Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: NeCXOMu8BtsZeIghQrkW2t7rh4tltNCnYazgxItdHfU=
Subject key identifier: 62:2B:1F:89:89:20:E1:8E:2C:0A:35:34:07:2E:BC:8D:D2:91:48:3E
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019E1F47DCD4DF276A95E4DB3C1E3CE84902
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 1899
Signing time: Wed 13 May 2026 03:01:03 +0000
Manifest this update: Wed 13 May 2026 03:01:03 +0000
Manifest next update: Thu 14 May 2026 03:01:03 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: ya5f7EJcQSTQvBMEauv+GHQJ8qnPa8TIX9YM5OZ5W2A=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:dc:d4:df:27:6a:95:e4:db:3c:1e:3c:e8:49:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: May 13 03:01:03 2026 GMT
Not After : May 14 03:01:03 2026 GMT
Subject: CN=622b1f898920e18e2c0a3534072ebc8dd291483e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:79:7c:68:ff:c0:30:85:12:7c:30:51:6b:8b:
a2:3f:2c:cf:13:f4:59:8c:e9:51:5a:4a:83:58:dd:
10:98:2e:65:f9:b1:44:47:4d:18:a5:2d:e9:04:f2:
c5:d8:c0:f9:0f:d6:d0:c6:32:8c:56:af:58:71:16:
de:2d:cb:4b:5e:47:84:8d:69:ae:9a:8f:19:44:e6:
5f:a4:09:8c:cd:d4:34:ef:d7:17:6a:3f:bd:40:e1:
b1:82:8a:20:93:62:03:f3:7f:ae:bb:e2:68:b6:e7:
ab:23:bf:4d:2f:03:42:25:46:0d:00:5f:da:40:d6:
da:b3:f2:f7:e1:0a:32:e2:8c:d6:ad:07:0d:9e:03:
e4:f8:62:63:ae:ed:da:28:6c:4b:a8:23:f8:80:8e:
64:70:41:79:62:0f:9a:45:88:33:eb:fb:12:9d:aa:
87:43:c2:f9:6d:f7:3a:ce:22:69:52:f6:05:f5:7e:
fc:14:9e:61:6e:6e:83:df:ef:1a:1c:48:f8:31:a6:
cd:29:54:cb:f2:86:fb:6e:9a:42:16:b0:6a:31:63:
9d:10:95:37:0b:af:3d:cc:20:6f:cc:01:18:30:c7:
fe:f0:a6:6f:01:98:fa:eb:10:02:3e:67:49:3f:ee:
f7:ce:4f:3f:d5:00:61:61:1e:1f:7c:1a:c2:ca:94:
05:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2B:1F:89:89:20:E1:8E:2C:0A:35:34:07:2E:BC:8D:D2:91:48:3E
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:32:29:dd:13:9c:2d:bd:d9:3e:23:64:71:94:a4:ce:dc:9e:
1f:c5:d6:72:a5:b4:04:17:70:22:bb:85:aa:1a:2e:fc:9a:f7:
8a:f8:fb:7c:2e:fe:62:a6:b8:f9:ac:57:63:10:8b:b6:49:02:
85:60:25:fc:11:94:ba:bd:3e:75:d3:b8:93:a9:0d:aa:4e:db:
3b:2c:e7:c0:75:7f:90:4d:5e:75:db:34:16:3c:83:40:01:ea:
30:f2:d5:80:51:80:ee:39:1b:bf:00:a4:d6:cd:37:fa:27:f8:
9a:b0:8e:ec:1b:52:c9:1a:63:7d:50:07:0e:a3:fa:78:1b:ef:
bc:5c:05:a4:45:46:8f:fa:57:aa:de:d4:05:86:ae:b6:9b:7f:
9f:c5:d7:98:55:6a:f8:07:c3:40:4b:c8:99:15:29:21:69:aa:
99:6b:ec:0b:55:68:03:bd:ca:13:33:5f:f6:e9:71:f3:82:fc:
f7:df:c5:62:73:ab:88:7f:1c:1d:e2:f6:2a:52:48:1b:9f:6e:
47:9f:05:ce:03:e1:42:74:0c:dd:21:48:35:d3:d5:cc:31:dd:
d4:29:37:4c:a2:93:fe:e5:4e:eb:29:e7:6a:56:47:28:62:6d:
a3:65:f6:39:fa:b0:cf:df:dc:fb:f0:24:49:d8:72:81:40:aa:
0f:81:de:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:25:35 2026 by rpki-client