Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
File: okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft (raw, json)
Hash identifier: hkjtubUG218haLtY146wV9KJnJq+wtb/rGoF0p8sSXE=
Subject key identifier: CC:E2:68:66:3D:C0:91:E1:D0:9F:A4:C1:B2:A6:4B:1B:2D:69:7B:CF
Authority key identifier: A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
Certificate issuer: /CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Certificate serial: 019E2092240F66E5E733B1F913EA3E8E797F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
Manifest number: 03BE
Signing time: Wed 13 May 2026 09:01:48 +0000
Manifest this update: Wed 13 May 2026 09:01:48 +0000
Manifest next update: Thu 14 May 2026 09:01:48 +0000
Files and hashes: 1: Cyd9epktZUP2NzDWt7kuBmj63qY.roa (hash: 4Hn7SVvllIET4/FJbhg9Vi4tqF9x0RkLIB5CUH+jolo=)
2: okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl (hash: uPIZokWiyZvTYd/I1eDGtH5Tsm7oh4xC2oZDIOFlo7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:92:24:0f:66:e5:e7:33:b1:f9:13:ea:3e:8e:79:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Validity
Not Before: May 13 09:01:48 2026 GMT
Not After : May 14 09:01:48 2026 GMT
Subject: CN=cce268663dc091e1d09fa4c1b2a64b1b2d697bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cd:1e:85:60:9a:75:ce:13:83:dc:a8:41:43:
b8:09:e8:51:8c:83:6b:f4:b6:25:50:43:e8:5d:58:
f8:4c:88:37:30:00:3a:a7:7b:3c:e1:20:b1:e5:84:
a6:8e:b0:32:21:f2:1c:b4:f0:2e:b6:4c:99:37:ad:
63:db:45:64:5b:08:9a:64:8c:59:3d:fb:d3:4e:13:
3c:39:8c:71:b3:4c:3f:cd:04:83:ef:3b:f8:96:24:
2e:c6:02:ca:39:9a:8e:54:a5:f3:9d:d1:1a:5c:47:
78:44:09:32:25:86:cc:f9:68:9e:4e:8f:9b:0e:32:
f8:cd:6e:d4:98:f8:de:34:77:4c:06:24:4b:da:7c:
c1:6c:cc:3b:07:3d:28:63:97:b3:a6:ac:fe:32:fd:
45:fe:15:50:1c:cd:b3:24:98:34:df:68:2a:a7:65:
28:3a:c8:5f:ce:56:c1:ac:5e:15:32:23:0d:d1:e1:
8a:b1:4e:18:9b:e6:db:de:04:c1:ec:0d:23:99:62:
67:4c:52:63:7a:56:7d:f2:7c:dc:29:4e:e8:9f:cf:
79:eb:f0:24:d1:93:8e:ed:da:af:60:02:a5:19:83:
b0:ec:9a:8e:f2:0b:b2:05:88:27:c2:79:aa:ae:4a:
9e:7c:a5:32:d5:1c:0e:44:f7:bd:f4:6e:ab:46:ea:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E2:68:66:3D:C0:91:E1:D0:9F:A4:C1:B2:A6:4B:1B:2D:69:7B:CF
X509v3 Authority Key Identifier:
keyid:A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:fc:b3:ae:04:4b:89:75:a2:67:dc:3d:48:f9:79:fb:2a:ba:
1c:b6:77:ed:dc:35:5c:44:a5:30:10:44:b0:5c:36:e0:c9:01:
c1:8c:59:8b:81:90:35:9b:a3:16:e3:fc:b2:91:ac:5e:10:1a:
5e:b0:57:6e:6f:40:c8:1f:d0:4e:3b:5b:d2:9e:25:b9:31:b7:
a0:89:fe:8d:0a:10:9f:c8:a3:0e:5e:59:d9:34:9e:2b:39:f0:
cd:8f:52:4f:5c:42:96:04:96:53:a4:cd:54:13:eb:86:95:fd:
b7:0a:81:f1:1c:9b:c9:6f:50:07:c2:44:e3:de:dc:ca:7a:e4:
90:8a:a9:3a:21:df:cb:dc:8e:4c:fd:d0:c7:15:40:68:c9:b3:
2a:f6:46:0e:49:92:9e:da:b0:08:a7:e5:3c:d7:41:ff:36:cf:
5e:36:8c:d0:62:aa:19:0e:99:27:2b:15:93:b4:73:6e:52:97:
0a:9a:c4:68:06:6e:48:05:75:da:90:66:e1:9e:f0:8b:58:71:
fa:74:03:94:4b:b7:09:84:fe:67:a0:9b:13:3b:09:e9:17:f2:
38:50:37:51:f4:be:96:c8:78:e8:00:d3:07:76:7c:08:27:81:
42:21:0c:ee:c4:7d:30:65:34:7b:c7:2b:e6:15:83:18:a3:aa:
c1:ae:e8:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gkiQPZuXnM7H5E+o+jnl/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNDM1N2JlMTk1ODc5NmIxMmM0MmI0ZjRjYWM1MWI4M2Rl
OGZkMmIwHhcNMjYwNTEzMDkwMTQ4WhcNMjYwNTE0MDkwMTQ4WjAzMTEwLwYDVQQD
EyhjY2UyNjg2NjNkYzA5MWUxZDA5ZmE0YzFiMmE2NGIxYjJkNjk3YmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAos0ehWCadc4Tg9yoQUO4CehRjINr
9LYlUEPoXVj4TIg3MAA6p3s84SCx5YSmjrAyIfIctPAutkyZN61j20VkWwiaZIxZ
PfvTThM8OYxxs0w/zQSD7zv4liQuxgLKOZqOVKXzndEaXEd4RAkyJYbM+WieTo+b
DjL4zW7UmPjeNHdMBiRL2nzBbMw7Bz0oY5ezpqz+Mv1F/hVQHM2zJJg032gqp2Uo
OshfzlbBrF4VMiMN0eGKsU4Ym+bb3gTB7A0jmWJnTFJjelZ98nzcKU7on8956/Ak
0ZOO7dqvYAKlGYOw7JqO8guyBYgnwnmqrkqefKUy1RwORPe99G6rRuoe8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMziaGY9wJHh0J+kwbKmSxstaXvPMB8GA1UdIwQY
MBaAFKJDV74ZWHlrEsQrT0ysUbg96P0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8zNzM4ZTctYzkyOC00MTQxLTljZWMt
M2YzY2MxZTU3M2ZkLzEvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC8zNzM4ZTctYzkyOC00MTQxLTljZWMtM2YzY2MxZTU3M2Zk
LzEvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhfyzrgRL
iXWiZ9w9SPl5+yq6HLZ37dw1XESlMBBEsFw24MkBwYxZi4GQNZujFuP8spGsXhAa
XrBXbm9AyB/QTjtb0p4luTG3oIn+jQoQn8ijDl5Z2TSeKznwzY9ST1xClgSWU6TN
VBPrhpX9twqB8RybyW9QB8JE497cynrkkIqpOiHfy9yOTP3QxxVAaMmzKvZGDkmS
ntqwCKflPNdB/zbPXjaM0GKqGQ6ZJysVk7RzblKXCprEaAZuSAV12pBm4Z7wi1hx
+nQDlEu3CYT+Z6CbEzsJ6RfyOFA3UfS+lsh46ADTB3Z8CCeBQiEM7sR9MGU0e8cr
5hWDGKOqwa7o8g==
-----END CERTIFICATE-----
Generated at Wed May 13 12:03:31 2026 by rpki-client