Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: dimKhp3ufKUZa5UZcNy5Ek23B6lvbKGhg/uplVmut+8=
Subject key identifier: DF:DB:BA:DC:50:73:1B:BF:7A:DD:63:52:BD:2B:E8:73:79:06:B0:7C
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 019DCF07104C3541493199634E5D32AE4B08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 08BE
Signing time: Mon 27 Apr 2026 13:00:39 +0000
Manifest this update: Mon 27 Apr 2026 13:00:39 +0000
Manifest next update: Tue 28 Apr 2026 13:00:39 +0000
Files and hashes: 1: 8StX0WxvVxL5fDtFqnpRuPragb8.roa (hash: KTc11CLRkDoDh2bPnpdqQKRTLCJiEbLK9vVpkNsL14o=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: zKRD1nVT7Quuxw/6/Xr9YW0CWAsttaa9QlyE2oxNjEo=)
3: bb_iJ1U1Lf6VC6Ovl038VnEkd0c.roa (hash: x4RJFA42s0Y6MhAsHNXRTYoSOIZLJ8yZ/qGJdWD8hcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:07:10:4c:35:41:49:31:99:63:4e:5d:32:ae:4b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Apr 27 13:00:39 2026 GMT
Not After : Apr 28 13:00:39 2026 GMT
Subject: CN=dfdbbadc50731bbf7add6352bd2be8737906b07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:24:ef:27:2b:65:32:ba:57:54:ea:03:7c:
47:03:a1:dd:05:94:45:7c:25:98:d1:ff:a5:8c:75:
e4:bc:1c:c9:18:ec:61:8e:50:19:90:3d:93:19:f4:
36:d7:20:47:c3:1b:00:dd:d8:59:70:89:20:3b:11:
95:06:ab:12:49:23:41:3e:da:74:ba:f1:79:0c:e1:
6f:f8:0f:da:1f:41:37:b1:0e:d8:da:4b:10:9f:88:
2f:e8:b4:44:cc:5b:9f:20:b5:8e:21:1c:08:6a:c9:
92:f7:65:21:d9:e1:91:99:8c:88:88:de:c7:9d:6c:
d8:fa:65:5b:6c:4d:2c:84:d3:5a:80:a6:23:37:bb:
c5:e7:55:05:b3:fb:3d:95:99:63:0e:5c:5a:65:67:
93:24:cd:2b:e1:2e:e6:61:80:c9:06:8a:6c:28:f2:
bd:d2:f8:4c:db:ad:12:67:8c:1f:70:97:db:91:2d:
1d:01:27:a7:a1:ee:74:ac:79:60:04:0e:31:46:b4:
03:75:6d:41:08:10:f3:6b:0d:fc:87:1b:fa:17:75:
77:3a:19:cb:14:9e:51:78:ee:51:96:c5:84:d4:51:
95:c5:6a:3c:ff:cc:84:bf:79:22:26:a7:53:7e:49:
4f:40:b9:1a:91:95:3d:1d:8d:95:0a:68:7d:cf:b8:
2e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DB:BA:DC:50:73:1B:BF:7A:DD:63:52:BD:2B:E8:73:79:06:B0:7C
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3d:55:42:5a:39:64:06:46:0d:67:3c:49:c7:3c:33:db:2d:
28:a2:7b:91:70:20:06:fc:37:7b:f3:4e:8d:0c:ab:f2:96:fd:
8a:fd:85:36:4b:af:51:12:83:e5:c3:60:8a:55:fd:43:5e:86:
fb:a3:f4:05:9a:87:b8:b2:4a:e9:08:0a:88:b9:c1:45:4f:e1:
07:de:68:bb:b0:1c:a5:de:2d:4b:03:b8:5a:9f:68:a4:16:33:
b2:30:16:1f:d4:55:43:7a:af:03:f7:13:50:97:db:b8:de:be:
cd:d8:25:59:6c:84:6b:f2:11:a2:01:57:5b:cd:5f:4f:da:96:
2b:c8:27:67:61:30:bf:21:87:df:2b:0e:7c:b8:a5:ef:5b:88:
f5:6d:97:0c:ca:84:2b:75:59:50:55:15:3d:a3:c5:91:ba:82:
9d:c6:49:e9:af:0d:89:32:84:80:6a:98:05:9f:cd:eb:95:23:
72:14:b0:22:08:23:28:f6:aa:04:85:23:d9:9f:b4:c9:dc:92:
ab:6b:61:d9:ce:56:75:a3:e7:92:18:c8:ed:3e:48:93:b9:f4:
b3:a5:ce:e5:26:c1:08:a5:e6:93:9f:22:04:11:0c:0e:9c:c7:
d8:4a:ed:7c:13:21:57:8a:61:8f:c3:13:58:b9:c3:6c:19:72:
2a:fc:82:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:47:28 2026 by rpki-client