Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: RkZCbLfsyEGO7h66mw1ZWwiSHZSriJAWgFw/Nzr0A1k=
Subject key identifier: AF:32:CC:19:CB:CB:53:66:9F:2A:1A:AC:AA:1D:8F:79:00:BC:BE:D9
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 019E30E0EB6136867A0F2DC6792E591664A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 0C32
Signing time: Sat 16 May 2026 13:01:47 +0000
Manifest this update: Sat 16 May 2026 13:01:47 +0000
Manifest next update: Sun 17 May 2026 13:01:47 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: A8ZCjOdmnVSkzDZqf0UvXW9aZQ7PtjcdqoByMMyFF7E=)
2: bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa (hash: +XM1cLvQITLL+hcYwm0/qg57RFddihfSN5qfe1ousHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:eb:61:36:86:7a:0f:2d:c6:79:2e:59:16:64:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: May 16 13:01:47 2026 GMT
Not After : May 17 13:01:47 2026 GMT
Subject: CN=af32cc19cbcb53669f2a1aacaa1d8f7900bcbed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:32:75:d0:c4:c3:21:1f:96:eb:1b:b8:18:
c8:9b:17:bb:63:d0:42:49:7f:e1:5d:69:f7:bf:02:
05:9d:b7:67:d1:d4:11:a2:81:db:60:a7:8d:a7:50:
7d:b0:dd:63:be:5e:da:f7:32:5d:9c:2d:b1:bf:f6:
2f:dc:9c:a3:96:53:de:5a:65:2f:58:c8:a4:33:3e:
fc:57:5c:c6:b7:fb:c3:27:26:d4:0a:bc:3b:bc:a3:
09:15:b9:58:f8:19:80:29:e5:5e:3f:dd:c7:67:aa:
84:47:07:45:59:14:12:67:64:f8:6b:41:56:88:f2:
27:68:57:2a:b5:42:f1:4a:68:0e:ca:56:3b:69:a7:
b5:b2:75:7c:da:a0:22:c1:d9:08:de:14:17:e3:c5:
90:a0:f5:38:42:9d:d0:e1:e2:65:92:5f:34:1c:89:
b2:57:25:ce:e5:4b:ae:d6:00:a5:b6:1c:e5:b4:a1:
41:18:24:5f:5d:c8:bd:c9:2f:64:62:fe:0e:63:f0:
63:bf:49:68:e6:e0:98:cf:c0:32:66:86:67:b3:dc:
49:bb:e8:d3:04:1a:f8:cc:7f:21:78:a7:2f:a0:d9:
a5:ed:46:7a:b7:2d:35:30:37:21:86:de:28:28:0d:
39:ed:13:c8:98:ab:00:af:3f:5b:2d:b7:e1:8b:e4:
64:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:32:CC:19:CB:CB:53:66:9F:2A:1A:AC:AA:1D:8F:79:00:BC:BE:D9
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:b4:54:ea:41:90:1f:25:62:65:c6:c8:87:59:50:e8:e6:88:
bc:c9:e9:33:4d:27:64:53:61:36:50:e9:5e:b1:31:50:68:a4:
75:28:54:94:28:4a:5a:04:ea:d6:5e:ff:d9:f5:22:4d:24:93:
a5:1b:4e:5d:49:d1:a3:b5:40:ba:e5:3a:f5:03:9d:b6:ec:8a:
c6:05:50:d3:01:ea:9e:fa:a2:04:e8:86:d7:db:6e:6e:b8:34:
f4:0b:12:56:dc:e4:dd:3a:e0:5b:59:57:45:5e:03:4a:a6:53:
85:83:e7:46:c0:16:c6:37:dc:b7:d9:02:da:6d:98:e9:09:4a:
f6:52:4a:3e:51:78:a6:ba:b5:2a:6f:84:ff:55:59:e5:bf:53:
91:28:a4:53:5c:cf:8f:e5:e4:3b:aa:4a:c9:1f:1f:9b:20:5b:
e7:d9:86:f3:e6:6e:d4:ab:f4:66:4d:71:aa:58:b0:90:59:f9:
dd:d9:70:af:18:30:74:c4:48:5a:69:cd:08:99:58:b4:5e:3f:
7f:7e:c8:6a:11:3e:c8:9a:35:de:5a:5d:a6:bc:3f:7f:3b:88:
91:1f:52:2f:08:1b:e5:d5:94:45:2e:a8:79:bd:22:c8:e4:02:
dd:6e:ba:d1:2a:84:2c:93:12:8e:d7:52:71:6f:0b:70:5c:f9:
77:49:3f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:26:17 2026 by rpki-client