Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
File: OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft (raw, json)
Hash identifier: svOzkpf0rxO31pTMman6xlldBqyyJMmJKSUe5Q5KFGE=
Subject key identifier: FE:FC:1A:1F:11:89:0F:B3:94:49:DB:E2:FB:26:69:57:96:BD:A3:E1
Authority key identifier: 39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
Certificate issuer: /CN=39348867dcb2956aca65d08348e440d4727a3743
Certificate serial: 019CACB4DE532E38DBB872B8AC39DE05E076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
Manifest number: 05EB
Signing time: Mon 02 Mar 2026 04:01:00 +0000
Manifest this update: Mon 02 Mar 2026 04:01:00 +0000
Manifest next update: Tue 03 Mar 2026 04:01:00 +0000
Files and hashes: 1: OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl (hash: 2rc5X692eMvswwTxYJNp8Z4Y0pNltlp36pDmX3Exi4Q=)
2: T72oUjEo0s0JrOYNowoRHWjX0w4.roa (hash: y4/cjDz+TB542z9AKMzNcOCpxzpFqML97uF7RmVq7YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:de:53:2e:38:db:b8:72:b8:ac:39:de:05:e0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39348867dcb2956aca65d08348e440d4727a3743
Validity
Not Before: Mar 2 04:01:00 2026 GMT
Not After : Mar 3 04:01:00 2026 GMT
Subject: CN=fefc1a1f11890fb39449dbe2fb26695796bda3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c9:bc:7d:40:59:85:14:20:15:46:68:1b:17:
b9:e4:a2:77:6b:44:11:9c:d2:2f:52:33:72:72:1a:
c6:cf:5c:16:72:e3:42:42:b2:37:19:6a:6f:77:05:
07:c3:cd:ec:51:f1:19:3c:f0:7f:e5:03:21:16:97:
12:17:d5:1d:b3:86:9f:f7:17:a3:f9:87:6b:d8:96:
4a:20:11:f8:f4:9a:17:2b:03:d8:88:33:ac:86:50:
f2:23:d2:3b:8b:27:16:01:84:5b:05:52:4c:a0:fa:
85:e4:aa:49:b8:d0:52:52:05:e7:88:56:19:ce:72:
d0:a9:c5:fa:54:cd:3a:a2:cd:07:42:97:4f:ae:84:
66:b8:5b:09:7c:ff:23:13:b9:54:7b:13:8b:b7:5c:
2f:67:48:51:7b:77:6e:56:6b:ec:df:4d:41:ec:24:
04:8b:fb:99:ee:d4:35:ee:0a:c9:84:47:7d:bc:0a:
dc:df:93:71:2c:8b:f0:4c:79:8b:f5:d1:a3:d9:47:
64:1a:a5:ba:c1:b8:a7:9a:75:79:24:12:01:2c:53:
1e:13:0c:c4:4e:9d:5d:10:82:d2:c2:d9:f1:c6:f9:
d8:71:ce:c8:9a:c6:df:5c:b8:d0:33:6d:5d:01:eb:
79:71:72:67:36:f2:bb:d5:b1:5e:c3:a1:ba:c5:c9:
e2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:FC:1A:1F:11:89:0F:B3:94:49:DB:E2:FB:26:69:57:96:BD:A3:E1
X509v3 Authority Key Identifier:
keyid:39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:4d:2a:3d:79:f5:9f:f1:e9:24:6d:c8:28:42:85:81:3d:68:
9c:c9:59:fe:52:db:74:5c:e2:fa:03:d1:df:da:61:45:2d:6c:
00:a5:95:a4:26:1d:e8:17:5a:6a:55:d0:16:68:b8:15:34:cd:
1a:57:1d:2a:52:ea:1c:f3:8b:0f:90:25:48:a7:53:89:ae:5c:
69:96:eb:14:1e:af:2f:3f:30:26:b4:b7:e2:5d:54:fa:12:e5:
c5:ec:14:c6:0f:4d:4c:df:89:5d:2b:69:d6:d1:c7:44:2f:52:
af:33:f1:7f:a3:db:8f:14:40:7b:11:da:09:01:21:3c:c8:00:
7d:5f:96:e0:34:06:80:08:2c:07:20:4b:5d:1a:a0:d7:87:81:
b3:77:bd:6d:ea:11:5c:70:da:b9:4b:6b:d1:fa:a2:b0:9a:dc:
49:50:cc:e4:f3:e9:22:90:fd:e9:a7:aa:80:3e:99:5e:74:92:
9d:e6:c0:6d:7d:97:10:b0:46:bf:a3:83:e4:99:ed:f5:ef:b0:
ad:9e:ac:9a:76:79:a3:d0:87:07:b4:6f:61:13:fa:40:91:30:
d1:47:a3:c9:29:38:44:f1:3f:09:89:5b:bc:13:d7:ea:04:9a:
99:90:6b:5b:c9:2e:a7:ad:7e:e1:ec:8a:d1:25:0e:54:bc:b2:
4a:02:91:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystN5TLjjbuHK4rDneBeB2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzQ4ODY3ZGNiMjk1NmFjYTY1ZDA4MzQ4ZTQ0MGQ0NzI3
YTM3NDMwHhcNMjYwMzAyMDQwMTAwWhcNMjYwMzAzMDQwMTAwWjAzMTEwLwYDVQQD
EyhmZWZjMWExZjExODkwZmIzOTQ0OWRiZTJmYjI2Njk1Nzk2YmRhM2UxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcm8fUBZhRQgFUZoGxe55KJ3a0QR
nNIvUjNychrGz1wWcuNCQrI3GWpvdwUHw83sUfEZPPB/5QMhFpcSF9Uds4af9xej
+Ydr2JZKIBH49JoXKwPYiDOshlDyI9I7iycWAYRbBVJMoPqF5KpJuNBSUgXniFYZ
znLQqcX6VM06os0HQpdProRmuFsJfP8jE7lUexOLt1wvZ0hRe3duVmvs301B7CQE
i/uZ7tQ17grJhEd9vArc35NxLIvwTHmL9dGj2UdkGqW6wbinmnV5JBIBLFMeEwzE
Tp1dEILSwtnxxvnYcc7ImsbfXLjQM21dAet5cXJnNvK71bFew6G6xcnizwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP78Gh8RiQ+zlEnb4vsmaVeWvaPhMB8GA1UdIwQY
MBaAFDk0iGfcspVqymXQg0jkQNRyejdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzIt
YmZjNmY0OGU5NmFiLzEvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzItYmZjNmY0OGU5NmFi
LzEvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVU0qPXn1
n/HpJG3IKEKFgT1onMlZ/lLbdFzi+gPR39phRS1sAKWVpCYd6BdaalXQFmi4FTTN
GlcdKlLqHPOLD5AlSKdTia5caZbrFB6vLz8wJrS34l1U+hLlxewUxg9NTN+JXStp
1tHHRC9SrzPxf6PbjxRAexHaCQEhPMgAfV+W4DQGgAgsByBLXRqg14eBs3e9beoR
XHDauUtr0fqisJrcSVDM5PPpIpD96aeqgD6ZXnSSnebAbX2XELBGv6OD5Jnt9e+w
rZ6smnZ5o9CHB7RvYRP6QJEw0UejySk4RPE/CYlbvBPX6gSamZBrW8kup61+4eyK
0SUOVLyySgKRYg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:15:41 2026 by rpki-client