Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.mft
File: 0zBKtQJ4sTNhcfbzcjmBzB6Voos.mft (raw, json)
Hash identifier: F662A0xjHn5Bdo68PsXkdSp4cv/lybGsHLN/GX66Rkw=
Subject key identifier: AE:9E:6A:A2:FA:44:52:7D:2D:7D:F9:B7:11:22:58:E4:A2:E8:DF:49
Authority key identifier: D3:30:4A:B5:02:78:B1:33:61:71:F6:F3:72:39:81:CC:1E:95:A2:8B
Certificate issuer: /CN=d3304ab50278b1336171f6f3723981cc1e95a28b
Certificate serial: 019D3A536BCFF9E2B51C3F3C2D713B643013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zBKtQJ4sTNhcfbzcjmBzB6Voos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.mft
Manifest number: 10
Signing time: Sun 29 Mar 2026 16:00:38 +0000
Manifest this update: Sun 29 Mar 2026 16:00:38 +0000
Manifest next update: Mon 30 Mar 2026 16:00:38 +0000
Files and hashes: 1: 0zBKtQJ4sTNhcfbzcjmBzB6Voos.crl (hash: bV8hsdBaRwIlBQ5Pphlb6Jfl7Y3O1f3htoVEqgFCHyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zBKtQJ4sTNhcfbzcjmBzB6Voos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:6b:cf:f9:e2:b5:1c:3f:3c:2d:71:3b:64:30:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3304ab50278b1336171f6f3723981cc1e95a28b
Validity
Not Before: Mar 29 16:00:38 2026 GMT
Not After : Mar 30 16:00:38 2026 GMT
Subject: CN=ae9e6aa2fa44527d2d7df9b7112258e4a2e8df49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:5b:88:1e:21:dc:35:19:c0:22:7e:3a:68:
cf:30:93:7d:1d:20:0c:c9:7d:cc:ab:8b:b9:d7:3c:
08:c2:36:11:7d:80:72:d5:73:0a:78:2a:bb:90:51:
46:b7:1a:5c:b2:3d:41:e1:72:e4:0e:1b:0f:e2:ae:
6a:e5:ec:b1:10:e5:61:7e:04:03:45:13:1d:ec:c4:
61:31:cc:df:2e:a6:d3:66:c3:f4:ca:fc:bd:c3:de:
39:e3:92:b5:c8:9b:06:45:5f:f3:74:4a:14:4d:d0:
0b:b0:1b:86:ed:ca:d4:c6:b8:6c:d8:26:26:62:83:
78:f0:39:83:55:54:c9:4d:56:88:d7:b6:bf:05:a7:
b0:c1:f4:fd:05:69:4e:a5:1e:f7:d4:7d:14:d6:29:
2a:ce:1d:10:15:0e:d9:93:5a:99:04:fa:cb:ee:35:
fa:5f:22:6a:24:a5:06:f6:6b:65:ca:ee:e1:9d:25:
35:db:fc:79:f4:d3:fd:4a:a1:56:0a:d7:c4:73:e8:
71:a8:be:b0:8d:a7:5f:42:be:0d:02:9d:94:01:9f:
1f:a2:5d:01:ea:82:3e:4e:fd:88:fe:85:79:10:b3:
d0:dc:76:53:8b:8f:a0:7b:bd:b8:09:1b:e4:18:23:
3d:ee:f7:18:34:6d:53:e3:d9:8d:b0:c3:83:19:5f:
32:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9E:6A:A2:FA:44:52:7D:2D:7D:F9:B7:11:22:58:E4:A2:E8:DF:49
X509v3 Authority Key Identifier:
keyid:D3:30:4A:B5:02:78:B1:33:61:71:F6:F3:72:39:81:CC:1E:95:A2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zBKtQJ4sTNhcfbzcjmBzB6Voos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/760f0e-9c02-4dee-a8b9-8626ca5f5cab/1/0zBKtQJ4sTNhcfbzcjmBzB6Voos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:9b:c2:26:f6:71:88:52:49:55:2a:99:5d:b0:9e:4c:20:84:
ff:42:98:2f:f1:70:01:e2:e5:2c:29:09:0f:24:66:71:d7:fc:
e0:76:04:d6:2a:41:da:8c:52:ac:1d:fb:92:6e:5f:ed:eb:fe:
09:48:ed:e6:08:b2:c8:ba:ea:2b:bc:92:d7:b1:31:8a:34:00:
e2:c9:52:3d:e1:4c:43:58:fe:46:e7:6d:ca:d2:e1:b6:0f:37:
8a:1a:d0:0e:74:9c:92:79:c5:96:0a:0a:26:b6:db:91:31:e5:
3e:fa:1f:be:be:f5:8e:ec:37:d8:a2:d0:f0:a2:d2:74:8c:4b:
84:f6:bb:57:79:7f:7b:77:0a:97:67:26:c0:1a:3f:01:15:28:
c7:34:f4:67:e3:e5:96:0a:62:c5:22:06:0f:28:0a:bd:44:29:
3e:14:b0:b8:ae:83:5f:16:56:29:94:b8:d8:54:06:50:91:70:
31:38:7b:37:9d:d3:02:4e:8a:ef:3e:94:89:3f:39:d9:32:44:
9f:c1:42:ed:92:e4:d3:db:30:e7:67:f6:80:f8:f6:43:1a:bf:
95:0d:86:2d:4b:20:bb:e0:52:c5:73:18:b8:54:05:e5:9e:00:
08:48:60:3e:0a:58:71:6e:0d:31:5a:3e:66:a8:cf:c8:6d:fb:
e9:22:4d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:32 2026 by rpki-client