Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: 9zM+u282rTNcNiWuPIcWYOO1AQ8YkB1VvRBOQkrs5Bk=
Subject key identifier: 6D:29:E6:5C:B9:C5:94:A0:01:3B:48:B0:90:98:3B:2B:30:DA:EE:AB
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019D27047A6E641677FB1477246D7611EF77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 188E
Signing time: Wed 25 Mar 2026 22:01:38 +0000
Manifest this update: Wed 25 Mar 2026 22:01:38 +0000
Manifest next update: Thu 26 Mar 2026 22:01:38 +0000
Files and hashes: 1: 5tf62tGZz7nxnApGHs0XPt8oyEo.roa (hash: eqObETU4MUet/YxGyvd+4bjlEhpIkWmlGdSy4IzjRT0=)
2: C4lzeE9s0JPh3LMFogAb2-unpfM.roa (hash: B/VA7Y5H146Nk4o0VlZHFllZAXs0gNzPmZMsk3LGaPk=)
3: GlGwuQ4tVBcVbzdxZ764xAH4ZKY.roa (hash: dAsL5YC+dtQ5UOuP3k5Dc/1X4NRNua75JEno17YoMPc=)
4: MhSY36OZkDXTKKOaDPZo_gxxyys.roa (hash: 2VWhIerfpwbk0gwrISpBPr4SWZ289fTqKRc3I0+Rsfg=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: og0VP33dkvPOPOeuDF9xijTc/pDnXQAqaCfHpY+Vy2U=)
6: SV9q8qOenCpWfyZ_KmzmoZ8gOso.roa (hash: 316dq0EbdTMXN9J+sZt1LaGvCQCGOGhyEJsLNYpVENg=)
7: Un1O1eVRsl-RNFGZVC7Hh1zlUso.roa (hash: wb6n3U2bPJOBiqYHITV1Aqlnrh4S2E/QbN0YryOpk2o=)
8: h2NmHgEuIROZq_hEdlknexmBTGM.roa (hash: 7SwAGH9Cu/tcgfRdpv3e3i4Xnp328jS2BOR70XX2pq0=)
9: n6AwAFReNaZdbkfki7LETtgHQPk.roa (hash: 1R1A1mLyenvEeIw8x55MsxtBChYHFqi/CKG9tPv+lwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:7a:6e:64:16:77:fb:14:77:24:6d:76:11:ef:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Mar 25 22:01:38 2026 GMT
Not After : Mar 26 22:01:38 2026 GMT
Subject: CN=6d29e65cb9c594a0013b48b090983b2b30daeeab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:49:43:a3:1d:d9:b7:8f:4f:3e:35:88:ae:68:
ab:63:1d:c2:3f:46:36:0d:7d:c2:aa:06:2e:f6:c5:
6e:52:f8:2f:a7:45:52:d4:22:ab:7b:e6:47:5d:a7:
b2:25:c0:0f:f0:5f:66:e6:d9:44:3c:53:1c:53:44:
ec:c3:24:c2:e8:32:03:6b:cd:93:4e:da:68:ba:2d:
da:ca:89:c0:24:b2:8c:f5:8e:70:a0:60:57:bb:3c:
03:16:6b:1c:48:42:b7:88:f5:b2:1d:c7:8b:72:b0:
eb:43:52:f1:d5:33:31:69:67:ff:c3:cb:00:e9:38:
18:9a:08:88:e7:9e:e6:d2:7f:cd:78:4e:7a:6a:26:
24:38:0c:53:53:5b:04:79:00:ef:6e:3b:db:18:08:
26:c2:5e:68:3f:2b:61:47:a8:3c:16:70:e3:4c:b1:
a7:1d:cd:23:9f:30:62:e1:bd:ec:3b:13:4b:79:ad:
f1:fe:02:34:5e:49:99:02:1b:1c:c8:a0:f9:d7:c2:
bf:8b:0d:fe:d6:ea:fc:85:0b:96:dc:bc:52:e7:51:
1b:e7:26:89:08:88:14:52:52:78:e6:1a:99:ee:4e:
33:5c:7f:89:af:b1:18:bf:3f:a5:2a:76:97:7f:c4:
