Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: lpqVWmQWRE008m8RO8SCC8BLvFH5+ue8n6kV1rSKVp8=
Subject key identifier: AA:D6:16:21:21:00:E5:2A:E2:3D:E9:E8:A0:21:9F:E2:0C:93:CB:4D
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 019D394187159678310C637F07089142A5CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0E51
Signing time: Sun 29 Mar 2026 11:01:28 +0000
Manifest this update: Sun 29 Mar 2026 11:01:28 +0000
Manifest next update: Mon 30 Mar 2026 11:01:28 +0000
Files and hashes: 1: 0V0swpWjFjeVPqWf_UnTN_5aN_c.roa (hash: yyF6Vx5pBt9ed5ZOE5ouGaUbQamlPSAGeUtJJ2Wer1E=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: M7bYjP0Db3kK/foTh1leKiw/r1FsJ6qhGne8KHguaQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:87:15:96:78:31:0c:63:7f:07:08:91:42:a5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Mar 29 11:01:28 2026 GMT
Not After : Mar 30 11:01:28 2026 GMT
Subject: CN=aad616212100e52ae23de9e8a0219fe20c93cb4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e0:79:17:0d:3b:a5:6d:2a:8e:4c:fe:ec:57:
00:e9:f9:69:af:0a:b5:53:8a:f4:a3:39:4f:10:33:
c0:a1:57:cb:71:b8:5f:51:2b:8e:ba:c5:53:63:08:
03:6e:e7:67:c2:e1:9c:35:2a:e7:4b:35:4c:6e:c8:
4c:e5:c6:60:2d:e7:bf:77:61:d1:51:cc:46:5b:2e:
f3:c4:3f:47:12:1d:b7:f5:44:55:df:25:34:3b:7e:
dc:92:03:e0:14:3b:0c:13:81:71:c8:bf:68:4d:2d:
c6:e8:54:a6:8a:54:84:7e:a8:fe:cb:c2:1d:51:5b:
7f:89:88:35:9a:1d:15:ff:3f:35:b8:10:90:6c:2e:
9f:82:f3:92:4d:7b:e8:f8:2e:56:59:89:ac:a3:ec:
96:17:7b:5b:f8:51:f8:b2:bc:4c:f6:1d:48:b7:20:
0f:bd:f3:e2:ce:b7:66:42:90:4a:59:82:3b:bf:17:
4b:5e:82:1e:8c:18:4e:83:1c:0a:b0:7d:fe:4b:5c:
97:4a:d7:8a:88:33:e9:e0:50:7c:41:c3:1b:07:f2:
cf:8a:8b:43:8b:f7:35:30:6a:5c:eb:f0:e8:11:af:
5a:f0:ff:11:25:b7:06:56:2a:d0:d8:3b:f7:45:30:
aa:8a:01:cc:e7:79:40:fd:9f:95:21:be:8d:83:e6:
f4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D6:16:21:21:00:E5:2A:E2:3D:E9:E8:A0:21:9F:E2:0C:93:CB:4D
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2e:25:0e:68:c1:54:85:e1:01:68:27:ef:d2:b6:fe:eb:f9:
ba:f2:70:7c:6d:17:dc:24:b6:76:bd:a7:08:fa:95:8d:f0:f8:
e8:a8:6e:86:ed:c5:bc:35:fe:4f:5c:50:4e:f8:a7:b9:95:61:
49:09:25:b1:f4:d3:54:5b:dd:c5:ec:06:32:f1:2b:de:7b:5f:
63:25:1e:9e:80:f9:71:14:e8:5c:e1:fd:0f:cd:de:08:17:97:
2a:d1:8a:74:44:08:a7:e8:1d:af:5f:89:2e:d7:15:65:b6:ac:
7f:69:1c:9c:32:3b:ff:b0:c7:fb:92:a1:8c:0e:b5:5a:f8:fa:
38:0a:c1:8b:a7:97:9f:9a:98:3a:1e:0f:36:0c:d2:23:cb:79:
dc:e3:e2:78:e7:ed:93:79:f4:3c:6f:df:c3:c9:26:f2:1f:0b:
86:7b:71:e2:14:c5:78:5e:40:13:06:0c:5b:46:c6:d3:c4:58:
4a:7b:04:68:02:84:c4:65:92:e7:d3:2c:66:35:10:a5:80:e0:
cc:5b:94:77:ea:19:bc:0c:c8:46:08:37:c5:85:b6:53:4a:16:
49:53:a6:04:90:c2:69:f6:50:9c:cc:39:0c:82:a4:c8:2a:11:
c9:bb:69:f1:e1:fa:2a:95:e6:6c:f4:0a:1f:ed:76:12:b8:bb:
13:8c:a1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:09 2026 by rpki-client