Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: MkjQj+HJkhlpa8ww+3Ibml0suXKUAofNn+ZzEHI19LY=
Subject key identifier: 5D:40:FE:84:48:DE:75:4A:99:4B:9C:47:0A:8C:7A:8E:B6:D5:BE:FA
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 019D37F7225F7E833CABAB8B8F03AA0AC56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0C79
Signing time: Sun 29 Mar 2026 05:00:36 +0000
Manifest this update: Sun 29 Mar 2026 05:00:36 +0000
Manifest next update: Mon 30 Mar 2026 05:00:36 +0000
Files and hashes: 1: Nph9BsHMAWz3v3KuWSmSYaAs3t0.roa (hash: PiH06TnQZKY0ou+2ssqAuJ7EJt+8n060evKXmiAMkgE=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: ILQlWbfvN/sSRKwyuQwaLlCEi0SvWYD0LlfEwJyI4kA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:22:5f:7e:83:3c:ab:ab:8b:8f:03:aa:0a:c5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Mar 29 05:00:36 2026 GMT
Not After : Mar 30 05:00:36 2026 GMT
Subject: CN=5d40fe8448de754a994b9c470a8c7a8eb6d5befa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1e:03:73:9d:fe:0f:43:d1:30:f8:67:64:7d:
65:a9:dd:8f:13:9b:ad:df:bb:11:91:16:4e:f9:c8:
ac:c9:2c:cf:5b:38:a0:4b:5f:8b:67:8d:31:e1:93:
f6:83:79:27:44:6b:d7:5f:11:e9:fb:28:e0:3f:63:
e3:16:ab:ea:40:73:59:9b:e4:d7:aa:79:65:7b:43:
4e:53:eb:0c:d2:2a:ff:17:8e:09:01:d2:28:0b:80:
1e:03:35:48:b8:a8:46:62:33:0d:94:b0:52:bb:7c:
77:54:30:64:b1:70:69:ec:59:38:53:ca:ab:b1:be:
4d:ee:8c:f0:43:17:e7:b5:c5:79:35:66:8b:37:e5:
8f:9f:fa:9a:ad:71:30:12:f1:21:1e:57:aa:24:46:
14:62:9f:cd:f2:f3:7b:f0:55:13:2d:9a:7b:5b:53:
5b:44:98:91:93:3e:18:3b:ab:58:a9:f1:ac:db:60:
4e:5b:79:96:d3:a0:d3:b4:79:10:6f:04:aa:59:86:
52:7d:64:9f:fc:51:47:61:2e:98:99:82:c6:18:49:
c2:90:e0:eb:a5:f2:fa:09:30:32:70:d8:36:0f:de:
ec:a3:49:36:ea:d5:45:e1:8d:9b:4e:b8:93:b3:69:
c5:0b:e6:b4:f5:13:ab:77:47:52:62:a4:02:0c:81:
23:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:40:FE:84:48:DE:75:4A:99:4B:9C:47:0A:8C:7A:8E:B6:D5:BE:FA
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:69:58:59:ca:1a:4a:df:fc:45:46:c3:e9:cd:03:4e:70:9d:
bc:09:22:5c:09:2d:9f:45:e8:70:0e:7c:ba:d4:5d:dd:67:70:
d4:ea:70:12:78:13:73:54:a7:01:45:a8:e5:98:3c:d4:a1:73:
19:9c:a3:b1:a5:57:d6:3a:22:10:77:44:4f:1e:20:92:b6:47:
de:5d:45:f3:17:1b:01:9a:3e:a5:fa:a0:75:6e:59:98:8c:b3:
a7:d4:eb:ba:5d:09:35:7c:7e:12:05:50:b9:77:df:c1:52:b7:
a7:d2:a5:28:b8:14:31:79:ee:e5:c4:31:86:cd:67:ea:98:e7:
c5:50:99:20:f7:e8:5a:06:36:66:8d:54:a7:00:ca:cf:87:70:
83:0d:08:56:ac:20:b2:51:fa:fc:e5:f8:22:65:74:c3:28:30:
40:ad:fa:19:95:fe:36:ac:51:ee:0d:51:6d:eb:a5:84:6a:12:
b2:bf:05:ec:47:72:a8:73:67:0a:01:65:50:03:fc:93:fd:47:
3d:1b:35:e8:b3:6b:14:16:97:28:32:fe:ae:d0:1b:e6:76:dc:
d6:48:cb:dc:28:93:c1:c5:69:f7:1c:a1:24:a0:c8:87:e4:8d:
b0:1a:40:26:55:06:7e:2d:aa:a0:65:09:04:0c:e7:59:a5:61:
3b:45:06:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:41 2026 by rpki-client