Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: yzhfIE+/ZoB5knvaPio3KMgNZMJ8yMEPjKfgd1xceho=
Subject key identifier: 57:01:8C:3C:59:9B:D9:89:C7:6A:C2:B8:F9:49:4C:A9:55:39:F7:CC
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 019E1F114370B0B7833BB53AAED104B5AD39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 190B
Signing time: Wed 13 May 2026 02:01:25 +0000
Manifest this update: Wed 13 May 2026 02:01:25 +0000
Manifest next update: Thu 14 May 2026 02:01:25 +0000
Files and hashes: 1: GS12T19X33XYAhf098NVhyXx3j4.roa (hash: 2sPtA3M8U954wEjtNrs6ONRJ78QRH5zWAILMakv6ILg=)
2: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: ul+MHjNKpj4m2EY1AzVcVVRu0305OpTjUu3xgJtEI0I=)
3: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (hash: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4=)
4: ckGyseiXClHPKvZc0nmqY19ttos.roa (hash: Yi/gbRZzD3hzlnLpg0sfEHwVq1nYLL7ZQtIyu02d0kc=)
5: flQssGcGnPHhqNGkKwTNsJejaeQ.roa (hash: 7MK/e6VIAjwZyf2enbWUdzme5SKLDGdFufR5UtJ+Iyo=)
6: tI1eWKq17tDG9hQWcAP-FozruWU.roa (hash: yszzGKzH2Y3utLHy31Xungt79IkdPWx2rbVckLVltxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:43:70:b0:b7:83:3b:b5:3a:ae:d1:04:b5:ad:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: May 13 02:01:25 2026 GMT
Not After : May 14 02:01:25 2026 GMT
Subject: CN=57018c3c599bd989c76ac2b8f9494ca95539f7cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f6:23:5b:e5:c9:e9:35:59:51:21:2c:93:05:
b5:60:90:e1:5e:86:ea:c3:35:d0:d3:e2:c4:38:81:
1b:59:1a:68:a6:22:8a:ff:67:8f:60:1b:12:23:bd:
df:e9:58:6d:d5:84:8b:ef:1c:19:42:87:15:6d:1c:
6b:0f:44:f8:9a:c8:dc:f2:a8:d2:24:8e:89:78:81:
1b:26:da:c0:41:39:3c:dd:51:c8:c3:c2:59:3e:df:
a6:8b:ac:f0:02:f2:4b:b2:6f:cd:31:07:76:6f:bc:
1c:ff:1c:a0:5c:25:02:40:cc:dc:ed:bf:ab:8a:3e:
81:b3:bd:e6:f5:95:85:bb:b5:53:bd:f6:38:71:84:
94:9e:70:e1:d9:bc:f3:85:50:d1:21:73:65:ac:ed:
5c:f8:9c:47:b4:cf:9a:3b:a9:84:15:87:7b:1d:68:
4b:51:3f:50:4a:97:cc:c3:2e:dd:42:61:08:6c:ca:
b1:b1:4b:4c:23:e6:72:45:c0:ee:93:52:d2:67:c2:
88:ff:3a:51:e7:99:42:63:7a:43:31:0c:09:22:95:
87:c7:ed:5e:d0:2e:74:46:5b:25:28:f9:7a:e2:6e:
07:34:ad:cf:cf:70:6b:6e:4d:6f:1f:9f:97:48:57:
55:89:4a:42:e8:d0:9b:c2:31:5c:d3:4b:7c:1c:df:
88:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:01:8C:3C:59:9B:D9:89:C7:6A:C2:B8:F9:49:4C:A9:55:39:F7:CC
