Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: +QQiT1aslo432gFqGPDeU0fNrYp8wyak4qa0Sv6L3oA=
Subject key identifier: 10:55:14:DB:FA:45:A9:0F:3C:AA:F1:AA:49:B7:5F:D4:5C:C0:43:8D
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 019CE55AD9E205404F28EBE8ED0091E67350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 0845
Signing time: Fri 13 Mar 2026 04:01:02 +0000
Manifest this update: Fri 13 Mar 2026 04:01:02 +0000
Manifest next update: Sat 14 Mar 2026 04:01:02 +0000
Files and hashes: 1: 8StX0WxvVxL5fDtFqnpRuPragb8.roa (hash: KTc11CLRkDoDh2bPnpdqQKRTLCJiEbLK9vVpkNsL14o=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: 7rnJnIS58cEUUZjYXKhFqk/ZSVTOZlbcI40aQwaampM=)
3: bb_iJ1U1Lf6VC6Ovl038VnEkd0c.roa (hash: x4RJFA42s0Y6MhAsHNXRTYoSOIZLJ8yZ/qGJdWD8hcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:d9:e2:05:40:4f:28:eb:e8:ed:00:91:e6:73:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Mar 13 04:01:02 2026 GMT
Not After : Mar 14 04:01:02 2026 GMT
Subject: CN=105514dbfa45a90f3caaf1aa49b75fd45cc0438d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:9a:08:80:df:fe:5b:8a:2c:92:ee:0a:39:
5f:a5:ad:34:fe:55:4f:cd:b2:e1:af:2a:0d:9d:c2:
64:6d:92:ff:7e:79:73:be:a8:68:94:f3:33:a8:64:
bc:d0:db:94:b8:73:dd:2a:34:0f:69:39:d8:84:06:
1e:e5:e3:44:6f:b1:eb:8c:df:b7:fa:54:2c:45:66:
3a:da:09:92:4d:26:ad:c4:12:c2:2a:50:28:eb:3e:
5f:1d:34:a1:14:2f:7f:f3:0c:d2:54:97:4b:8a:ae:
ba:dc:e2:79:e4:01:64:fd:e8:62:66:3e:55:23:84:
6d:79:e5:e6:6f:bb:d3:a3:d2:d2:b6:77:ef:8d:0f:
df:6e:f3:ff:96:66:83:5e:d9:45:a1:6f:ef:2f:7a:
45:d5:f6:b0:fd:b8:bb:15:a5:16:ae:e6:03:20:32:
38:b0:83:c5:f3:a9:68:e7:48:ce:ed:14:03:2e:14:
7d:b3:e6:d8:c3:a7:53:c0:c5:f8:ec:f0:46:4a:29:
30:ea:4e:10:8a:21:6d:58:8c:72:e7:09:f8:52:0b:
d5:4f:f2:26:77:cf:67:6b:69:b2:fd:9d:d5:37:88:
0d:e9:07:4d:56:1a:3e:75:ef:ce:7e:d4:23:a1:66:
54:36:64:3b:40:e0:27:c2:9f:65:8a:ec:9f:dc:e8:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:55:14:DB:FA:45:A9:0F:3C:AA:F1:AA:49:B7:5F:D4:5C:C0:43:8D
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:4b:a8:d5:30:0b:c7:93:11:ca:bb:65:f0:2a:f5:0d:ff:98:
3c:4e:2e:0d:91:0b:d6:d8:47:67:9e:6e:a2:1f:cd:bf:3c:2a:
75:f3:56:07:b4:8b:43:12:c2:cf:5d:be:63:eb:52:63:9c:80:
26:d8:12:84:08:56:f9:70:27:69:89:4b:05:27:d8:74:14:b6:
b4:7d:a6:06:82:20:02:3b:83:53:34:0f:8d:7f:1d:a1:f3:da:
3d:da:db:2b:5c:ee:9c:9e:f7:e0:2b:41:d6:8b:7a:ff:b0:63:
84:7b:56:ec:a8:71:6c:38:65:bf:9f:9b:a5:b3:17:95:9f:90:
86:c6:bb:71:f4:c9:a8:a3:d0:34:be:74:fb:dd:05:92:98:cb:
3b:18:72:3c:e1:37:42:dc:8c:72:92:5b:a4:a4:6f:a6:f5:f2:
cf:45:b2:b0:71:36:07:80:81:70:0c:f9:b5:9a:31:71:f4:77:
df:ce:17:95:f2:77:95:04:1d:ff:6c:9b:95:f4:51:69:f5:b1:
20:b5:a4:43:58:95:52:62:c4:5f:7b:bd:fc:7c:16:bd:48:f2:
ea:a1:48:55:28:5a:38:8c:6e:70:14:98:fa:3f:5b:03:14:02:
59:83:a7:ca:01:52:08:71:76:0c:81:2b:05:4f:71:2d:f9:80:
ef:e5:df:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzlWtniBUBPKOvo7QCR5nNQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiM2EwNWRiYjljNzdmYTE2ZWQxMDQ2OTc0N2E1YzZlNmVh
Yjg4ZGUwHhcNMjYwMzEzMDQwMTAyWhcNMjYwMzE0MDQwMTAyWjAzMTEwLwYDVQQD
EygxMDU1MTRkYmZhNDVhOTBmM2NhYWYxYWE0OWI3NWZkNDVjYzA0MzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApESaCIDf/luKLJLuCjlfpa00/lVP
zbLhryoNncJkbZL/fnlzvqholPMzqGS80NuUuHPdKjQPaTnYhAYe5eNEb7HrjN+3
+lQsRWY62gmSTSatxBLCKlAo6z5fHTShFC9/8wzSVJdLiq663OJ55AFk/ehiZj5V
I4RteeXmb7vTo9LStnfvjQ/fbvP/lmaDXtlFoW/vL3pF1faw/bi7FaUWruYDIDI4
sIPF86lo50jO7RQDLhR9s+bYw6dTwMX47PBGSikw6k4QiiFtWIxy5wn4UgvVT/Im
d89na2my/Z3VN4gN6QdNVho+de/OftQjoWZUNmQ7QOAnwp9liuyf3OjSjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBBVFNv6RakPPKrxqkm3X9RcwEONMB8GA1UdIwQY
MBaAFDs6Bdu5x3+hbtEEaXR6XG5uq4jeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgt
YTAxYzM3Yjg4NzI4LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgtYTAxYzM3Yjg4NzI4
LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbkuo1TAL
x5MRyrtl8Cr1Df+YPE4uDZEL1thHZ55uoh/NvzwqdfNWB7SLQxLCz12+Y+tSY5yA
JtgShAhW+XAnaYlLBSfYdBS2tH2mBoIgAjuDUzQPjX8dofPaPdrbK1zunJ734CtB
1ot6/7BjhHtW7KhxbDhlv5+bpbMXlZ+Qhsa7cfTJqKPQNL50+90FkpjLOxhyPOE3
QtyMcpJbpKRvpvXyz0WysHE2B4CBcAz5tZoxcfR3384XlfJ3lQQd/2yblfRRafWx
ILWkQ1iVUmLEX3u9/HwWvUjy6qFIVShaOIxucBSY+j9bAxQCWYOnygFSCHF2DIEr
BU9xLfmA7+Xf6A==
-----END CERTIFICATE-----
Generated at Fri Mar 13 07:10:23 2026 by rpki-client