Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
File: OCZCPrAZVSJObBHRnG05OB6L4h0.mft (raw, json)
Hash identifier: FyO69NyFx4iBLTfjuAG20OGxMcWTvUaHli8Ht+yJbyE=
Subject key identifier: AE:C5:0F:1C:47:98:43:87:39:E3:64:68:CF:1E:B1:3D:C0:8B:A2:66
Authority key identifier: 38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
Certificate issuer: /CN=3826423eb01955224e6c11d19c6d39381e8be21d
Certificate serial: 019D38664302234D20C1FB54D2488F68C247
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
Manifest number: 0CC4
Signing time: Sun 29 Mar 2026 07:01:59 +0000
Manifest this update: Sun 29 Mar 2026 07:01:59 +0000
Manifest next update: Mon 30 Mar 2026 07:01:59 +0000
Files and hashes: 1: OCZCPrAZVSJObBHRnG05OB6L4h0.crl (hash: Gyes8RozhsFIdk4iTpW1uWUgs4Z4Xb6AKiRdwDuKpSo=)
2: h9uxXItcVMUhyEnd-qfo0NworEk.roa (hash: cN3aXRc8HLSRjs8+K7/jdo4PEzNiyVUr1h8Z9QW7HmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:43:02:23:4d:20:c1:fb:54:d2:48:8f:68:c2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3826423eb01955224e6c11d19c6d39381e8be21d
Validity
Not Before: Mar 29 07:01:59 2026 GMT
Not After : Mar 30 07:01:59 2026 GMT
Subject: CN=aec50f1c4798438739e36468cf1eb13dc08ba266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5a:2d:f1:f0:62:e8:4b:71:18:17:c6:62:16:
c6:1a:16:eb:6d:eb:56:45:e0:ec:86:44:54:1b:e7:
1f:29:d9:b7:1a:1a:3f:0d:81:1a:dc:99:16:0e:13:
04:5e:75:60:bf:46:43:40:27:fa:61:85:c6:09:d1:
dd:c2:ed:f0:fb:59:7b:33:1f:b7:60:97:b5:20:27:
73:c8:c4:96:4c:c4:fa:83:f9:af:ce:26:cb:ab:e0:
8f:91:11:42:2b:d9:a2:68:84:92:8b:aa:a6:08:c2:
ea:38:02:39:65:e9:99:2e:79:c1:0f:8e:55:16:a6:
e7:03:03:0b:b4:89:42:13:05:cb:4a:1d:74:9a:14:
94:62:9f:9e:fe:6a:9a:0f:e5:13:06:95:2e:56:28:
e1:47:8a:6b:a4:08:c5:0f:52:67:48:62:2f:af:1e:
ee:04:cf:2e:ff:14:ba:53:d1:0b:dc:83:93:d4:45:
ae:b5:98:58:d5:9d:3f:61:90:d2:40:f0:94:56:db:
38:c1:a3:9e:5e:c7:15:89:ab:24:dd:cb:ff:a8:c0:
c8:c7:3a:e8:1e:43:5a:7d:b0:89:8c:42:08:c9:06:
4b:81:79:52:11:2f:08:2a:a5:62:50:ba:4f:0e:0a:
92:a5:ea:c4:17:0f:1a:af:63:a7:85:b9:34:49:3e:
55:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C5:0F:1C:47:98:43:87:39:E3:64:68:CF:1E:B1:3D:C0:8B:A2:66
X509v3 Authority Key Identifier:
keyid:38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:23:24:50:f4:74:88:39:fb:d6:10:5e:14:c7:88:a4:79:ab:
ff:13:36:3c:23:2d:a4:a8:16:da:7e:53:40:ca:ff:24:43:fd:
5f:39:fb:cd:8e:10:0d:1f:a0:d2:ad:30:d8:aa:ae:bb:bd:44:
3c:a4:57:eb:c4:aa:61:84:e3:40:ca:6b:b8:08:5a:88:f5:38:
23:5a:b4:8a:9a:cd:cb:02:62:fd:d1:c8:51:85:86:90:90:ee:
48:16:81:ef:16:97:b7:4c:1b:39:cb:4d:ed:63:c0:dc:96:ac:
5e:ff:77:f5:89:b4:b7:df:26:9a:ab:d3:4c:3e:46:70:b7:9d:
14:d3:3e:55:97:3a:b8:b8:fe:60:f2:c3:52:13:c3:82:ce:79:
56:54:d8:48:d6:7e:c6:63:d9:82:64:9f:5b:b7:e3:93:32:68:
64:b0:28:fc:24:01:db:31:dc:0d:f7:7a:73:ec:a7:13:4a:70:
05:54:bc:ba:49:78:17:68:ae:fc:2e:ab:54:4b:3f:75:79:26:
fc:2c:b9:ba:a8:7f:54:47:e0:28:b5:33:f5:45:7d:88:2a:e3:
6b:02:49:d7:5c:51:71:f8:ae:7f:85:45:cf:db:0c:12:ed:5a:
c9:74:57:1e:f3:61:6a:88:d1:6c:8f:05:c2:74:01:b4:5b:fa:
93:33:d7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:33 2026 by rpki-client