Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: KzIXyV/3XhaKF567Rum3cILy3JOr1d9rCgzhucuXU18=
Subject key identifier: 46:BD:A0:A1:90:33:90:36:3A:4E:BE:02:29:E5:DB:4E:77:17:EE:A1
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 019D39AE7956BFA2F76DD67899BE458140BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 0BB2
Signing time: Sun 29 Mar 2026 13:00:28 +0000
Manifest this update: Sun 29 Mar 2026 13:00:28 +0000
Manifest next update: Mon 30 Mar 2026 13:00:28 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: 4hUwJ3Sh0oNAXYGGZ2YPiq/ISjRzzpcMf2wjb2p3Vk0=)
2: bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa (hash: +XM1cLvQITLL+hcYwm0/qg57RFddihfSN5qfe1ousHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:79:56:bf:a2:f7:6d:d6:78:99:be:45:81:40:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: Mar 29 13:00:28 2026 GMT
Not After : Mar 30 13:00:28 2026 GMT
Subject: CN=46bda0a1903390363a4ebe0229e5db4e7717eea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:ca:f8:dc:cd:9d:9b:90:4b:04:d1:22:51:
98:b5:09:db:29:23:a9:22:e1:bd:3d:43:65:bc:26:
af:d1:ee:45:e2:94:b1:b4:69:74:98:47:05:2b:4c:
c4:c4:d9:74:cd:17:69:bd:4a:75:97:87:ab:0d:07:
65:8c:4b:1e:a1:f6:81:1e:b2:fe:59:6b:9a:31:8f:
9b:46:ed:26:38:4a:56:b5:7a:ea:70:31:25:95:66:
33:33:5f:27:3f:54:14:ca:cf:07:56:3e:c3:2a:01:
4d:8a:5a:f9:d0:59:ef:0d:a6:32:e4:51:5c:3b:bd:
37:80:92:f1:f0:a2:97:0c:6b:b6:bf:20:9f:0d:86:
bb:8d:24:e3:d0:8e:26:36:af:67:95:ff:80:b8:6f:
ca:65:f2:2a:a5:db:e0:98:0e:6e:ff:9d:61:4f:02:
47:ba:ff:17:71:5d:b2:bc:b2:37:9d:3c:92:c0:c6:
82:a4:49:cb:29:b6:90:11:95:02:ea:e4:78:b4:da:
90:57:f9:5e:cb:a9:d4:72:32:a4:e3:25:6c:fa:32:
08:d6:6e:c0:db:a2:ce:3d:7d:df:6a:77:15:47:84:
23:dc:ad:12:3c:2a:48:3a:b5:54:75:73:45:b1:31:
1a:fe:27:47:02:a2:28:15:f5:17:47:ed:d2:9c:89:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:BD:A0:A1:90:33:90:36:3A:4E:BE:02:29:E5:DB:4E:77:17:EE:A1
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:6e:f8:5f:d7:ea:38:d3:d9:c1:31:54:e6:99:be:9b:e9:20:
03:c1:7d:22:5d:8a:01:a5:cb:ed:03:15:c9:9c:36:9e:4d:25:
4f:19:d4:d0:f9:73:8d:65:0d:54:39:be:cf:10:0b:9b:38:33:
35:35:d9:dc:44:b1:00:48:ca:3a:2f:1b:79:88:47:2c:65:58:
dc:3b:64:40:89:d1:cf:74:3f:2c:d2:dc:7f:24:47:e1:79:e1:
ac:be:61:ad:d4:34:e0:a1:03:63:9a:cf:e4:a5:ae:1b:ff:75:
e6:cc:70:92:5c:e4:c8:ed:1b:56:7f:c4:bb:f4:46:3a:19:7e:
05:9f:e7:09:5e:05:d3:0a:b3:a1:97:2e:a8:07:64:a5:7d:78:
6a:0f:e5:8f:b5:f5:f2:e5:65:6f:4f:df:77:2c:79:4d:94:4b:
16:f6:ab:83:23:ba:54:04:23:ae:17:b9:29:fd:15:57:c0:95:
94:62:8f:92:4b:35:a2:94:f0:07:58:07:f7:3a:a5:64:cc:2e:
05:55:81:2d:e3:e5:19:af:af:85:1c:de:14:ae:9e:47:92:f8:
ec:a6:5e:48:a1:47:71:22:2f:f5:a4:8e:0d:e8:75:65:7f:9e:
65:e2:30:6e:e0:d5:e0:91:6a:6e:54:98:78:ec:6e:85:c4:31:
b5:5e:a2:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rnlWv6L3bdZ4mb5FgUC+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzM2IzMmUwNWQwYTg1ZGJkNDQ1MGYzN2E3M2U3ZmExZjYx
MDBhZmMwHhcNMjYwMzI5MTMwMDI4WhcNMjYwMzMwMTMwMDI4WjAzMTEwLwYDVQQD
Eyg0NmJkYTBhMTkwMzM5MDM2M2E0ZWJlMDIyOWU1ZGI0ZTc3MTdlZWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWfK+NzNnZuQSwTRIlGYtQnbKSOp
IuG9PUNlvCav0e5F4pSxtGl0mEcFK0zExNl0zRdpvUp1l4erDQdljEseofaBHrL+
WWuaMY+bRu0mOEpWtXrqcDEllWYzM18nP1QUys8HVj7DKgFNilr50FnvDaYy5FFc
O703gJLx8KKXDGu2vyCfDYa7jSTj0I4mNq9nlf+AuG/KZfIqpdvgmA5u/51hTwJH
uv8XcV2yvLI3nTySwMaCpEnLKbaQEZUC6uR4tNqQV/ley6nUcjKk4yVs+jII1m7A
26LOPX3fancVR4Qj3K0SPCpIOrVUdXNFsTEa/idHAqIoFfUXR+3SnIkQkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEa9oKGQM5A2Ok6+Ainl2053F+6hMB8GA1UdIwQY
MBaAFNM7MuBdCoXb1EUPN6c+f6H2EAr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgt
MGUxNmJhZWY3MTEzLzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgtMGUxNmJhZWY3MTEz
LzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArW74X9fq
ONPZwTFU5pm+m+kgA8F9Il2KAaXL7QMVyZw2nk0lTxnU0PlzjWUNVDm+zxALmzgz
NTXZ3ESxAEjKOi8beYhHLGVY3DtkQInRz3Q/LNLcfyRH4XnhrL5hrdQ04KEDY5rP
5KWuG/915sxwklzkyO0bVn/Eu/RGOhl+BZ/nCV4F0wqzoZcuqAdkpX14ag/lj7X1
8uVlb0/fdyx5TZRLFvargyO6VAQjrhe5Kf0VV8CVlGKPkks1opTwB1gH9zqlZMwu
BVWBLePlGa+vhRzeFK6eR5L47KZeSKFHcSIv9aSODeh1ZX+eZeIwbuDV4JFqblSY
eOxuhcQxtV6iFw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:41:03 2026 by rpki-client