Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: 8lX1DIrXbklMgSB/jqTOHNTnWPbfjouobWtvdBrC68A=
Subject key identifier: AF:8E:1D:00:D4:B2:D0:BF:48:84:56:65:44:61:41:E3:ED:92:98:51
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019CAB6B59A7531C0203A9C6554EB7CFEF8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 22:01:05 +0000
Manifest this update: Sun 01 Mar 2026 22:01:05 +0000
Manifest next update: Mon 02 Mar 2026 22:01:05 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: LoCCAL2a84VvCwFnPFojXUfTOrxjvK3mrR7F5gUVV7E=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:59:a7:53:1c:02:03:a9:c6:55:4e:b7:cf:ef:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Mar 1 22:01:05 2026 GMT
Not After : Mar 2 22:01:05 2026 GMT
Subject: CN=af8e1d00d4b2d0bf48845665446141e3ed929851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ae:bf:0a:f9:73:b3:52:e2:56:b1:c9:c0:c9:
d6:37:58:e2:ac:22:60:70:04:1c:22:f7:65:f8:3b:
cf:1a:1f:ec:ed:c1:3e:35:50:ff:81:55:51:ad:34:
38:99:cc:dc:d9:c5:ae:19:fc:54:29:ed:7a:ef:2f:
ab:7e:bd:87:a1:38:99:ec:d6:ad:ad:aa:fd:cc:0c:
01:15:80:de:fa:3f:90:84:9d:a3:66:1c:e7:58:50:
2e:19:4b:bd:06:fe:7a:29:ed:f3:60:65:c9:d1:13:
d3:41:24:eb:61:30:2a:0c:42:79:04:bf:fa:eb:10:
9b:15:0c:9c:a2:52:61:07:82:57:38:f0:88:c7:3a:
b1:4b:14:27:3b:b1:2e:55:25:08:61:98:a9:19:8a:
2f:79:b4:57:b0:2d:fa:ce:49:a4:37:63:d0:a1:ac:
47:9a:58:05:bc:a8:8b:fb:5c:3c:ad:4b:78:74:93:
0c:d5:21:aa:da:46:57:2d:2c:88:fe:af:38:14:11:
1d:cb:8d:21:96:65:af:b0:e9:17:ac:da:71:79:32:
28:c8:2c:c0:c8:28:11:a6:ad:cf:3f:66:70:f9:85:
1f:b6:4b:9c:c8:6d:65:12:25:ea:a5:fe:a9:7f:d4:
65:a5:35:45:a2:f2:33:aa:d6:0c:4a:5d:7f:bf:0a:
7c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8E:1D:00:D4:B2:D0:BF:48:84:56:65:44:61:41:E3:ED:92:98:51
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:06:2c:d9:ce:29:5f:ef:50:70:2d:e1:02:2f:2f:6e:fd:4d:
d9:ed:fb:06:3d:03:e0:2a:34:cb:72:c4:18:12:31:c1:ae:21:
a9:02:16:84:49:ba:41:1b:e6:8d:01:a7:02:4a:b6:2a:fd:6a:
01:ab:72:ce:70:bf:71:a0:2e:22:e6:1d:91:51:13:5c:ab:be:
5a:c8:c0:18:52:9e:28:72:1a:ff:a5:f8:f6:bc:b5:a2:54:00:
50:1e:7e:5e:38:4c:ab:1a:ba:7b:8a:2d:0b:15:bd:e9:1f:65:
74:1b:fc:bb:05:77:b9:1b:f9:74:c8:ea:19:0e:5d:87:e3:96:
d3:6b:5b:2a:b9:e6:d5:38:43:d9:29:d4:ad:4d:01:5e:75:c3:
8b:fe:26:d6:22:8d:c5:2b:b2:17:ab:db:2a:1e:83:21:60:6d:
0c:f7:28:fd:99:8e:0c:13:be:6f:97:5e:37:af:99:0e:0e:bf:
df:3e:7d:00:ce:62:b3:f3:0b:4d:3a:d5:79:91:49:69:62:7f:
b5:37:d8:a9:73:dc:85:67:d8:27:68:d0:72:cf:91:e5:f4:a8:
45:27:9d:00:b1:59:58:3c:1c:23:7e:4a:63:bc:3c:b1:d2:bd:
05:c6:eb:aa:b8:cc:cb:3b:f4:12:58:22:c4:1f:2a:fb:13:36:
e0:7c:5b:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra1mnUxwCA6nGVU63z++MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjYwMzAxMjIwMTA1WhcNMjYwMzAyMjIwMTA1WjAzMTEwLwYDVQQD
EyhhZjhlMWQwMGQ0YjJkMGJmNDg4NDU2NjU0NDYxNDFlM2VkOTI5ODUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAya6/Cvlzs1LiVrHJwMnWN1jirCJg
cAQcIvdl+DvPGh/s7cE+NVD/gVVRrTQ4mczc2cWuGfxUKe167y+rfr2HoTiZ7Nat
rar9zAwBFYDe+j+QhJ2jZhznWFAuGUu9Bv56Ke3zYGXJ0RPTQSTrYTAqDEJ5BL/6
6xCbFQycolJhB4JXOPCIxzqxSxQnO7EuVSUIYZipGYovebRXsC36zkmkN2PQoaxH
mlgFvKiL+1w8rUt4dJMM1SGq2kZXLSyI/q84FBEdy40hlmWvsOkXrNpxeTIoyCzA
yCgRpq3PP2Zw+YUftkucyG1lEiXqpf6pf9RlpTVFovIzqtYMSl1/vwp8TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK+OHQDUstC/SIRWZURhQePtkphRMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALgYs2c4p
X+9QcC3hAi8vbv1N2e37Bj0D4Co0y3LEGBIxwa4hqQIWhEm6QRvmjQGnAkq2Kv1q
AatyznC/caAuIuYdkVETXKu+WsjAGFKeKHIa/6X49ry1olQAUB5+XjhMqxq6e4ot
CxW96R9ldBv8uwV3uRv5dMjqGQ5dh+OW02tbKrnm1ThD2SnUrU0BXnXDi/4m1iKN
xSuyF6vbKh6DIWBtDPco/ZmODBO+b5deN6+ZDg6/3z59AM5is/MLTTrVeZFJaWJ/
tTfYqXPchWfYJ2jQcs+R5fSoRSedALFZWDwcI35KY7w8sdK9BcbrqrjMyzv0Elgi
xB8q+xM24HxbqA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:25:04 2026 by rpki-client