Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: 6B/koJIV8vjiROcCjsbRInoNhy3aOyQSAzSNEoyxNrU=
Subject key identifier: A7:BC:37:2C:58:2F:BB:5F:8E:3D:EA:AF:55:5F:6C:2A:50:E1:55:94
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019D98F4A49BF3E798AF91317D3EAD4DDA3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:01:02 +0000
Manifest this update: Fri 17 Apr 2026 01:01:02 +0000
Manifest next update: Sat 18 Apr 2026 01:01:02 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: LrdmFirzimNEIMSKlVP9tAJpEeqZe0NyamY5q9hUYcU=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a4:9b:f3:e7:98:af:91:31:7d:3e:ad:4d:da:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Apr 17 01:01:02 2026 GMT
Not After : Apr 18 01:01:02 2026 GMT
Subject: CN=a7bc372c582fbb5f8e3deaaf555f6c2a50e15594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:47:96:b2:57:18:77:e6:0e:b8:a5:d4:9a:b7:
54:35:98:7c:df:73:e6:58:fb:79:c0:30:16:f1:95:
38:40:13:6f:0b:70:8a:b4:c2:0b:59:a5:58:62:f0:
da:b9:70:4d:f8:3e:d8:6c:a3:03:bd:3b:e8:be:d8:
aa:fc:99:29:5c:5a:11:76:e2:00:c3:0a:b7:85:f7:
3f:b3:12:dc:93:09:8b:6d:38:67:ef:06:fa:35:77:
9f:01:0a:f7:c4:1f:ae:de:3a:cb:41:ab:0c:f5:ee:
26:00:a4:19:7e:d6:0e:e5:f5:ed:bf:d6:74:c1:56:
cf:8f:bd:eb:53:05:51:6a:3c:5c:a5:19:92:c9:b8:
1e:9d:d8:a3:24:c9:cb:f8:17:b2:46:bb:28:af:23:
29:36:be:57:1a:cd:95:70:73:85:3b:1a:9c:10:f7:
db:a4:f4:89:e0:b5:22:a1:1d:bc:02:9a:99:c7:fb:
4f:e4:6d:8a:fb:cf:c7:4d:70:a7:8d:e7:08:99:f9:
5f:a7:78:8e:d3:99:05:53:52:1c:44:f7:fa:2b:19:
17:88:81:e3:ed:a6:21:b6:24:d3:6c:df:b8:14:a8:
ee:57:1d:9c:5a:2e:ac:0d:58:92:51:e2:e5:65:d5:
f1:b4:a5:75:1d:c8:17:91:9a:62:41:6d:c7:8c:ce:
3a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BC:37:2C:58:2F:BB:5F:8E:3D:EA:AF:55:5F:6C:2A:50:E1:55:94
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ba:15:e2:ba:ce:c8:d3:7e:d8:61:05:d3:22:46:2e:e0:9f:
98:9c:16:fd:90:70:16:89:a2:92:cf:1b:07:99:e5:76:a8:65:
d4:05:9b:1c:f9:8a:68:5b:1a:9e:31:9e:8f:3e:0c:f5:4a:3e:
52:03:ca:d5:5b:ec:95:18:53:bc:04:72:e9:3c:01:5c:3a:28:
90:eb:06:87:4c:08:fc:3b:d7:cc:b0:ad:f4:69:39:bf:06:c4:
09:9a:f9:7f:90:40:20:9b:01:a1:b7:c3:8f:95:dd:b3:34:09:
6a:16:76:c4:81:b3:08:38:f7:59:d2:be:7c:97:12:f4:f5:ed:
c6:90:08:f7:e8:e5:9d:a2:4c:50:f3:7a:d1:b0:7a:10:81:13:
03:5b:f3:46:35:d5:75:cd:69:34:9f:39:ed:ce:61:14:73:8d:
a2:64:22:5d:78:c2:87:f1:28:12:76:79:0e:f7:c3:82:28:22:
8f:df:a9:f2:38:53:04:f6:1d:94:17:df:af:5c:d2:80:27:4b:
8a:97:34:82:c3:c8:2b:31:cf:2b:0b:82:28:9e:be:3e:6f:a9:
d8:00:5d:09:4d:19:ac:d2:7f:c0:a8:f4:c8:18:c2:82:50:13:
bd:43:1d:fb:50:b1:44:94:e7:86:a5:bb:f8:5f:25:04:f1:a9:
ad:63:6f:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9KSb8+eYr5ExfT6tTdo9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjYwNDE3MDEwMTAyWhcNMjYwNDE4MDEwMTAyWjAzMTEwLwYDVQQD
EyhhN2JjMzcyYzU4MmZiYjVmOGUzZGVhYWY1NTVmNmMyYTUwZTE1NTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3keWslcYd+YOuKXUmrdUNZh833Pm
WPt5wDAW8ZU4QBNvC3CKtMILWaVYYvDauXBN+D7YbKMDvTvovtiq/JkpXFoRduIA
wwq3hfc/sxLckwmLbThn7wb6NXefAQr3xB+u3jrLQasM9e4mAKQZftYO5fXtv9Z0
wVbPj73rUwVRajxcpRmSybgendijJMnL+BeyRrsoryMpNr5XGs2VcHOFOxqcEPfb
pPSJ4LUioR28ApqZx/tP5G2K+8/HTXCnjecImflfp3iO05kFU1IcRPf6KxkXiIHj
7aYhtiTTbN+4FKjuVx2cWi6sDViSUeLlZdXxtKV1HcgXkZpiQW3HjM46pQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKe8NyxYL7tfjj3qr1VfbCpQ4VWUMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVroV4rrO
yNN+2GEF0yJGLuCfmJwW/ZBwFomiks8bB5nldqhl1AWbHPmKaFsanjGejz4M9Uo+
UgPK1VvslRhTvARy6TwBXDookOsGh0wI/DvXzLCt9Gk5vwbECZr5f5BAIJsBobfD
j5XdszQJahZ2xIGzCDj3WdK+fJcS9PXtxpAI9+jlnaJMUPN60bB6EIETA1vzRjXV
dc1pNJ857c5hFHONomQiXXjCh/EoEnZ5DvfDgigij9+p8jhTBPYdlBffr1zSgCdL
ipc0gsPIKzHPKwuCKJ6+Pm+p2ABdCU0ZrNJ/wKj0yBjCglATvUMd+1CxRJTnhqW7
+F8lBPGprWNvNA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:14:52 2026 by rpki-client