Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: 8zQR13ZKfNEpklK/UuceA7Yd/ldEXzC9+eGa13v6Ua0=
Subject key identifier: 37:62:85:7B:86:65:BA:C6:4F:F1:22:46:FE:20:35:23:71:08:E8:41
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019DA3AF573C6D306147F4F1A8FFF5639A20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 1859
Signing time: Sun 19 Apr 2026 03:01:10 +0000
Manifest this update: Sun 19 Apr 2026 03:01:10 +0000
Manifest next update: Mon 20 Apr 2026 03:01:10 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: /zLK8DpJ51amonizo96ij1DVO27eaFECnM5jUYUiKDg=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:57:3c:6d:30:61:47:f4:f1:a8:ff:f5:63:9a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Apr 19 03:01:10 2026 GMT
Not After : Apr 20 03:01:10 2026 GMT
Subject: CN=3762857b8665bac64ff12246fe2035237108e841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:da:b9:a2:31:40:7b:77:95:91:41:0f:31:
0c:70:59:2c:3f:66:cd:b7:94:2f:50:02:98:4d:a3:
b5:84:6a:54:1d:8c:52:69:3d:81:82:72:59:4b:c1:
d2:0a:0e:0d:90:06:f1:6f:2d:98:75:3f:0d:e6:bb:
d9:3d:5d:43:53:f0:fa:07:44:f2:38:c0:ce:7b:8d:
83:87:0e:6c:98:16:5d:86:63:02:e9:94:34:66:08:
3d:41:18:55:d3:5b:18:ea:62:91:91:d8:06:16:6b:
25:cb:cc:18:35:ba:97:e8:56:14:b5:b0:5b:35:4a:
9d:28:7c:ee:97:38:99:fc:f0:c3:50:11:5d:64:e0:
b6:5f:92:51:fe:20:af:06:e4:35:f6:00:58:89:56:
fa:06:7f:95:00:10:8c:61:d9:7b:f1:ba:01:72:33:
3e:bd:f7:11:4f:00:d0:cf:d6:e9:d1:83:8e:3b:fa:
1f:33:f5:6d:4d:5a:f5:7c:04:f3:ce:db:69:11:ce:
df:ba:b9:73:70:52:2a:84:82:2c:a6:76:62:29:b3:
ec:44:f4:79:bb:00:6c:05:2a:80:57:c0:5e:35:f4:
2e:79:0c:af:78:2e:6c:4b:b7:b1:e4:76:38:57:50:
96:d1:5b:f0:c1:3c:f5:8a:3d:c9:e7:f7:49:2c:ff:
64:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:62:85:7B:86:65:BA:C6:4F:F1:22:46:FE:20:35:23:71:08:E8:41
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:cc:b8:61:df:d8:33:7a:66:ed:96:86:a9:1b:c8:0b:4c:b2:
3c:6c:1a:60:dd:e6:6a:73:44:af:31:50:60:66:85:5a:cb:f9:
65:91:14:cf:24:21:01:ea:2f:7a:62:29:00:01:f0:5e:be:43:
f4:c9:48:69:cd:0f:33:1c:ec:e3:31:7d:23:bc:2a:fc:f0:4a:
47:78:ba:ee:3f:8c:7f:17:1c:90:fc:8c:bd:b0:d8:36:03:6f:
22:ce:2a:80:1c:06:16:75:3b:59:f4:2e:46:a3:de:90:95:be:
06:a5:c0:99:0b:89:c5:49:1a:5a:e1:5b:81:fa:29:8f:69:7f:
01:41:fb:73:8f:70:7a:b5:17:42:d1:be:9d:24:62:f5:2b:f0:
50:5c:0c:7c:c9:ce:d5:09:cb:55:00:eb:f8:28:b7:3b:17:9c:
5d:d8:1d:22:0e:5a:09:25:66:22:63:75:28:38:31:a3:50:2f:
b2:88:0a:a6:f0:ea:65:df:ba:37:17:a7:cc:b9:67:2c:09:df:
d8:ef:b7:78:04:5b:cf:9b:bf:5c:bd:cd:d2:98:c4:ba:b2:6f:
dd:aa:db:d0:19:94:07:aa:3e:a9:7d:f7:83:9a:88:47:89:01:
d5:52:ab:64:01:f7:8a:3d:a4:7e:7d:ea:23:51:63:ee:35:ba:
1d:8f:50:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:18 2026 by rpki-client