Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
File: OzNj5H5p68XRwiUd3V2sfJiYmSI.mft (raw, json)
Hash identifier: BTI3KrsrKyBe4E+pMh8/nrAx5emR6SXlJV0FqJNMAz8=
Subject key identifier: 01:3C:83:92:1B:E9:36:5B:46:3D:D7:0B:2B:EB:A5:7A:1B:91:10:1D
Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Certificate serial: 019D382DEDD8A47F9AAB0D8932966418EBFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:00:27 +0000
Manifest this update: Sun 29 Mar 2026 06:00:27 +0000
Manifest next update: Mon 30 Mar 2026 06:00:27 +0000
Files and hashes: 1: OzNj5H5p68XRwiUd3V2sfJiYmSI.crl (hash: 0ZEZLYy4ZcBqxKM91J7GbR3BAnkZxyUq5EJue+0tju8=)
2: j6GSjngp4zBMa0A6Up3-vP_HpYA.roa (hash: eFIS08YcHeuG7OXuLasqB4hIQnIZETYTn/VjLjZa0pQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:ed:d8:a4:7f:9a:ab:0d:89:32:96:64:18:eb:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Validity
Not Before: Mar 29 06:00:27 2026 GMT
Not After : Mar 30 06:00:27 2026 GMT
Subject: CN=013c83921be9365b463dd70b2beba57a1b91101d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:94:d2:18:2f:82:9b:9f:ce:63:7b:10:86:dc:
ec:56:86:36:ca:49:8b:91:d3:80:ab:6e:9a:97:8d:
b2:5f:bb:ce:67:fa:88:54:f6:3d:49:9b:41:a0:78:
98:86:d6:01:e2:7b:27:1b:43:20:95:de:c3:17:11:
2b:15:4c:da:53:f0:5f:1e:ff:19:72:3e:1c:33:80:
cc:80:0e:78:52:97:e8:e5:74:76:b8:8a:8f:08:06:
93:57:cf:fe:33:a9:cb:57:e3:86:8d:14:9e:f3:5e:
12:0d:a2:74:17:15:42:69:e7:ce:cc:af:27:14:bf:
6d:f0:e3:39:f4:ce:d3:79:df:98:b1:59:bf:d7:eb:
38:21:94:04:9c:80:b9:3d:18:1d:69:d4:8a:3f:45:
1b:43:9f:f5:62:ed:7a:60:4b:de:a0:a0:81:74:dc:
7b:f3:67:13:07:50:df:dd:8c:4f:b5:7d:ac:02:e8:
b2:24:89:6a:c1:7a:2b:29:ff:65:38:55:fb:f9:82:
7c:92:4b:a0:4e:b3:0c:cf:0d:49:3c:a0:45:ff:20:
f8:75:78:30:5f:04:fe:76:28:70:6d:7d:fe:cb:8e:
a0:cb:65:75:d7:59:0d:29:79:3e:4d:d4:67:96:d9:
3e:38:ea:6e:af:ef:34:0c:e2:72:8c:aa:ce:f8:ac:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3C:83:92:1B:E9:36:5B:46:3D:D7:0B:2B:EB:A5:7A:1B:91:10:1D
X509v3 Authority Key Identifier:
keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:66:ec:f0:f4:59:ef:b0:a8:3b:96:2b:85:5b:a1:c6:70:87:
c9:09:9a:2b:19:e6:bf:39:1d:32:b9:66:cd:ec:d8:32:19:a6:
2e:36:61:80:21:97:ee:9d:d6:ac:44:5c:58:04:63:22:6e:7e:
3b:af:43:67:25:ff:f8:5d:b1:a2:52:ed:16:07:39:43:6e:20:
ca:dc:24:be:3b:26:c7:d5:b1:97:db:ab:6a:00:ff:1f:6c:52:
b8:fa:5c:44:43:f5:cf:eb:74:c9:4d:41:01:07:c1:7d:ed:47:
35:98:a5:e8:e4:1f:33:45:99:65:ac:e6:82:44:38:06:87:d4:
92:79:ce:e9:b3:a3:f5:0a:f6:1f:71:b7:96:a1:4e:0f:0c:94:
7e:df:d6:f8:c4:5b:7f:14:51:8a:46:a9:d6:85:15:4a:6b:f9:
56:7f:2a:3c:a0:99:0a:bf:79:f4:e1:e6:68:1e:fb:b9:82:d5:
0b:d9:31:b2:60:78:ee:05:02:a2:f2:ed:0a:86:93:74:0f:61:
90:e9:2d:59:6e:a3:19:9a:fe:c5:d0:79:2a:de:13:c2:33:12:
4f:0f:d3:ec:69:89:37:66:4a:72:9f:60:a7:58:51:0b:7e:f4:
34:d3:28:c5:93:a2:3d:50:a9:d7:29:68:18:39:95:7f:d2:3b:
eb:e2:05:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:21 2026 by rpki-client