Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: MrJYdiwyN3GiZVQNjq1YpsZPHf3gp6ehBmZiUarsiw4=
Subject key identifier: 77:DF:42:E1:5F:51:AB:0F:97:7C:E9:08:89:04:0B:A0:C2:04:50:54
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019D1157AE9D5219A944B8CC884C2F4E6C2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0484
Signing time: Sat 21 Mar 2026 17:00:52 +0000
Manifest this update: Sat 21 Mar 2026 17:00:52 +0000
Manifest next update: Sun 22 Mar 2026 17:00:52 +0000
Files and hashes: 1: HL__qaGc13R_JJTvUCH7c2B82tc.roa (hash: HV/JSNT03SbWk0eCa+7g8K+2C1DRHozLoBRXr4HShVE=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: czELUKxYuZakI6C8tzoh6J5AMYnfwjU3BNtnAdUALg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:11:57:ae:9d:52:19:a9:44:b8:cc:88:4c:2f:4e:6c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Mar 21 17:00:52 2026 GMT
Not After : Mar 22 17:00:52 2026 GMT
Subject: CN=77df42e15f51ab0f977ce90889040ba0c2045054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:bb:36:cb:83:93:e0:86:97:4d:37:ae:1d:
5c:e1:25:00:92:5c:61:65:d5:3f:1e:a5:63:3f:c2:
f4:3e:5b:d9:74:d1:9a:bf:59:cd:19:cc:fa:da:4a:
7d:ac:bd:9b:64:40:80:6d:b3:18:da:24:37:c5:79:
7c:ef:16:6a:c6:59:9a:57:d9:ff:7f:74:d4:17:78:
f5:88:5f:10:65:b9:b5:46:4b:04:7c:4e:58:69:76:
50:05:d4:ba:a8:b7:03:48:e7:88:d9:05:a6:6a:67:
d2:f3:f1:f8:5c:13:2c:7e:d8:a1:00:87:ee:20:8e:
2c:52:0d:0f:06:df:70:17:20:ae:1e:07:c6:43:a5:
de:c6:b3:76:33:bc:5c:4e:11:30:e0:4e:5c:7b:2d:
41:00:0a:44:d8:cd:eb:83:a5:79:2e:94:c5:d8:69:
44:e9:bb:61:7a:f7:b8:11:98:6d:b5:07:8d:82:6a:
99:89:2d:94:b5:4c:b5:c4:f8:78:64:78:8d:a7:26:
af:b7:b7:37:37:c1:f6:98:1d:d8:df:6f:0c:e4:d5:
40:bc:67:59:81:b9:bc:67:c0:2c:bb:9c:d1:bd:fa:
4e:a6:c4:4a:49:7b:83:2f:b4:48:c7:01:d8:19:a6:
d0:52:26:72:22:a0:b3:aa:4c:c7:4a:0e:a2:4d:cd:
7a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DF:42:E1:5F:51:AB:0F:97:7C:E9:08:89:04:0B:A0:C2:04:50:54
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c6:d7:6f:aa:ab:50:1c:1f:ec:ab:8f:cc:8c:e4:a2:f7:c7:
41:6f:d8:49:79:cb:0b:d7:b3:65:39:ed:ab:d1:9e:f0:15:c0:
6b:58:e8:ff:3b:00:14:cb:18:21:cc:1b:58:9d:73:25:a3:18:
63:99:b5:6e:e7:1c:5c:1c:12:38:5a:d2:21:13:0b:a6:d6:74:
a9:3a:b8:b9:ce:0d:0b:5c:e4:d0:51:11:35:c9:d0:57:ab:fd:
35:2c:a0:0a:b9:ea:37:ea:aa:19:30:ca:ed:b9:21:3c:81:56:
1b:a1:1d:27:de:c3:35:53:36:14:a1:3b:fc:d1:bc:89:ee:b5:
57:d9:0c:ef:ab:35:1b:9d:0a:2e:b2:c7:c8:c8:e9:2a:a5:45:
50:16:e4:be:3a:22:2e:b5:3f:80:4a:90:0b:63:26:2d:9e:0c:
36:fe:09:38:00:61:c0:a3:a2:f0:7b:02:3f:e2:91:dc:cf:9a:
b7:51:67:6f:6b:33:b2:f9:5d:bc:e0:2a:39:69:e4:66:dd:6c:
5b:1e:19:10:7a:95:89:4b:a5:67:dc:58:1d:fd:7c:04:e3:d9:
6d:96:e0:a7:db:b1:83:17:6f:de:46:fd:a2:07:76:7d:70:cd:
17:bc:89:2e:ea:a3:3b:14:96:20:2d:58:db:92:a5:c4:18:61:
4e:63:5c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 22:07:37 2026 by rpki-client