f:bb:0b:01:7e:
c9:b6:05:03:6e:4d:a6:4b:8c:67:fc:2e:70:8e:c0:
dc:64:8a:7b:ea:8b:75:52:67:3d:da:32:b7:fb:3c:
98:08:10:79:b7:07:2c:51:76:dd:58:33:3f:f5:ea:
4d:db:73:36:db:ff:09:28:7c:bd:1d:59:b6:59:ff:
b2:f8:58:fa:82:d7:7f:02:af:83:d4:75:df:ab:61:
b4:05:8e:cb:77:d9:37:69:b5:b0:43:03:50:14:58:
1e:4c:a5:f5:eb:05:64:04:47:b3:fc:3a:3e:7e:b1:
33:29:f8:5f:9a:22:c5:78:94:9f:35:2b:95:b4:d5:
cc:eb:a1:c4:aa:3a:6c:85:24:95:97:d7:ce:e1:05:
e0:bd:48:f5:92:68:a1:68:67:b5:49:ae:61:11:35:
b9:8e:ca:4c:63:65:45:5e:33:7e:18:79:78:91:e2:
20:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3E:DA:9A:A8:8A:2F:7D:93:C5:31:F6:18:D1:C7:D9:07:19:6A:02
X509v3 Authority Key Identifier:
keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:28:00:dd:ee:d2:f1:a0:39:eb:41:4a:97:1c:2b:63:47:b3:
9a:1c:7e:b9:bf:17:d6:6d:ec:8a:76:9a:15:83:fe:59:1e:d7:
a0:27:f2:65:3b:ef:fb:18:bf:d0:72:07:12:e5:bf:6c:86:17:
62:50:81:b8:7f:90:b9:1d:d6:eb:19:b6:91:69:8e:a7:e9:c8:
32:bc:74:b8:5b:ac:5f:5f:dc:9b:47:3b:64:25:f7:f0:0e:76:
23:f6:c0:28:cd:a8:75:66:ae:54:76:76:c5:90:2d:3a:af:91:
0e:b6:d6:69:1f:98:d2:98:47:84:33:1c:f2:08:5d:86:ce:73:
58:a4:4c:6c:07:a0:3f:9c:31:e6:42:a9:47:8c:39:f6:85:cd:
0f:d9:44:ec:8c:9a:34:03:50:0e:7d:88:6e:b8:61:5a:74:69:
37:5a:16:07:69:4a:64:56:2f:4c:bf:18:96:cd:d7:10:6c:47:
dd:ea:33:cc:04:87:4e:2d:a1:36:28:a2:c7:4b:7b:5f:64:e5:
4a:36:ee:41:b4:60:0a:3a:cd:f5:21:c0:2d:ce:c4:81:1b:00:
8f:02:4d:a9:50:ac:93:bf:57:6e:33:fb:ae:f1:e7:aa:6d:76:
b1:70:24:91:30:b5:1d:c0:14:2d:e9:a3:ee:c0:fe:0c:81:9b:
14:b2:dc:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kU5HLUNNlMQhJ1DQ3dGy8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OWMwMzAwMzY3NTZhYjhjZGFjOTIyYjFhZjIzN2JjZTEz
NjdjZTAwHhcNMjYwNDE5MDYwMDMzWhcNMjYwNDIwMDYwMDMzWjAzMTEwLwYDVQQD
EygxMDNlZGE5YWE4OGEyZjdkOTNjNTMxZjYxOGQxYzdkOTA3MTk2YTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03x8J/T9Svljflp51bsmZCFfRtcc
sj88knwI04DCFK7c87WOWVXYI0LOrN34ejpkoPhOFVcj91lG4q1EKmm4y6r4GODj
h3mbz+ppt7KzQn2UxiVwf7sLAX7JtgUDbk2mS4xn/C5wjsDcZIp76ot1Umc92jK3
+zyYCBB5twcsUXbdWDM/9epN23M22/8JKHy9HVm2Wf+y+Fj6gtd/Aq+D1HXfq2G0
BY7Ld9k3abWwQwNQFFgeTKX16wVkBEez/Do+frEzKfhfmiLFeJSfNSuVtNXM66HE
qjpshSSVl9fO4QXgvUj1kmihaGe1Sa5hETW5jspMY2VFXjN+GHl4keIg+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBA+2pqoii99k8Ux9hjRx9kHGWoCMB8GA1UdIwQY
MBaAFDicAwA2dWq4zaySKxryN7zhNnzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMt
NjcxN2I5YmFiYjM0LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMtNjcxN2I5YmFiYjM0
LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnigA3e7S
8aA560FKlxwrY0ezmhx+ub8X1m3sinaaFYP+WR7XoCfyZTvv+xi/0HIHEuW/bIYX
YlCBuH+QuR3W6xm2kWmOp+nIMrx0uFusX1/cm0c7ZCX38A52I/bAKM2odWauVHZ2
xZAtOq+RDrbWaR+Y0phHhDMc8ghdhs5zWKRMbAegP5wx5kKpR4w59oXND9lE7Iya
NANQDn2IbrhhWnRpN1oWB2lKZFYvTL8Yls3XEGxH3eozzASHTi2hNiiix0t7X2Tl
SjbuQbRgCjrN9SHALc7EgRsAjwJNqVCsk79XbjP7rvHnqm12sXAkkTC1HcAULemj
7sD+DIGbFLLcYw==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:14:19 2026 by rpki-client