Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File: fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier: BGl38Gh63k6mghLAJoUBtTL9uX31q7ax4BO10alCu4k=
Subject key identifier: 0E:97:46:03:B3:B5:AC:9E:DD:30:30:B1:2A:20:D5:78:0A:AB:C3:A9
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer: /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial: 019D99D07DD4CE96E52CEAB5D77A73413A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number: 17D8
Signing time: Fri 17 Apr 2026 05:01:10 +0000
Manifest this update: Fri 17 Apr 2026 05:01:10 +0000
Manifest next update: Sat 18 Apr 2026 05:01:10 +0000
Files and hashes: 1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: FRS9yg0Efx0nslW7Z3VZf54GyieRF4bEo/PB3QNixBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:7d:d4:ce:96:e5:2c:ea:b5:d7:7a:73:41:3a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Validity
Not Before: Apr 17 05:01:10 2026 GMT
Not After : Apr 18 05:01:10 2026 GMT
Subject: CN=0e974603b3b5ac9edd3030b12a20d5780aabc3a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3a:5a:70:90:61:58:fe:c2:cf:dc:be:11:ed:
ae:fc:89:79:b5:24:c0:00:43:68:25:86:30:17:a5:
22:4a:d7:66:d7:49:d5:65:6a:6a:8e:eb:e8:5d:ed:
23:c1:31:04:3d:c9:a2:3d:1d:3c:53:df:55:b3:64:
16:87:00:13:2c:b5:f7:b4:3e:d9:6c:bb:e3:26:d8:
09:dd:1d:ac:ea:2e:82:ab:ef:f0:f7:cb:bb:5b:2f:
1e:26:7f:1c:53:d9:c3:02:70:61:1f:f6:9a:49:bd:
b3:33:63:5f:e2:5d:2e:4f:ef:2d:1f:8b:ba:1e:e0:
2f:f6:59:94:71:c9:d0:cf:9e:60:dd:88:67:02:68:
f3:69:8f:e5:60:19:2b:2b:93:41:87:bd:a4:f3:30:
20:d8:eb:ae:44:29:d4:d6:f4:b4:e9:6e:54:46:c8:
d0:2d:cf:a4:84:c3:f5:11:b0:1f:a9:a1:dc:8f:3a:
66:b5:e0:c5:16:3d:76:8f:bc:54:88:95:70:60:a4:
b0:e9:40:a9:f2:08:7a:1a:84:e8:4d:7a:26:da:ae:
90:4b:30:95:a4:c7:6e:e6:25:79:fd:0b:9a:02:55:
cd:e1:7c:a6:d9:b8:93:87:96:54:10:d4:0d:c1:d4:
91:9c:1d:78:56:45:3d:98:fd:8d:2f:47:f6:4f:36:
a1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:97:46:03:B3:B5:AC:9E:DD:30:30:B1:2A:20:D5:78:0A:AB:C3:A9
X509v3 Authority Key Identifier:
keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:91:fd:c7:74:d1:ab:98:fd:d1:3f:33:0a:35:23:19:76:72:
9d:a3:8e:67:3b:bb:03:53:1a:60:c1:ca:cb:4a:db:ae:4f:2c:
b1:9c:8d:d9:fa:0b:0e:2a:f3:f3:b0:ab:1d:0e:9b:99:84:1f:
84:09:bf:fd:a1:dc:f9:c3:dc:4e:2c:5a:7c:72:f1:c6:53:e3:
51:e9:67:80:22:16:15:db:32:67:c5:cf:2f:ff:e3:33:c6:f5:
7a:fd:96:ac:d9:4d:cc:d5:2c:3d:63:88:38:90:d3:7d:f7:41:
9c:a6:9d:92:d4:ab:80:b6:c5:d8:49:6d:b6:c9:d1:ab:ec:ab:
74:aa:eb:5c:cf:05:47:c2:6e:7b:84:2f:d2:5c:1e:6e:16:da:
d0:83:fa:26:c4:41:c4:ef:82:cb:0f:66:91:4b:1b:ee:d1:64:
5a:12:95:95:eb:5f:30:9e:eb:82:e5:7c:4b:4c:35:b6:26:0a:
92:00:9a:20:9c:f3:bb:fe:01:4a:8b:b8:87:04:f7:75:e9:29:
1e:ae:30:42:fa:2b:a8:b1:f3:f6:e1:1d:5b:a4:63:ba:af:78:
c9:e4:a1:c4:c4:b4:58:8f:cc:8c:6b:c7:c7:5e:3b:4f:76:95:
55:5a:ce:a4:8d:52:bb:ba:d8:e7:9a:a6:ea:45:be:f9:80:c6:
39:a9:84:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0H3UzpblLOq113pzQTqaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjOWQ2N2YwMjdhYjJiMGZmMjZhMzU3NTE0NzM5YWZlODgw
MzdhYzkwHhcNMjYwNDE3MDUwMTEwWhcNMjYwNDE4MDUwMTEwWjAzMTEwLwYDVQQD
EygwZTk3NDYwM2IzYjVhYzllZGQzMDMwYjEyYTIwZDU3ODBhYWJjM2E5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojpacJBhWP7Cz9y+Ee2u/Il5tSTA
AENoJYYwF6UiStdm10nVZWpqjuvoXe0jwTEEPcmiPR08U99Vs2QWhwATLLX3tD7Z
bLvjJtgJ3R2s6i6Cq+/w98u7Wy8eJn8cU9nDAnBhH/aaSb2zM2Nf4l0uT+8tH4u6
HuAv9lmUccnQz55g3YhnAmjzaY/lYBkrK5NBh72k8zAg2OuuRCnU1vS06W5URsjQ
Lc+khMP1EbAfqaHcjzpmteDFFj12j7xUiJVwYKSw6UCp8gh6GoToTXom2q6QSzCV
pMdu5iV5/QuaAlXN4Xym2biTh5ZUENQNwdSRnB14VkU9mP2NL0f2TzahDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6XRgOztaye3TAwsSog1XgKq8OpMB8GA1UdIwQY
MBaAFHydZ/AnqysP8mo1dRRzmv6IA3rJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkoxbjhDZXJLd195YWpWMUZIT2Ffb2dEZXNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC82OThmZTgtNWY2OS00ZDM3LWJkNTgt
NjVlYjFiYTZlMzM3LzEvZkoxbjhDZXJLd195YWpWMUZIT2Ffb2dEZXNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC82OThmZTgtNWY2OS00ZDM3LWJkNTgtNjVlYjFiYTZlMzM3
LzEvZkoxbjhDZXJLd195YWpWMUZIT2Ffb2dEZXNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANJH9x3TR
q5j90T8zCjUjGXZynaOOZzu7A1MaYMHKy0rbrk8ssZyN2foLDirz87CrHQ6bmYQf
hAm//aHc+cPcTixafHLxxlPjUelngCIWFdsyZ8XPL//jM8b1ev2WrNlNzNUsPWOI
OJDTffdBnKadktSrgLbF2ElttsnRq+yrdKrrXM8FR8Jue4Qv0lwebhba0IP6JsRB
xO+Cyw9mkUsb7tFkWhKVletfMJ7rguV8S0w1tiYKkgCaIJzzu/4BSou4hwT3dekp
Hq4wQvorqLHz9uEdW6Rjuq94yeShxMS0WI/MjGvHx147T3aVVVrOpI1Su7rY55qm
6kW++YDGOamERQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:23:51 2026 by rpki-client