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:4a:fd:73:c3:e6:8f:1e:eb:e0:3c:46:4c:fa:0c:c8:5b:7c:
f4:ac:22:d3:f3:8e:5d:4d:69:a1:ee:47:d3:51:a0:f9:95:5c:
85:0c:75:f2:b4:02:18:e1:c6:b6:da:37:43:0d:64:fc:8e:c7:
3d:28:8f:b9:e6:d6:00:3d:9f:60:ef:e8:b5:02:a5:d9:0e:88:
2c:d4:1f:c8:e4:f0:68:5b:72:4f:57:f4:b1:bf:e0:f3:b4:19:
65:10:85:70:6d:74:b2:0e:34:61:db:0d:7b:9d:ee:16:49:14:
7e:ff:80:2e:47:ad:a9:39:22:66:d6:5f:d3:96:6d:69:e9:e7:
5c:ba:42:69:b8:98:1b:a0:88:03:eb:b6:04:3c:45:86:5c:88:
53:34:10:ff:1a:c7:db:90:60:99:8d:ba:39:06:8d:6d:82:3b:
e8:a6:b6:d6:fa:f0:2c:db:81:6e:03:82:77:47:3c:70:97:99:
e8:7a:56:51:cd:4c:49:0e:d0:95:74:60:56:43:b5:c2:84:0b:
9d:c9:2f:b9:da:ff:1f:aa:c3:e8:15:57:f7:0a:4d:76:54:51:
27:aa:7f:f9:0d:2c:86:87:ad:17:b4:af:40:69:0b:63:6d:ba:
5a:77:ee:7e:0a:d9:c1:d4:af:f2:9f:ed:ba:97:05:6f:3a:15:
d5:c7:3c:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEUNwsLeDO7U6rtEEta05MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YTg1NTA2NTliYjY4ZTc3MGQ4YjAxMjZiNzI2MWZiODdk
ODI0MGIwHhcNMjYwNTEzMDIwMTI1WhcNMjYwNTE0MDIwMTI1WjAzMTEwLwYDVQQD
Eyg1NzAxOGMzYzU5OWJkOTg5Yzc2YWMyYjhmOTQ5NGNhOTU1MzlmN2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/YjW+XJ6TVZUSEskwW1YJDhXobq
wzXQ0+LEOIEbWRpopiKK/2ePYBsSI73f6Vht1YSL7xwZQocVbRxrD0T4msjc8qjS
JI6JeIEbJtrAQTk83VHIw8JZPt+mi6zwAvJLsm/NMQd2b7wc/xygXCUCQMzc7b+r
ij6Bs73m9ZWFu7VTvfY4cYSUnnDh2bzzhVDRIXNlrO1c+JxHtM+aO6mEFYd7HWhL
UT9QSpfMwy7dQmEIbMqxsUtMI+ZyRcDuk1LSZ8KI/zpR55lCY3pDMQwJIpWHx+1e
0C50RlslKPl64m4HNK3Pz3Brbk1vH5+XSFdViUpC6NCbwjFc00t8HN+IrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFcBjDxZm9mJx2rCuPlJTKlVOffMMB8GA1UdIwQY
MBaAFDioVQZZu2jncNiwEmtyYfuH2CQLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEt
MWQ3MDNiNDk2NjM0LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEtMWQ3MDNiNDk2NjM0
LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKEr9c8Pm
jx7r4DxGTPoMyFt89Kwi0/OOXU1poe5H01Gg+ZVchQx18rQCGOHGtto3Qw1k/I7H
PSiPuebWAD2fYO/otQKl2Q6ILNQfyOTwaFtyT1f0sb/g87QZZRCFcG10sg40YdsN
e53uFkkUfv+ALketqTkiZtZf05ZtaennXLpCabiYG6CIA+u2BDxFhlyIUzQQ/xrH
25BgmY26OQaNbYI76Ka21vrwLNuBbgOCd0c8cJeZ6HpWUc1MSQ7QlXRgVkO1woQL
nckvudr/H6rD6BVX9wpNdlRRJ6p/+Q0shoetF7SvQGkLY226WnfufgrZwdSv8p/t
upcFbzoV1cc8Ig==
-----END CERTIFICATE-----
Generated at Wed May 13 09:25:56 2026 by rpki-client