Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: Gql7moCgp8YFqnvIKnjTZTNOjdBaMO1b0+myNdE3oFk=
Subject key identifier: 86:B7:77:54:F8:FF:8F:2A:C9:02:81:1A:38:DB:B1:64:9F:B2:21:5F
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 019F189EBD429DB1276F5EF1D31A07AD7072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 0CAA
Signing time: Tue 30 Jun 2026 13:01:23 +0000
Manifest this update: Tue 30 Jun 2026 13:01:23 +0000
Manifest next update: Wed 01 Jul 2026 13:01:23 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: j88zyZO74KZ3NBQX/A3XhVbtNpQSAbb2sHkJOuR1MW8=)
2: bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa (hash: +XM1cLvQITLL+hcYwm0/qg57RFddihfSN5qfe1ousHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:bd:42:9d:b1:27:6f:5e:f1:d3:1a:07:ad:70:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: Jun 30 13:01:23 2026 GMT
Not After : Jul 1 13:01:23 2026 GMT
Subject: CN=86b77754f8ff8f2ac902811a38dbb1649fb2215f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:54:67:4e:d4:6d:11:c7:f1:40:c5:84:6b:cf:
96:a5:de:e9:8e:ce:2e:6a:f7:a0:c3:a5:f4:5a:65:
0e:5a:29:e9:21:00:cf:42:b0:3d:52:29:4f:4b:13:
8d:27:8c:04:a4:f3:91:40:db:a8:4d:02:be:e1:a0:
18:68:e4:e7:fb:79:18:23:18:ab:3a:b7:c5:69:f9:
41:a3:ec:82:72:35:2e:c3:b8:79:70:76:ed:ab:49:
62:44:d1:e7:7d:31:ac:b0:c1:fd:c2:a7:43:ca:3b:
98:56:81:97:4a:60:f9:5e:41:22:98:99:c1:fa:52:
f9:28:7c:9d:49:1c:b2:8e:a7:53:72:97:91:e1:a3:
9d:80:ce:37:23:05:67:f8:4f:af:b1:90:44:e9:4e:
6d:21:ec:2a:76:47:97:3d:60:81:15:7d:bc:3d:f9:
dc:25:18:e5:6a:62:de:3d:3c:17:d6:5b:a1:93:24:
ed:85:b7:0f:da:9e:6b:4f:e5:6c:b0:23:7f:1e:36:
05:a8:d2:97:cc:55:5b:c8:23:1f:2a:6e:0e:03:2f:
23:5e:cf:9a:61:ab:e3:39:25:72:e4:c5:2e:95:9e:
cc:6e:09:5f:f4:39:de:5e:a5:0c:63:9e:da:cf:23:
06:24:c9:b1:84:9c:4f:a7:49:42:35:8e:c8:b8:fc:
5d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B7:77:54:F8:FF:8F:2A:C9:02:81:1A:38:DB:B1:64:9F:B2:21:5F
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:90:c4:b4:da:14:d6:67:3a:0f:0d:9e:1f:22:a5:b1:4a:29:
f9:4a:13:b0:fa:c3:f1:5b:43:a2:4d:01:c7:86:dd:7a:ef:da:
5b:76:fe:4e:fb:66:24:e5:5a:c0:aa:6d:09:da:69:89:29:c3:
5a:a6:ff:ab:f5:85:01:7b:43:fe:56:a3:dd:97:04:cd:98:e4:
39:9f:c7:9a:80:37:6b:a1:3e:4b:38:1d:6f:1f:2e:7a:80:cf:
15:4e:6b:cd:4e:ce:75:74:1d:48:a7:c0:59:0c:fe:3a:23:99:
53:64:72:85:e9:fd:a3:a3:18:8b:7b:16:e7:70:af:3f:02:c2:
67:94:b2:4f:c8:e3:a9:e4:e8:92:86:05:44:f0:df:75:53:ca:
c7:77:de:50:d3:90:26:fe:9e:3b:eb:6b:d0:85:cc:66:ce:24:
58:1c:da:53:04:f0:da:d0:a5:68:82:03:0d:0d:60:ca:34:83:
b7:e1:14:87:c7:50:64:ad:b1:98:49:fc:85:5c:c6:c7:53:2e:
55:5b:34:0f:0d:dc:7f:d7:44:0f:0b:4b:d5:a2:4f:8e:3a:7b:
67:5f:09:60:27:6a:8c:8d:16:5d:d3:44:16:0f:2a:a2:25:7a:
06:46:f7:d3:77:d5:b3:8a:3e:0b:af:9c:7f:f6:f4:6f:44:bc:
6f:cb:a0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:53 2026 by rpki-client