Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: 1xLNUwPiwDZOu1VHQBgfwGfk43OxZ1kFVxma+uvLkXk=
Subject key identifier: D1:13:97:10:F6:85:39:67:92:7C:24:CA:B5:A6:D6:CF:83:AE:75:F9
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 019CAB6B6CCA37D8373B73386C0123099FCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 22:01:09 +0000
Manifest this update: Sun 01 Mar 2026 22:01:09 +0000
Manifest next update: Mon 02 Mar 2026 22:01:09 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: aT4OFyPP2lpYy+nX1JiQVtEcUDoI3/MU2Sh6OBZywLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:6c:ca:37:d8:37:3b:73:38:6c:01:23:09:9f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: Mar 1 22:01:09 2026 GMT
Not After : Mar 2 22:01:09 2026 GMT
Subject: CN=d1139710f6853967927c24cab5a6d6cf83ae75f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9b:56:b9:a5:c0:80:c7:6c:7b:a6:70:a9:2c:
4c:35:a1:a4:95:77:8c:1a:d9:58:f4:a4:ea:1a:c9:
60:62:d1:f3:3a:fc:17:dc:c0:9f:c2:31:de:f5:16:
72:47:15:8d:1e:e7:5c:14:88:cc:05:c6:4e:29:5b:
36:a2:98:d0:f3:0a:9a:90:6c:e9:35:1f:01:a1:25:
03:69:ff:d9:4b:e8:f8:e9:24:09:06:f2:1a:69:48:
ad:bd:07:5c:e5:70:2c:a7:f1:b0:0c:b9:9c:c0:e5:
fa:e8:0b:5f:5c:48:12:97:f1:e6:e6:72:50:7d:51:
af:63:18:7f:43:5b:55:b3:84:df:1c:d5:6e:7a:c0:
3e:69:7a:c3:33:da:e2:12:f7:71:3d:e3:04:22:37:
2e:10:4b:d2:f5:8d:27:79:3d:f7:19:ad:16:46:e8:
48:8e:b2:b7:e4:8e:a6:b6:fb:00:f0:ea:6d:01:1e:
7b:03:57:fe:94:94:2c:66:64:c9:b0:30:cb:a3:97:
ef:33:4d:8c:16:da:eb:2c:63:17:73:a1:9d:c3:37:
7a:be:54:03:5f:15:2d:78:bc:62:00:b1:c8:16:1b:
2d:ee:ee:e3:2c:1d:76:5e:84:05:84:ed:45:55:ec:
2f:63:11:cb:b4:05:2f:96:b9:8e:8f:e4:30:68:6c:
29:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:13:97:10:F6:85:39:67:92:7C:24:CA:B5:A6:D6:CF:83:AE:75:F9
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b9:69:46:56:86:81:7e:ab:f0:7e:97:05:ee:ab:ac:25:44:
a1:ac:a9:6a:5b:1d:c4:ba:16:2a:59:4a:72:8d:d6:d3:c0:0c:
21:64:f0:d5:2e:bf:ec:60:fd:24:87:85:70:be:cd:22:e8:28:
a4:8c:96:5b:98:5e:01:f4:bd:23:15:54:16:31:c4:29:77:78:
66:e2:aa:89:5f:6a:70:48:8f:42:e2:8f:f2:71:1a:61:91:3c:
59:4a:d7:7f:a9:25:ff:f9:7c:3a:ec:50:94:d0:d2:a4:6c:81:
bd:d9:f3:95:5e:13:1b:01:33:f1:9a:69:3a:65:8b:2a:b7:92:
24:95:a5:00:7d:0c:7e:f1:4c:f0:3c:c8:26:e0:47:a2:59:e0:
ff:25:e9:7f:f0:2f:76:2b:1b:7a:2d:0e:8e:79:af:87:c2:48:
05:dc:3a:c9:f9:0f:d2:95:63:7d:6c:5b:8f:67:4e:42:fb:d8:
2c:1e:03:6b:82:ef:8e:4e:04:3f:1b:c6:72:57:1e:f7:c0:5d:
8d:af:68:a9:1a:b9:ee:e1:38:55:7f:69:da:60:01:4d:70:c4:
c2:e2:b6:fb:f3:d0:42:8d:0d:1d:e2:f4:95:f6:2e:2c:cb:f0:
0e:38:bb:b0:70:e5:20:dd:cf:8c:6a:04:35:8b:42:4c:69:63:
a0:25:c5:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra2zKN9g3O3M4bAEjCZ/KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5Y2QxZDViYjg4OTU4YzY5Y2JkZGU5MGE5ZTA1NmI0OGM0
ZmFiZjgwHhcNMjYwMzAxMjIwMTA5WhcNMjYwMzAyMjIwMTA5WjAzMTEwLwYDVQQD
EyhkMTEzOTcxMGY2ODUzOTY3OTI3YzI0Y2FiNWE2ZDZjZjgzYWU3NWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZtWuaXAgMdse6ZwqSxMNaGklXeM
GtlY9KTqGslgYtHzOvwX3MCfwjHe9RZyRxWNHudcFIjMBcZOKVs2opjQ8wqakGzp
NR8BoSUDaf/ZS+j46SQJBvIaaUitvQdc5XAsp/GwDLmcwOX66AtfXEgSl/Hm5nJQ
fVGvYxh/Q1tVs4TfHNVuesA+aXrDM9riEvdxPeMEIjcuEEvS9Y0neT33Ga0WRuhI
jrK35I6mtvsA8OptAR57A1f+lJQsZmTJsDDLo5fvM02MFtrrLGMXc6Gdwzd6vlQD
XxUteLxiALHIFhst7u7jLB12XoQFhO1FVewvYxHLtAUvlrmOj+QwaGwpwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNETlxD2hTlnknwkyrWm1s+DrnX5MB8GA1UdIwQY
MBaAFDnNHVu4iVjGnL3ekKngVrSMT6v4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMt
NDZhODVhMjhlNzQ5LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMtNDZhODVhMjhlNzQ5
LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErlpRlaG
gX6r8H6XBe6rrCVEoaypalsdxLoWKllKco3W08AMIWTw1S6/7GD9JIeFcL7NIugo
pIyWW5heAfS9IxVUFjHEKXd4ZuKqiV9qcEiPQuKP8nEaYZE8WUrXf6kl//l8OuxQ
lNDSpGyBvdnzlV4TGwEz8ZppOmWLKreSJJWlAH0MfvFM8DzIJuBHolng/yXpf/Av
disbei0Ojnmvh8JIBdw6yfkP0pVjfWxbj2dOQvvYLB4Da4Lvjk4EPxvGclce98Bd
ja9oqRq57uE4VX9p2mABTXDEwuK2+/PQQo0NHeL0lfYuLMvwDji7sHDlIN3PjGoE
NYtCTGljoCXFuw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 07:13:49 2026 by rpki-client