Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: H3kOBdC+/GqfdYcvQn4af+8vS0wYdPmCRxAzI6nefpI=
Subject key identifier: DC:79:3B:15:0E:17:D1:A5:1C:AE:FD:44:FA:A8:89:4E:E4:5F:6A:40
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019DFF85F074398A378C0B2F2E45D3B8D16D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0500
Signing time: Wed 06 May 2026 23:01:01 +0000
Manifest this update: Wed 06 May 2026 23:01:01 +0000
Manifest next update: Thu 07 May 2026 23:01:01 +0000
Files and hashes: 1: aJE-N8XrZPq5jSOvU59Z2wJzXNU.roa (hash: UfTHGBjQ2zBZbaFR7hvw5/SPevdqWF43OgeNjM2xfIM=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: IjARR2w/wL359EhwezF2kdP/wO8UhexV63XksN3idKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 21:44:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ff:85:f0:74:39:8a:37:8c:0b:2f:2e:45:d3:b8:d1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: May 6 23:01:01 2026 GMT
Not After : May 7 23:01:01 2026 GMT
Subject: CN=dc793b150e17d1a51caefd44faa8894ee45f6a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:52:92:c0:af:c0:43:c0:0a:7e:e0:51:24:
2a:85:79:13:c6:e9:d8:7a:cc:31:40:b9:2b:eb:91:
ea:dd:eb:24:7b:8c:4e:11:a8:10:93:7c:6f:fc:e1:
e4:15:c5:38:31:32:55:ea:60:2c:b3:83:d9:b7:72:
0a:74:e4:78:3c:e1:73:64:d3:52:80:6a:c1:c4:07:
d4:a2:1c:aa:9a:a4:48:1d:04:83:24:dd:55:fd:bc:
be:84:1a:51:39:44:23:df:3c:30:78:1b:b6:39:b3:
97:81:f3:2d:32:71:a9:ac:e2:7c:9b:4f:7d:45:f1:
ce:13:72:82:66:12:7c:71:56:e1:16:c5:66:2d:59:
0f:24:c4:6d:ec:da:2e:05:fa:74:a3:a1:10:93:d9:
22:40:1a:3a:71:6e:4b:02:74:12:d0:70:56:93:ab:
ad:22:f4:a8:13:15:a9:50:30:b7:4b:96:9f:8a:2d:
92:49:a4:2b:5c:64:dc:fe:dc:9f:56:cb:1f:59:03:
a0:a2:3b:03:e5:74:a3:52:23:50:c4:1e:e8:5d:c0:
23:9b:88:a0:37:66:ce:5d:78:9c:1f:0e:10:af:ed:
39:c3:be:8f:27:45:e4:ec:92:9d:95:9c:a9:4c:51:
27:d1:78:1f:4a:1d:1b:2f:c1:d9:9e:f1:ef:99:ab:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:79:3B:15:0E:17:D1:A5:1C:AE:FD:44:FA:A8:89:4E:E4:5F:6A:40
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:64:a4:f8:ee:ce:c1:1c:d4:ae:6b:2b:e8:d4:9e:50:37:68:
7a:36:dc:b6:34:14:74:2d:b5:37:d4:a6:21:ee:d7:bc:70:ba:
62:8f:97:50:a2:90:66:a0:aa:80:dc:c9:4a:24:80:6c:50:df:
13:d7:e2:68:11:86:f6:ad:34:1d:79:12:45:e1:da:90:a3:46:
d4:4b:af:39:80:e7:29:23:78:2b:eb:a5:60:10:d7:0f:be:8e:
23:79:d6:b1:6f:79:ca:ed:8f:e0:c4:5d:e8:d2:22:0c:b6:65:
74:1b:6b:8c:83:d7:8d:29:aa:9a:3c:6f:fb:1a:32:16:c4:02:
f4:99:7c:f5:a4:f1:46:5f:54:8b:88:b0:7e:14:94:64:1f:58:
7b:90:4f:81:53:de:3d:f6:d7:30:80:9b:43:de:e2:53:ba:48:
e1:45:49:a2:5d:0e:83:db:71:37:21:14:bc:d0:2b:fd:0f:06:
06:33:78:29:df:dc:8b:c7:36:c4:0a:3f:1f:59:ba:89:74:fd:
18:55:04:bb:3b:b8:52:c4:41:f0:fa:55:4e:45:82:4d:a2:7c:
7b:4e:46:43:cb:1b:b3:40:e6:c1:29:20:2c:d2:16:38:94:d0:
2a:38:67:00:f0:62:17:6e:8f:24:d7:14:65:ab:13:6f:9a:85:
dc:c2:8d:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3/hfB0OYo3jAsvLkXTuNFtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExOWZkNjMzYTRkM2QyMTBkZWNmN2RiNTdkMTIyYjY0OGI5
OGVkMjUwHhcNMjYwNTA2MjMwMTAxWhcNMjYwNTA3MjMwMTAxWjAzMTEwLwYDVQQD
EyhkYzc5M2IxNTBlMTdkMWE1MWNhZWZkNDRmYWE4ODk0ZWU0NWY2YTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSpSksCvwEPACn7gUSQqhXkTxunY
eswxQLkr65Hq3eske4xOEagQk3xv/OHkFcU4MTJV6mAss4PZt3IKdOR4POFzZNNS
gGrBxAfUohyqmqRIHQSDJN1V/by+hBpROUQj3zwweBu2ObOXgfMtMnGprOJ8m099
RfHOE3KCZhJ8cVbhFsVmLVkPJMRt7NouBfp0o6EQk9kiQBo6cW5LAnQS0HBWk6ut
IvSoExWpUDC3S5afii2SSaQrXGTc/tyfVssfWQOgojsD5XSjUiNQxB7oXcAjm4ig
N2bOXXicHw4Qr+05w76PJ0Xk7JKdlZypTFEn0XgfSh0bL8HZnvHvmav1/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNx5OxUOF9GlHK79RPqoiU7kX2pAMB8GA1UdIwQY
MBaAFKGf1jOk09IQ3s99tX0SK2SLmO0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMt
YzdjYWQ1MDIwZWVmLzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMtYzdjYWQ1MDIwZWVm
LzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA2Sk+O7O
wRzUrmsr6NSeUDdoejbctjQUdC21N9SmIe7XvHC6Yo+XUKKQZqCqgNzJSiSAbFDf
E9fiaBGG9q00HXkSReHakKNG1EuvOYDnKSN4K+ulYBDXD76OI3nWsW95yu2P4MRd
6NIiDLZldBtrjIPXjSmqmjxv+xoyFsQC9Jl89aTxRl9Ui4iwfhSUZB9Ye5BPgVPe
PfbXMICbQ97iU7pI4UVJol0Og9txNyEUvNAr/Q8GBjN4Kd/ci8c2xAo/H1m6iXT9
GFUEuzu4UsRB8PpVTkWCTaJ8e05GQ8sbs0DmwSkgLNIWOJTQKjhnAPBiF26PJNcU
ZasTb5qF3MKNnA==
-----END CERTIFICATE-----
Generated at Thu May 7 03:57:18 2026 by rpki-client