Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: cHGTZwvlVwAZSSyBtq4awytj1D3m1KveXUrloBpHtuk=
Subject key identifier: 62:2F:EC:C8:86:72:8F:74:EF:91:07:6F:EB:A9:71:74:47:24:E3:47
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 019D26280F9ECC97DC256864397B101D7390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 1818
Signing time: Wed 25 Mar 2026 18:00:52 +0000
Manifest this update: Wed 25 Mar 2026 18:00:52 +0000
Manifest next update: Thu 26 Mar 2026 18:00:52 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: IrRUR7bjPOVdUhubUvDzojRBcEdMZGxkfWQ4h5RPaAQ=)
2: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (hash: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:0f:9e:cc:97:dc:25:68:64:39:7b:10:1d:73:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Mar 25 18:00:52 2026 GMT
Not After : Mar 26 18:00:52 2026 GMT
Subject: CN=622fecc886728f74ef91076feba971744724e347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b0:a7:30:4b:2e:79:f7:b1:c4:59:ba:6d:30:
71:3b:25:bc:39:f5:56:90:be:08:a1:2c:e0:45:f0:
7f:a6:ea:05:4a:0d:b1:79:02:0b:44:cf:7a:66:34:
f2:e7:36:90:cb:48:31:40:b7:3d:c1:5c:d0:ea:e1:
38:5f:be:57:01:09:e3:af:14:4b:cd:59:63:25:f2:
ab:5d:1e:82:23:64:49:9f:88:4c:d8:03:57:5a:c0:
3b:48:14:91:a6:8a:e6:7b:c9:d2:6e:85:e8:f2:1e:
51:d2:07:fb:25:d2:e0:5e:fd:f4:fb:dc:ca:1a:fa:
6c:b0:5b:c5:19:79:0a:6a:9f:e6:84:ca:03:61:5d:
5a:77:35:20:88:f7:5d:99:9d:62:6b:dc:ee:b0:75:
7e:26:1a:7f:04:73:2f:24:f2:75:e5:6a:00:ef:0c:
22:0e:06:79:2f:24:a8:a0:87:99:61:ad:cd:18:a3:
29:c0:6a:b3:0c:4a:27:90:19:25:58:52:9b:f6:27:
dc:c1:c2:40:6b:d4:e0:86:56:2a:e8:40:57:7f:0d:
a5:d4:a3:3e:e0:94:0d:87:a8:c4:d2:f7:29:e6:13:
be:d5:30:6a:b5:b5:cd:df:fe:8b:7a:36:87:af:fb:
1a:42:7c:92:10:60:2c:70:33:4e:79:ec:09:34:ad:
11:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2F:EC:C8:86:72:8F:74:EF:91:07:6F:EB:A9:71:74:47:24:E3:47
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:ab:83:82:48:a7:d7:9b:11:4f:8b:34:7c:f8:dd:30:9f:cc:
cd:b3:f8:ab:3d:c6:c1:83:fd:65:d7:b0:c0:59:5b:24:ca:75:
2e:18:ee:58:19:ce:aa:89:5c:85:66:db:61:2d:0d:e5:1e:c6:
db:c7:d7:bb:d9:eb:e2:a0:d2:f8:14:f3:8f:85:64:59:f9:cc:
b0:fa:48:62:69:31:fe:c9:55:41:71:64:9f:d8:eb:15:f5:6f:
0a:52:ed:84:77:2e:6a:42:05:9b:1c:87:0b:58:3a:8e:16:6b:
2a:b4:d0:8e:de:ff:00:ed:de:ac:d1:2c:5c:75:ae:5f:f7:e2:
c7:6f:ca:d7:12:35:86:09:6b:12:2b:03:67:fe:72:29:6b:ca:
ad:4d:1b:4b:03:d0:70:3c:97:24:e3:84:36:e9:e0:e9:9a:63:
21:dd:13:55:64:b6:25:5c:ce:b1:da:3f:15:1a:e4:a4:14:38:
67:4f:e5:0e:fc:02:8a:90:f5:fa:76:c4:71:62:70:1b:55:6b:
68:e3:a1:fe:0e:27:f5:d1:91:27:4c:33:c5:89:ef:91:a7:a1:
6d:21:6d:b8:50:6c:e0:45:e8:d9:26:98:f9:7b:c5:84:cd:72:
78:83:f3:dc:be:b6:4d:45:e2:f7:f3:3b:b7:9d:11:8d:63:5f:
9b:84:79:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:49 2026 by rpki-client