Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: kCWLO/yooSSoZmAj+tAYoXeQzJBqtkKNzm1mJz4T0GU=
Subject key identifier: 78:29:0E:8A:1A:C0:C8:AF:F4:57:02:37:27:84:66:8F:03:52:BC:57
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019ED3BD2A31E1E0AAD7A288505AD0046630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1965
Signing time: Wed 17 Jun 2026 04:00:50 +0000
Manifest this update: Wed 17 Jun 2026 04:00:50 +0000
Manifest next update: Thu 18 Jun 2026 04:00:50 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: m++YWqqwjX21cLHa6RfmxhqQTrSnGIH8+So8AtmVr2k=)
2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:bd:2a:31:e1:e0:aa:d7:a2:88:50:5a:d0:04:66:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Jun 17 04:00:50 2026 GMT
Not After : Jun 18 04:00:50 2026 GMT
Subject: CN=78290e8a1ac0c8aff45702372784668f0352bc57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ed:04:bd:5c:82:0b:1c:d5:74:d6:8e:37:29:
ff:b1:26:a2:27:38:bf:63:4f:ea:97:30:02:08:91:
e9:2d:8a:b0:0f:77:fa:a3:3d:d8:8e:e7:00:57:1d:
8e:0a:a3:bc:cf:e2:c6:e1:44:75:cf:9c:da:f3:ba:
b6:25:a8:3c:0f:be:c4:a9:1d:f4:ae:b1:ac:e1:52:
de:7e:0a:4d:f4:fb:f2:d9:a1:18:62:95:39:c5:4d:
dc:56:e1:f1:53:87:31:dd:d4:b8:4e:77:58:45:93:
ca:95:a6:de:ea:96:a8:4b:00:b3:aa:8c:9b:c1:7b:
8b:80:3a:71:82:e8:7f:a4:d3:fd:3a:78:39:d4:38:
d4:5b:14:75:d2:09:3f:53:52:0e:c8:2f:43:60:5f:
d4:33:c8:dc:e9:83:20:28:00:45:07:8f:2f:e0:a0:
84:9c:4d:87:20:47:c5:2c:9c:46:87:ba:b8:5f:36:
10:29:57:c4:10:51:b6:9b:55:6a:a2:9a:7b:f2:3c:
88:66:56:a2:5b:5c:45:c6:72:c5:bd:26:8b:e4:89:
cb:b3:44:79:57:42:3e:f9:59:80:ad:50:9c:ca:06:
97:15:37:ef:5c:07:11:79:bf:95:d7:fa:bc:28:3c:
28:9a:5a:2f:22:b6:56:52:2b:a9:b9:00:cd:ee:ed:
c2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:29:0E:8A:1A:C0:C8:AF:F4:57:02:37:27:84:66:8F:03:52:BC:57
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:44:8f:5c:78:e6:cc:53:67:a1:3f:ec:1e:74:48:2b:58:5b:
fb:1a:0c:f2:d1:97:ac:15:56:6a:05:ec:86:5f:3a:ae:c1:2b:
24:bd:9e:ae:a3:76:18:83:75:0e:de:86:92:8e:10:89:4c:7f:
88:06:83:be:79:3d:44:e6:f3:77:92:5e:9b:03:57:d7:fb:1a:
87:50:9c:f5:77:7f:91:81:42:69:67:5f:dd:59:5c:e1:e2:f6:
4c:57:0a:28:f9:f3:6a:a6:ed:09:36:1d:81:8a:82:40:03:6a:
ab:1f:45:16:1d:5f:de:2f:b2:81:2e:7e:14:d3:de:1a:87:bb:
18:b2:66:48:7c:86:ee:be:2a:22:fa:e8:d3:07:b0:54:70:0f:
ef:29:69:7b:69:b0:fd:7f:e9:b3:e7:ad:f0:f8:49:70:cf:e7:
0b:54:e9:c6:13:e8:1c:b3:0e:d4:98:3a:6e:4a:68:7b:ea:9a:
43:1d:fe:cc:e6:d4:94:9a:60:a9:2e:8a:48:c1:28:26:e3:e1:
7e:b1:f5:5e:85:bc:c0:30:e6:f5:c4:c5:2c:3b:7b:47:ce:c0:
46:55:3a:3e:3c:5f:bd:d9:2c:53:91:d7:f2:aa:fa:d7:71:f6:
e7:a8:a9:e3:ce:d5:2e:20:a5:fd:5e:58:81:60:31:e2:b2:cc:
5e:b3:ad:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7TvSox4eCq16KIUFrQBGYwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjYwNjE3MDQwMDUwWhcNMjYwNjE4MDQwMDUwWjAzMTEwLwYDVQQD
Eyg3ODI5MGU4YTFhYzBjOGFmZjQ1NzAyMzcyNzg0NjY4ZjAzNTJiYzU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+0EvVyCCxzVdNaONyn/sSaiJzi/
Y0/qlzACCJHpLYqwD3f6oz3YjucAVx2OCqO8z+LG4UR1z5za87q2Jag8D77EqR30
rrGs4VLefgpN9Pvy2aEYYpU5xU3cVuHxU4cx3dS4TndYRZPKlabe6paoSwCzqoyb
wXuLgDpxguh/pNP9Ong51DjUWxR10gk/U1IOyC9DYF/UM8jc6YMgKABFB48v4KCE
nE2HIEfFLJxGh7q4XzYQKVfEEFG2m1Vqopp78jyIZlaiW1xFxnLFvSaL5InLs0R5
V0I++VmArVCcygaXFTfvXAcReb+V1/q8KDwomlovIrZWUiupuQDN7u3CbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHgpDooawMiv9FcCNyeEZo8DUrxXMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEkSPXHjm
zFNnoT/sHnRIK1hb+xoM8tGXrBVWagXshl86rsErJL2erqN2GIN1Dt6Gko4QiUx/
iAaDvnk9RObzd5JemwNX1/sah1Cc9Xd/kYFCaWdf3Vlc4eL2TFcKKPnzaqbtCTYd
gYqCQANqqx9FFh1f3i+ygS5+FNPeGoe7GLJmSHyG7r4qIvro0wewVHAP7ylpe2mw
/X/ps+et8PhJcM/nC1TpxhPoHLMO1Jg6bkpoe+qaQx3+zObUlJpgqS6KSMEoJuPh
frH1XoW8wDDm9cTFLDt7R87ARlU6PjxfvdksU5HX8qr613H256ip487VLiCl/V5Y
gWAx4rLMXrOtoQ==
-----END CERTIFICATE-----
Generated at Wed Jun 17 08:56:41 2026 by rpki-client