Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
File: cOKzQXw5wP47u7xNUj7UN7KcWhw.mft (raw, json)
Hash identifier: Ms1B4qM2GN8teZi/bR4B5Y1iPNFfh2mez9aWhBr7DWg=
Subject key identifier: B1:39:A5:37:55:F2:20:49:29:F9:EF:50:E6:70:8F:85:40:56:28:1C
Authority key identifier: 70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
Certificate issuer: /CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Certificate serial: 019DA41CC0EDB421095367A1678FB2829589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
Manifest number: 1859
Signing time: Sun 19 Apr 2026 05:00:40 +0000
Manifest this update: Sun 19 Apr 2026 05:00:40 +0000
Manifest next update: Mon 20 Apr 2026 05:00:40 +0000
Files and hashes: 1: 4zn72bRe20a9LWBauf9Jwg2zBPE.roa (hash: wXzhbicfsNgTz8LgBL2cOtIn+bE67CUdF+iypRz7TNw=)
2: cOKzQXw5wP47u7xNUj7UN7KcWhw.crl (hash: D5Tb4+0KlusT6wtLkZT9bvybTjOLcSaNoJD44oQPBu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1c:c0:ed:b4:21:09:53:67:a1:67:8f:b2:82:95:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Validity
Not Before: Apr 19 05:00:40 2026 GMT
Not After : Apr 20 05:00:40 2026 GMT
Subject: CN=b139a53755f2204929f9ef50e6708f854056281c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:61:e3:f0:71:d2:21:65:2b:ce:dc:02:03:6e:
0b:43:58:09:c4:24:f3:f3:bb:a3:35:02:82:b0:53:
f9:1a:46:7f:86:3e:28:52:ef:c4:a8:ce:90:7f:83:
00:6f:c3:79:32:05:b8:79:e5:c6:67:4a:1a:70:99:
98:df:dc:8b:fe:ae:2e:d8:22:d0:83:77:fd:a1:ae:
83:a6:29:7d:6b:57:8a:6d:1a:31:22:ee:e3:b9:f6:
95:d6:bc:05:ec:79:4d:c5:63:c8:94:8b:28:b1:88:
8c:d8:5f:14:ce:34:95:d8:2d:8b:12:ae:09:1d:21:
55:85:4c:64:83:31:12:7e:b6:e4:ab:9b:ac:03:ce:
e2:6d:05:dc:b2:63:dc:d9:9d:38:f7:ee:0a:dc:8e:
82:3f:dd:d6:f0:bb:e1:5c:da:41:e6:82:79:85:0a:
94:21:1a:9c:cb:ac:a1:3b:2e:9c:b8:11:36:c0:12:
b5:88:24:46:22:f8:ff:ef:55:61:3d:c6:3b:11:e0:
98:5e:69:23:73:56:1b:18:26:74:3f:3e:b7:ab:83:
60:48:70:4d:40:19:8e:fc:d9:10:51:eb:c2:9c:91:
06:ec:4a:15:ff:87:05:54:39:6a:21:2c:70:5c:a9:
c5:c7:cf:2d:c4:95:95:01:2d:a0:b1:c7:b5:46:13:
c1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:39:A5:37:55:F2:20:49:29:F9:EF:50:E6:70:8F:85:40:56:28:1C
X509v3 Authority Key Identifier:
keyid:70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:c7:f5:8d:57:2d:40:2e:05:90:a4:99:6f:03:64:c1:ad:af:
2e:51:78:86:16:cf:78:d8:9b:0c:f5:f6:60:63:fd:22:41:8b:
bd:b1:5a:a8:6a:93:16:33:52:68:18:63:5d:ab:af:43:1e:93:
3a:1f:81:bd:29:01:5b:98:de:4c:64:f4:c0:c3:6c:ff:24:13:
6b:7c:30:d5:73:41:4e:72:03:20:5a:30:b2:38:50:5f:0a:f5:
f8:86:fe:a7:e9:cf:9e:d1:b1:a6:c9:36:b9:67:af:45:fe:05:
26:93:ee:a4:1a:f7:cc:c1:d6:44:b5:23:e6:d7:9f:99:f3:a4:
52:a8:8a:b4:b0:fb:db:45:16:94:6b:8f:a4:0d:d8:7c:e9:26:
8e:5b:59:9e:db:4d:df:be:b7:cb:ce:1a:80:4f:2c:2f:74:91:
94:88:ee:b5:e2:72:c4:3f:4f:ca:d8:a5:d3:9a:b5:bf:bf:58:
59:06:86:3d:61:46:5a:f1:b8:db:02:72:5b:37:b1:df:03:80:
05:27:3b:8e:80:4a:78:2c:d9:71:3e:32:0b:08:f2:85:b3:3c:
9f:7b:c4:12:cd:e9:c0:03:b1:ea:6b:a0:6e:db:9e:a5:f8:80:
1e:ed:7f:b2:3f:ab:6f:6a:a7:09:17:a6:e6:ef:1e:e1:6d:ca:
22:7e:f3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:18:57 2026 by rpki-client