Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: pa9VNFbUDr/8yh4ErE5DSeqa3biCcdW7BMI8m8T8I98=
Subject key identifier: 6F:2F:2E:FC:B7:92:03:8A:5D:34:EE:44:F0:DA:92:E0:FE:B3:1D:68
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 019E295E17663BE0A51908449FABC410C041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 1864
Signing time: Fri 15 May 2026 02:01:32 +0000
Manifest this update: Fri 15 May 2026 02:01:32 +0000
Manifest next update: Sat 16 May 2026 02:01:32 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: ZyzHuq1M9+cYW0kVV7ZvPFGLEESdO4QT+l8HqckMy3A=)
2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5e:17:66:3b:e0:a5:19:08:44:9f:ab:c4:10:c0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: May 15 02:01:32 2026 GMT
Not After : May 16 02:01:32 2026 GMT
Subject: CN=6f2f2efcb792038a5d34ee44f0da92e0feb31d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:51:59:41:8a:bd:da:70:cc:e7:2d:d5:db:0a:
b8:f4:9b:bf:6e:f2:33:f9:39:90:3b:eb:bd:85:ed:
b4:61:b3:ef:75:7f:48:7a:61:1d:a3:0b:ea:74:22:
d5:8a:ab:67:6c:d5:78:bf:68:ff:45:aa:e7:3e:5d:
71:af:92:7a:a1:13:1f:85:4b:08:f2:41:08:48:35:
7e:db:44:87:8d:11:7e:f9:b1:9b:c5:fd:e1:a7:9b:
23:32:77:0e:2e:84:72:92:37:85:89:00:27:01:b3:
c6:07:81:fb:2a:93:a8:6d:b8:12:d3:de:ea:f0:72:
97:5e:a4:0f:0b:43:65:17:15:fc:56:81:fb:ad:59:
db:e4:32:5a:49:09:37:cd:9e:32:e1:ed:77:96:f4:
70:c6:b7:45:a9:37:1d:b4:0d:dc:f7:49:52:38:a3:
33:f1:93:0c:37:fa:80:54:e2:34:7c:83:fb:61:df:
39:ae:18:04:d0:a1:a5:ef:81:d9:db:e4:f7:76:1f:
b2:6c:fc:4b:27:c9:f4:ad:f0:83:fc:a5:d3:39:8a:
36:40:fe:87:ac:1f:09:b8:28:c1:7a:6c:ca:2c:76:
c2:81:7b:b4:97:46:cf:51:38:bd:bb:fc:47:d9:c8:
d5:02:da:df:13:4e:27:3e:5b:16:d1:05:77:07:92:
57:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2F:2E:FC:B7:92:03:8A:5D:34:EE:44:F0:DA:92:E0:FE:B3:1D:68
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ef:2b:1a:02:c3:48:94:2e:25:f8:0e:92:83:cd:83:3c:c8:
e7:79:72:25:db:15:6d:bd:cc:49:e5:b6:33:4b:ee:45:20:61:
0e:4f:70:55:e7:a6:a1:bb:07:d4:29:cf:5b:4c:22:f8:c1:d1:
5a:c2:44:84:8f:25:aa:e0:86:91:e5:6f:6c:3b:52:78:5e:1f:
76:b3:1e:6b:a2:4c:6f:43:fb:59:59:13:6c:0b:5e:ca:ae:a4:
1e:eb:c6:50:49:38:1d:60:cc:2c:d7:b6:ef:e5:b6:c7:2a:17:
af:35:e8:80:61:80:58:57:5d:29:13:72:61:f6:24:0e:b4:74:
38:9f:ed:3a:17:8f:1d:39:e6:6a:4c:11:b3:d3:1a:43:ef:f5:
c1:04:c1:63:ff:ba:24:58:6c:29:8a:ed:a8:f5:ca:06:c4:a3:
44:1c:9c:b1:a3:a5:44:84:99:67:b5:a5:44:85:bc:aa:91:b0:
e0:03:9e:d8:2e:cc:46:76:7e:87:ee:47:4b:8c:5b:a2:bf:7a:
5d:d6:3e:80:6c:a9:50:bb:f4:5f:4b:72:fd:21:32:74:98:bb:
9f:91:fe:30:d8:f0:cc:6f:6b:a7:f1:1f:cf:f8:3d:77:10:91:
78:10:91:dc:10:b6:d5:3a:ac:1e:df:e2:fc:f3:86:1b:c0:e2:
8d:e4:4f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:01:50 2026 by rpki-client