Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: q4qncBG6O1Kj0WUUOVfzOVyoP0SB6und5ocLhnXYbGI=
Subject key identifier: E2:25:2F:36:97:10:DF:6E:20:A8:21:31:8A:E2:A5:24:4B:61:E7:A2
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 019F111BD80E7609BD38592CF38ABC04634F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 18DC
Signing time: Mon 29 Jun 2026 02:01:05 +0000
Manifest this update: Mon 29 Jun 2026 02:01:05 +0000
Manifest next update: Tue 30 Jun 2026 02:01:05 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: dWilwQ5UtcInfQucqoTDaNAEf0+pMctkILbh5hK/Gmw=)
2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1b:d8:0e:76:09:bd:38:59:2c:f3:8a:bc:04:63:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Jun 29 02:01:05 2026 GMT
Not After : Jun 30 02:01:05 2026 GMT
Subject: CN=e2252f369710df6e20a821318ae2a5244b61e7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:dc:69:a9:f6:65:38:9f:1d:5c:13:2d:45:
bb:db:40:9f:ad:ba:61:c0:c2:8f:11:a1:b8:69:8f:
3f:03:4b:e4:24:ca:50:56:ec:7f:4c:65:03:01:ee:
9f:dc:e6:33:0c:86:ec:aa:e8:cc:8a:d0:1e:b0:85:
8e:a7:0e:b2:6c:53:46:2f:0b:66:4a:25:09:27:b6:
ff:be:b1:9e:d9:4a:9d:ef:18:19:df:ad:00:3c:41:
78:b0:93:30:85:84:52:c0:7d:46:4c:98:05:52:55:
85:82:dd:3d:91:67:53:c0:13:d4:f0:e0:23:9f:fa:
2b:2e:49:a5:3a:01:87:15:0c:7f:45:4d:16:90:64:
61:47:ad:01:de:14:f9:02:c7:14:c3:8c:42:de:bb:
42:a1:2d:e8:7d:cd:f9:14:bd:04:04:21:4a:4a:00:
66:0f:a9:59:05:d0:12:c3:5c:c6:5f:4c:18:3b:d7:
52:8e:fd:0a:e4:c1:df:29:60:4d:41:29:f0:d2:2d:
08:25:6b:92:58:c9:52:a2:2a:52:df:a4:8d:36:e7:
58:5d:9a:f4:87:04:86:c9:67:3e:dd:8e:bc:fd:4c:
45:b4:24:3a:08:14:5a:3c:cb:2d:4e:c2:5f:a2:59:
d5:90:23:bb:4f:31:a1:65:0e:f7:94:ae:bf:2e:69:
68:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:25:2F:36:97:10:DF:6E:20:A8:21:31:8A:E2:A5:24:4B:61:E7:A2
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:82:c3:5f:a9:09:71:51:99:5e:28:d2:4c:e5:6c:c3:b1:c5:
47:0d:26:4e:1a:ac:e6:da:56:97:7b:fc:7b:44:7a:29:ab:51:
13:20:2a:72:9c:05:9e:06:e8:6a:2c:e4:6a:4f:2f:ba:4c:c2:
26:c7:ff:29:cb:e2:34:8f:ee:5d:cf:0b:97:fd:1a:76:4f:98:
c8:3a:11:2c:10:ff:57:e1:a9:06:d8:83:02:80:e6:cc:0e:90:
c2:fc:d1:17:e7:4a:ab:27:0f:1f:6f:e8:9a:9b:f0:7d:b3:5a:
30:74:ef:cb:4f:2b:6c:6a:51:d6:4b:1b:8d:ab:14:83:c2:d3:
0f:96:3d:44:6e:21:23:6e:48:d3:44:6b:08:ec:c6:f6:96:f3:
cc:a2:3a:a3:1b:51:21:2d:51:bf:e4:5e:a3:17:6a:ba:85:6b:
ec:9b:1c:1f:b8:4a:e7:b7:c3:79:bf:4d:56:67:99:7d:3d:58:
13:0b:45:f6:76:35:b5:dc:78:3e:75:c5:0c:82:85:3f:58:94:
82:9b:53:e9:31:99:f6:fd:c7:23:7e:fa:f2:13:d0:07:75:ff:
37:af:ca:4f:8a:a4:88:d4:f9:dc:b6:2c:f3:b6:d7:ca:26:db:
ab:59:67:62:e8:a2:2f:17:ff:49:a8:e4:0c:4a:f0:03:78:cf:
52:ff:8f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:36:07 2026 by rpki-client