9f:c7:6d:09:10:7c:a0:91:01:c0:dd:59:21:cb:c6:
75:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:29:E6:5C:B9:C5:94:A0:01:3B:48:B0:90:98:3B:2B:30:DA:EE:AB
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6d:d4:8c:b7:ae:7c:c9:16:da:cb:a2:1d:ec:e2:4c:00:e8:
fd:ce:5c:09:d4:51:74:a2:63:41:45:5a:d4:8e:3e:9f:03:0c:
c5:2d:9f:9b:9d:be:f4:e1:1a:00:87:e9:04:3e:01:51:c6:76:
11:81:08:65:8c:b9:2e:48:f9:0b:c5:9c:27:95:d5:2b:61:ad:
cb:ca:51:b8:d8:ec:2b:3d:f6:75:f2:c9:f6:f1:b9:7a:ac:7d:
c0:2b:86:5e:15:4d:ff:5d:76:71:42:c8:13:f7:a9:03:54:42:
31:60:51:72:6b:b7:4d:d7:72:88:e7:dc:1f:c7:e2:c2:63:7c:
61:70:89:f4:36:d1:ae:5e:09:68:13:8c:59:39:33:11:21:65:
ed:08:32:bf:4b:cf:81:1f:f2:9a:fe:6e:46:e4:4c:bd:da:a6:
05:74:59:4f:e5:f9:99:58:ae:a2:db:59:81:69:a1:f2:6e:e1:
ce:96:be:53:72:88:5f:16:02:c6:ce:b6:94:9f:2e:d6:97:e1:
44:84:4b:c6:02:d7:b3:b2:c1:d3:88:9a:52:40:75:ec:ec:7e:
fc:58:cc:0a:54:56:25:3e:9a:d0:d1:5d:a1:5f:90:c1:9c:13:
e5:8c:3f:b0:e6:61:6a:6f:ae:ea:b2:ee:97:67:9b:2c:94:78:
69:cc:4c:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBHpuZBZ3+xR3JG12Ee93MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx
Y2YxMTMwHhcNMjYwMzI1MjIwMTM4WhcNMjYwMzI2MjIwMTM4WjAzMTEwLwYDVQQD
Eyg2ZDI5ZTY1Y2I5YzU5NGEwMDEzYjQ4YjA5MDk4M2IyYjMwZGFlZWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ElDox3Zt49PPjWIrmirYx3CP0Y2
DX3CqgYu9sVuUvgvp0VS1CKre+ZHXaeyJcAP8F9m5tlEPFMcU0TswyTC6DIDa82T
Ttpoui3ayonAJLKM9Y5woGBXuzwDFmscSEK3iPWyHceLcrDrQ1Lx1TMxaWf/w8sA
6TgYmgiI557m0n/NeE56aiYkOAxTU1sEeQDvbjvbGAgmwl5oPythR6g8FnDjTLGn
Hc0jnzBi4b3sOxNLea3x/gI0XkmZAhscyKD518K/iw3+1ur8hQuW3LxS51Eb5yaJ
CIgUUlJ45hqZ7k4zXH+Jr7EYvz+lKnaXf8Sfx20JEHygkQHA3Vkhy8Z1EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG0p5ly5xZSgATtIsJCYOysw2u6rMB8GA1UdIwQY
MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt
NDUwZmUzMzU5NWQxLzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx
LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK23UjLeu
fMkW2suiHeziTADo/c5cCdRRdKJjQUVa1I4+nwMMxS2fm52+9OEaAIfpBD4BUcZ2
EYEIZYy5Lkj5C8WcJ5XVK2Gty8pRuNjsKz32dfLJ9vG5eqx9wCuGXhVN/112cULI
E/epA1RCMWBRcmu3TddyiOfcH8fiwmN8YXCJ9DbRrl4JaBOMWTkzESFl7Qgyv0vP
gR/ymv5uRuRMvdqmBXRZT+X5mViuottZgWmh8m7hzpa+U3KIXxYCxs62lJ8u1pfh
RIRLxgLXs7LB04iaUkB17Ox+/FjMClRWJT6a0NFdoV+QwZwT5Yw/sOZham+u6rLu
l2ebLJR4acxMTA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:36:48 2026 by rpki-client