Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: K7YfNul7Gm7dUl14onzxbob6d+meOlA/ZssPX22YFcw=
Subject key identifier: F0:19:B0:A8:96:39:5C:E4:50:CE:70:18:45:37:77:3E:D4:25:E9:CD
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 019D39E5AEFE6156418ADCEB13E22A9A3BD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 17E8
Signing time: Sun 29 Mar 2026 14:00:46 +0000
Manifest this update: Sun 29 Mar 2026 14:00:46 +0000
Manifest next update: Mon 30 Mar 2026 14:00:46 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: JvG/h2GyVS8h2xsMS89p0OAVWPpq/Xl2rawJrAzfWBk=)
2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:ae:fe:61:56:41:8a:dc:eb:13:e2:2a:9a:3b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Mar 29 14:00:46 2026 GMT
Not After : Mar 30 14:00:46 2026 GMT
Subject: CN=f019b0a896395ce450ce70184537773ed425e9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1f:02:fc:d6:7b:bc:e8:10:df:c3:a0:37:17:
39:21:4f:f9:bf:63:e5:18:0b:be:a0:ce:ba:f5:fa:
a1:2c:7a:ae:a0:1d:b9:72:d3:c0:21:ad:46:a0:50:
02:27:6e:90:ba:9d:9b:1c:68:dc:1b:46:01:f1:9c:
48:65:c4:d1:f3:1f:53:cf:13:7a:2f:2c:41:df:da:
01:97:a8:7e:d5:fc:e6:08:24:cd:d4:5f:38:eb:6b:
8d:01:6d:9b:a0:88:ee:af:dd:32:18:90:98:68:81:
da:40:b8:05:bb:6a:91:d0:21:07:55:a3:fd:f9:1e:
62:97:7b:c3:7a:7f:ff:b7:a5:1b:59:25:fd:0c:5c:
5d:04:60:6c:14:50:f7:33:98:0e:c2:1e:84:f8:6e:
f3:49:6c:1d:80:23:bb:3a:96:8a:c3:95:1a:73:45:
7b:fb:47:82:b5:f1:96:0a:4c:af:62:52:bd:e4:0b:
9f:21:47:5e:78:03:15:ea:fe:fe:bb:42:ae:ff:5a:
31:45:a2:e3:2b:fc:68:7b:6e:e8:3e:3f:e8:d0:e6:
78:b7:42:27:0e:89:e2:04:d0:32:70:a3:14:96:3b:
43:57:4a:6d:55:9a:65:9c:9f:66:08:33:13:ba:83:
be:93:24:38:07:f6:d2:05:1a:07:c1:8d:7f:03:87:
59:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:19:B0:A8:96:39:5C:E4:50:CE:70:18:45:37:77:3E:D4:25:E9:CD
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:97:23:da:31:c2:6a:ef:b6:3d:a4:67:ea:ee:0f:f1:26:f0:
68:c4:2c:51:f0:f9:c2:21:84:f5:03:5e:ce:c2:43:65:2a:f3:
ad:b6:97:69:00:7b:13:5c:df:52:bf:54:9a:9e:c1:da:c8:08:
49:77:24:4c:a7:44:c2:02:30:8b:24:2d:f4:45:bd:3a:80:29:
ce:e0:32:45:9d:b1:e9:0a:47:f4:58:3e:f8:4c:54:c9:09:bf:
04:76:2f:7b:81:80:fa:3d:1a:6f:85:98:87:1b:77:a0:f5:f7:
7b:1e:e1:13:46:5a:de:4d:e6:1e:67:b6:6e:eb:25:47:90:67:
2d:07:1e:e4:49:4d:59:19:58:45:e2:4f:54:55:d0:cb:e8:df:
71:05:e3:49:aa:75:91:0d:a0:ce:b3:0c:4c:fb:c6:56:47:48:
52:01:27:06:6b:06:10:67:37:17:5d:2e:c7:a6:3a:d2:50:0c:
1c:f6:ea:71:ed:c9:bc:55:1f:b4:18:36:be:f7:e4:a7:3f:c7:
ff:73:39:b5:d3:82:b6:09:48:1b:b1:51:1e:1d:e1:ac:f0:98:
db:ae:46:06:fa:40:75:40:03:32:2b:c6:72:db:05:5f:63:af:
bc:54:3d:fc:20:75:76:64:65:93:e6:55:bf:0e:dd:c4:8b:4a:
a2:b7:f7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:11:58 2026 by rpki-client