Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: ZmpSM4AnjJOVGwLU9MS3r9AS+tfQ14kobOU4Vu2aADA=
Subject key identifier: 9C:8C:C6:10:41:01:EF:6C:48:15:78:39:3A:A0:95:18:54:C1:14:36
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 019E1E6C7D006C6A926AB9CEB41E55457C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 1484
Signing time: Tue 12 May 2026 23:01:26 +0000
Manifest this update: Tue 12 May 2026 23:01:26 +0000
Manifest next update: Wed 13 May 2026 23:01:26 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: OWRBVamolTBtabRFB6KFGfAZxLXax/i8KV3jiC97gGo=)
2: wHo6ZTM3-jzipse2lB9xc8s3uRA.roa (hash: 4oFkl4sS+vN5C2DeyY08mCPgjzjmSD8SNhBeGnmU75Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:7d:00:6c:6a:92:6a:b9:ce:b4:1e:55:45:7c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: May 12 23:01:26 2026 GMT
Not After : May 13 23:01:26 2026 GMT
Subject: CN=9c8cc6104101ef6c481578393aa0951854c11436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:c3:3c:ee:c9:58:d4:37:0d:ca:b9:89:01:
5a:78:d6:a5:21:d3:39:ad:e1:d9:74:e2:fa:2e:dc:
86:44:99:57:b2:52:51:36:51:f9:55:be:17:a7:f2:
33:01:fc:5d:f5:1a:cf:59:3a:0e:9c:af:94:59:9f:
56:58:a2:30:de:f4:82:d9:9a:f6:8b:5b:73:a2:e2:
8b:fe:5d:16:c8:39:bd:9b:92:b7:6e:09:4e:08:1b:
d1:4a:fc:1a:61:bb:94:28:48:b9:ac:59:66:e9:40:
44:34:ab:8d:fc:5e:05:fa:5f:46:9e:49:57:ab:09:
d7:82:44:57:69:b0:db:7f:ce:ba:b6:80:56:db:c0:
0b:ad:c3:2d:8f:a6:6c:92:82:5d:b1:bc:f1:dd:89:
23:24:60:7e:d6:99:2c:fd:b0:21:d5:80:f6:6c:17:
99:36:d2:ad:ec:23:64:9b:50:3b:df:27:88:14:e5:
b8:94:64:2a:a6:7a:17:9c:13:a9:df:05:d4:32:e7:
19:91:d0:97:6d:09:fa:31:65:4b:1d:5b:81:62:0f:
6e:8a:8b:ee:99:17:2e:49:ac:96:1a:7f:ec:d3:bf:
1c:9f:67:01:53:48:75:3e:a8:b7:07:3f:fc:bd:d1:
d8:bc:b1:9a:ed:15:8d:7f:6e:36:db:f0:91:85:4e:
99:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8C:C6:10:41:01:EF:6C:48:15:78:39:3A:A0:95:18:54:C1:14:36
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:f5:4a:24:08:09:84:1f:39:50:f5:60:a2:da:89:69:fd:3e:
07:a9:1f:3f:25:fb:c8:c2:c6:1e:2b:9d:9f:ab:0b:78:fa:a2:
e7:11:97:d4:47:08:2e:30:84:14:6d:4f:82:6b:27:1a:a6:67:
ce:ed:7d:77:fe:38:a8:16:5b:0a:27:6a:b0:fa:35:1c:f5:0b:
e8:45:99:ff:a6:ba:d7:08:62:f4:e5:32:b0:4e:a6:4a:b0:55:
e7:ca:e6:10:28:4b:6a:12:51:3d:11:85:84:20:be:08:a1:97:
ea:cc:16:7f:56:13:31:08:4e:bb:7d:2a:31:45:15:07:0c:5f:
00:42:6d:30:26:e1:e4:cc:f1:da:0e:71:1b:24:b7:32:f6:7b:
63:38:33:d5:78:10:2d:2a:8e:e4:16:60:76:43:0a:0c:73:7b:
9f:b7:19:55:d8:64:a1:35:85:fe:15:88:1b:24:7e:99:60:c0:
53:3f:16:85:d9:a6:72:18:89:ab:37:4d:fe:00:01:19:a8:a6:
37:49:37:64:fb:bb:bb:e2:3a:fb:d6:d4:68:ed:9c:9e:f4:7f:
49:d0:ac:d3:09:25:57:62:7f:74:fd:c0:63:b5:de:db:54:ff:
98:a9:4e:f0:26:b8:10:43:ae:7c:f3:34:0c:40:6d:b3:7e:ff:
9c:7c:35:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ebH0AbGqSarnOtB5VRXxRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2
YmJlZTIwHhcNMjYwNTEyMjMwMTI2WhcNMjYwNTEzMjMwMTI2WjAzMTEwLwYDVQQD
Eyg5YzhjYzYxMDQxMDFlZjZjNDgxNTc4MzkzYWEwOTUxODU0YzExNDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2XDPO7JWNQ3Dcq5iQFaeNalIdM5
reHZdOL6LtyGRJlXslJRNlH5Vb4Xp/IzAfxd9RrPWToOnK+UWZ9WWKIw3vSC2Zr2
i1tzouKL/l0WyDm9m5K3bglOCBvRSvwaYbuUKEi5rFlm6UBENKuN/F4F+l9GnklX
qwnXgkRXabDbf866toBW28ALrcMtj6ZskoJdsbzx3YkjJGB+1pks/bAh1YD2bBeZ
NtKt7CNkm1A73yeIFOW4lGQqpnoXnBOp3wXUMucZkdCXbQn6MWVLHVuBYg9uiovu
mRcuSayWGn/s078cn2cBU0h1Pqi3Bz/8vdHYvLGa7RWNf2422/CRhU6ZuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJyMxhBBAe9sSBV4OTqglRhUwRQ2MB8GA1UdIwQY
MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt
ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5
LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASfVKJAgJ
hB85UPVgotqJaf0+B6kfPyX7yMLGHiudn6sLePqi5xGX1EcILjCEFG1PgmsnGqZn
zu19d/44qBZbCidqsPo1HPUL6EWZ/6a61whi9OUysE6mSrBV58rmEChLahJRPRGF
hCC+CKGX6swWf1YTMQhOu30qMUUVBwxfAEJtMCbh5Mzx2g5xGyS3MvZ7Yzgz1XgQ
LSqO5BZgdkMKDHN7n7cZVdhkoTWF/hWIGyR+mWDAUz8WhdmmchiJqzdN/gABGaim
N0k3ZPu7u+I6+9bUaO2cnvR/SdCs0wklV2J/dP3AY7Xe21T/mKlO8Ca4EEOufPM0
DEBts37/nHw1pQ==
-----END CERTIFICATE-----
Generated at Wed May 13 07:21:37 2026 by rpki-client