Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
File: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft (raw, json)
Hash identifier: nppQJs8aUWfoejvg46qkvk8sBIcIOG1AiyLbMQK0/zE=
Subject key identifier: DA:66:AF:04:1B:EB:EC:E0:32:98:7B:6A:B3:5F:2F:87:B2:65:F9:7E
Authority key identifier: D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
Certificate issuer: /CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Certificate serial: 019D38D2E565CB75C4A9D3D2FBB617251852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 09:00:38 +0000
Manifest this update: Sun 29 Mar 2026 09:00:38 +0000
Manifest next update: Mon 30 Mar 2026 09:00:38 +0000
Files and hashes: 1: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl (hash: /QzyTV4xDZZLos4wZfqjyQT+zgVUy3ubanzgC75EfNE=)
2: UFUNHcp59zFp-s7epnaBCk3fSDI.roa (hash: 5JNnpeUYOHWtCY7aisWTKc4iY+kJ/fdA3iBaqT6fPPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e5:65:cb:75:c4:a9:d3:d2:fb:b6:17:25:18:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Validity
Not Before: Mar 29 09:00:38 2026 GMT
Not After : Mar 30 09:00:38 2026 GMT
Subject: CN=da66af041bebece032987b6ab35f2f87b265f97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:95:48:08:22:b5:5d:35:7c:1d:b1:2c:32:88:
cc:4f:e3:17:f6:38:5c:27:02:8a:7b:1b:2e:ad:b8:
7d:52:12:f8:df:f2:05:a3:17:59:9c:24:07:e5:a4:
1e:8b:67:f9:f9:7f:75:ee:63:98:07:39:d2:e1:41:
f1:86:81:44:5c:30:bb:64:b3:54:75:72:5b:72:55:
6f:df:0e:27:66:f8:74:f7:06:bb:bf:da:31:93:44:
fd:c6:5c:e1:cf:19:e3:fb:46:74:eb:5a:f7:78:13:
00:d4:45:0b:bb:ec:dd:4a:f3:f0:f0:10:ff:54:39:
0b:c5:37:1f:fe:ed:c0:3e:a2:4a:56:0c:92:f6:35:
57:08:e9:94:39:43:bb:95:e9:89:28:e9:34:d5:7c:
f6:c9:de:f4:86:69:ad:7a:8c:c8:c9:8e:b1:d1:ad:
04:68:27:49:48:93:2b:36:07:4c:de:18:83:24:f3:
8f:29:2a:5f:4a:06:eb:38:74:a4:89:70:4b:9b:43:
f4:a4:60:6b:54:83:f8:48:19:9c:06:6b:36:ed:9f:
38:82:9a:af:5e:09:68:2f:e0:c6:53:6d:7c:9a:20:
fc:33:12:c8:59:a4:ba:59:d6:1d:c7:e3:d7:33:90:
c4:0f:b1:fe:c2:a7:98:5e:fd:59:a5:f1:14:15:dd:
65:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:66:AF:04:1B:EB:EC:E0:32:98:7B:6A:B3:5F:2F:87:B2:65:F9:7E
X509v3 Authority Key Identifier:
keyid:D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:34:24:8d:83:de:bb:f7:5a:9e:50:c3:09:36:1c:1a:42:4f:
a7:6b:38:37:8b:6c:e8:2d:b4:4c:33:aa:d7:52:49:c4:4d:ef:
20:92:91:dd:a9:8c:9f:c3:0f:ae:23:22:26:2f:a6:ba:ae:06:
dd:e7:e4:3c:73:96:34:25:6a:63:89:d8:64:0b:d0:92:5d:96:
b6:b6:08:8b:90:ae:c4:34:6c:3b:b5:65:f2:af:06:72:cf:8c:
72:67:68:bf:fa:61:67:d1:da:51:45:98:b6:c6:89:c5:24:cd:
40:23:3f:49:b9:7d:f0:97:0d:79:f1:45:5e:4e:34:58:3e:49:
97:ee:41:50:07:af:35:85:ac:21:a4:54:bd:14:37:6f:93:d1:
d3:4c:76:53:4b:d3:ea:d3:1e:47:93:b4:88:4f:6c:df:65:80:
30:68:00:02:3b:8c:37:73:a7:f7:ed:a0:bf:d8:aa:ee:c6:23:
25:86:bd:a1:14:29:df:2d:34:18:84:90:06:52:b5:c5:e2:fe:
27:5a:9c:46:b3:ea:96:77:8a:0a:c2:11:5d:7d:e7:df:57:ee:
73:04:8e:87:75:bb:4b:64:f0:07:26:f5:be:5a:b0:7e:e3:d7:
b6:d9:95:8f:10:f3:7f:ab:7c:16:ca:4d:b7:58:77:38:6b:4c:
7b:78:c7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:37 2026 by rpki-client