Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
File: ovl077UOcpyeAVqLwrbCsGGd_IQ.mft (raw, json)
Hash identifier: l2s1SJflLSsJmASoPC+RFMedCKIoFPm2NxDdCfNv1Xs=
Subject key identifier: F0:9A:B7:01:6C:AB:93:24:11:A4:6F:A2:D8:29:D2:83:3A:38:48:50
Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Certificate serial: 019D397792EAC211FE6F2B38DB656F1EA8B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
Manifest number: 0D5B
Signing time: Sun 29 Mar 2026 12:00:30 +0000
Manifest this update: Sun 29 Mar 2026 12:00:30 +0000
Manifest next update: Mon 30 Mar 2026 12:00:30 +0000
Files and hashes: 1: UNrxa7mNWshV_JbrB0BZ0cpuOEk.roa (hash: Eo6ANkMPIflh/NyGmKlWOHkmfnD61QM+DTkeJS9gQ+g=)
2: ovl077UOcpyeAVqLwrbCsGGd_IQ.crl (hash: 5paCtH+8y4ojF6tYb5is3GOEI3/kTvCApi2vEROIDAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:92:ea:c2:11:fe:6f:2b:38:db:65:6f:1e:a8:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Validity
Not Before: Mar 29 12:00:30 2026 GMT
Not After : Mar 30 12:00:30 2026 GMT
Subject: CN=f09ab7016cab932411a46fa2d829d2833a384850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f0:3a:f1:79:49:31:27:8f:17:49:72:79:0f:
61:cd:3b:de:0f:81:52:93:ea:1b:d2:15:a8:42:06:
a3:4d:23:8e:b7:ef:ea:c1:0b:1a:50:d5:d7:39:9b:
0e:0b:60:1a:3d:fc:c9:a4:4b:68:ee:35:3c:37:d5:
fd:97:f1:72:2b:93:81:3f:fe:6a:d2:c7:77:bf:58:
d6:fc:9c:c5:3c:1b:9c:d4:d3:b9:ae:eb:96:ff:46:
e8:27:83:96:89:f9:de:8a:40:6f:0e:61:c9:e0:fd:
ca:ac:29:57:95:04:ef:fd:6d:5e:49:a2:d9:f7:65:
3a:c0:19:7c:a5:ea:9e:f8:f3:98:7e:17:c7:e6:8d:
9b:04:74:ad:67:01:d1:43:2f:40:66:57:ac:67:62:
ef:d4:27:c5:03:44:8a:6e:41:84:ee:37:f9:4f:cf:
45:f0:d6:e0:74:f6:05:67:7a:92:e7:f0:93:b6:15:
93:e3:5c:8e:63:2d:f7:93:22:fb:06:6b:62:a2:b8:
08:ec:13:3d:64:26:45:e7:0d:59:20:c8:b8:17:b2:
25:61:d8:1d:74:f8:11:47:21:71:ea:9b:4c:c9:0d:
97:b8:5e:f6:29:a1:48:d7:d1:00:b4:8c:73:49:85:
d1:9a:1b:e2:a6:f3:3d:6f:00:c4:0a:f0:91:de:cc:
df:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9A:B7:01:6C:AB:93:24:11:A4:6F:A2:D8:29:D2:83:3A:38:48:50
X509v3 Authority Key Identifier:
keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:fb:0f:ea:7d:93:37:cd:a3:82:20:fc:f1:fc:fe:6a:40:cc:
5a:1a:46:47:93:26:79:28:36:2e:34:aa:40:27:10:2f:b8:1f:
5e:55:d9:18:0f:b1:b8:90:68:b4:06:53:5b:f1:29:3b:0f:33:
1b:bc:02:c9:5b:64:2b:7e:a6:ab:37:37:10:23:a2:08:bd:61:
8c:a1:9e:88:c9:e3:b4:70:6b:20:a2:cf:a4:ad:0f:7c:27:c7:
2d:3e:56:9f:6b:b1:36:fb:f8:ee:44:32:41:66:18:98:12:d1:
dc:32:dc:8b:48:f6:52:89:ec:03:73:ed:4b:f6:65:b2:98:b6:
51:80:bf:4a:d5:fe:ab:cf:ce:12:ce:1b:4a:ea:e6:31:12:6c:
7a:aa:ff:c6:16:30:2c:3d:ce:b6:eb:c4:7e:9b:3f:41:9f:94:
80:37:4a:98:ae:17:b6:98:58:a6:7f:ac:30:3b:ee:31:1b:ae:
24:0e:6e:33:80:64:91:c6:97:a3:c3:cf:c7:f7:8b:d4:d3:00:
17:9e:37:af:e8:5a:bb:6c:22:07:f9:fc:74:18:74:8e:01:fb:
d4:15:d9:78:2a:eb:92:81:da:65:8a:d3:e4:7b:e3:d0:24:69:
76:c2:cb:a1:a6:eb:db:68:57:9c:b9:f0:13:ac:1f:d4:b2:c4:
a5:9a:85:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d5LqwhH+bys422VvHqi1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZjk3NGVmYjUwZTcyOWM5ZTAxNWE4YmMyYjZjMmIwNjE5
ZGZjODQwHhcNMjYwMzI5MTIwMDMwWhcNMjYwMzMwMTIwMDMwWjAzMTEwLwYDVQQD
EyhmMDlhYjcwMTZjYWI5MzI0MTFhNDZmYTJkODI5ZDI4MzNhMzg0ODUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovA68XlJMSePF0lyeQ9hzTveD4FS
k+ob0hWoQgajTSOOt+/qwQsaUNXXOZsOC2AaPfzJpEto7jU8N9X9l/FyK5OBP/5q
0sd3v1jW/JzFPBuc1NO5ruuW/0boJ4OWifneikBvDmHJ4P3KrClXlQTv/W1eSaLZ
92U6wBl8peqe+POYfhfH5o2bBHStZwHRQy9AZlesZ2Lv1CfFA0SKbkGE7jf5T89F
8NbgdPYFZ3qS5/CTthWT41yOYy33kyL7BmtiorgI7BM9ZCZF5w1ZIMi4F7IlYdgd
dPgRRyFx6ptMyQ2XuF72KaFI19EAtIxzSYXRmhvipvM9bwDECvCR3szfOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPCatwFsq5MkEaRvotgp0oM6OEhQMB8GA1UdIwQY
MBaAFKL5dO+1DnKcngFai8K2wrBhnfyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYt
MTBkZjQ5ZjY1NjE2LzEvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYtMTBkZjQ5ZjY1NjE2
LzEvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWvsP6n2T
N82jgiD88fz+akDMWhpGR5MmeSg2LjSqQCcQL7gfXlXZGA+xuJBotAZTW/EpOw8z
G7wCyVtkK36mqzc3ECOiCL1hjKGeiMnjtHBrIKLPpK0PfCfHLT5Wn2uxNvv47kQy
QWYYmBLR3DLci0j2UonsA3PtS/Zlspi2UYC/StX+q8/OEs4bSurmMRJseqr/xhYw
LD3OtuvEfps/QZ+UgDdKmK4XtphYpn+sMDvuMRuuJA5uM4BkkcaXo8PPx/eL1NMA
F543r+hau2wiB/n8dBh0jgH71BXZeCrrkoHaZYrT5Hvj0CRpdsLLoabr22hXnLnw
E6wf1LLEpZqFyQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:46:04 2026 by rpki-client