Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
File: OuUFv8f9kXaGscizohj1UI9aNwo.mft (raw, json)
Hash identifier: JPOnzH3CIybPCupz1WKiZ+/YoVnaWFryat55wGinorg=
Subject key identifier: 00:FF:23:05:1A:A5:72:45:6D:A2:AF:4E:0D:C6:C0:1D:AB:78:04:E8
Authority key identifier: 3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
Certificate issuer: /CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Certificate serial: 019D3865D5588A999293FA975192E4EB2F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
Manifest number: 04DF
Signing time: Sun 29 Mar 2026 07:01:30 +0000
Manifest this update: Sun 29 Mar 2026 07:01:30 +0000
Manifest next update: Mon 30 Mar 2026 07:01:30 +0000
Files and hashes: 1: OuUFv8f9kXaGscizohj1UI9aNwo.crl (hash: mgjfqSOvFdHJtLvtRNi9Xb57yb5aD2UtOtzWQKiHVqg=)
2: zMm9JKVVKWKfD1DDKP4qsT59tOg.roa (hash: C1WJK5Q9adCFTqiEMvgoPvMhAn7ou/puIqaX1v5Q3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:d5:58:8a:99:92:93:fa:97:51:92:e4:eb:2f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Validity
Not Before: Mar 29 07:01:30 2026 GMT
Not After : Mar 30 07:01:30 2026 GMT
Subject: CN=00ff23051aa572456da2af4e0dc6c01dab7804e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:29:25:0e:22:2b:8b:c4:ba:2d:cd:df:af:ab:
5b:86:21:91:49:6a:a1:22:86:93:7c:a9:d3:49:50:
f2:04:89:e8:d9:64:70:61:9d:24:69:c3:15:0a:11:
50:13:c0:43:78:42:29:57:d3:71:92:b8:db:18:51:
19:09:55:ec:f9:75:7d:27:88:01:9f:7a:a8:c7:65:
90:0e:83:98:0f:bc:21:f8:14:03:01:8e:52:cc:45:
ee:d0:0f:81:3e:31:52:41:8c:cb:9d:86:ee:be:bd:
36:c9:02:cb:c7:b1:2a:d2:07:71:61:62:6e:7d:bc:
30:81:7a:52:37:45:98:c2:16:76:6f:39:c3:62:0b:
f2:69:ce:fe:10:80:74:8f:d6:cd:41:35:04:cd:25:
63:41:a0:3b:4d:ad:fa:fb:ae:cb:df:4d:8b:8b:40:
fe:15:4a:75:19:89:ce:0a:97:33:88:b1:34:26:51:
4d:ee:a8:84:53:db:ef:75:46:98:4a:79:3e:dc:b6:
5f:16:af:b8:0f:56:d8:3d:f2:50:ba:3c:04:74:a9:
05:55:28:7c:f6:3b:97:f9:1a:ba:eb:a1:4c:fd:74:
64:85:08:29:2e:7d:4a:c3:5f:92:22:31:7c:c3:e9:
8a:2b:5a:f3:fa:c7:94:b2:a3:c5:4b:73:7b:01:01:
68:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FF:23:05:1A:A5:72:45:6D:A2:AF:4E:0D:C6:C0:1D:AB:78:04:E8
X509v3 Authority Key Identifier:
keyid:3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:cc:a1:6c:48:52:dc:37:77:98:c9:32:22:64:55:b9:4f:dc:
1c:d7:21:72:49:e5:64:b6:a1:eb:91:21:11:17:ef:2e:b6:28:
37:53:b3:60:46:98:82:61:61:13:58:cc:2c:c5:af:2a:67:ec:
d0:34:02:e7:bd:de:46:e8:aa:92:00:02:e8:06:52:75:2c:a1:
e3:8e:e6:f5:30:6a:eb:51:72:42:66:18:a7:99:8d:14:10:32:
64:13:b0:ea:00:b0:c1:20:db:7b:2a:cb:43:75:1f:79:db:d0:
1a:50:c9:b9:81:62:61:13:13:29:c1:1a:91:f0:70:47:b4:9b:
c2:e6:53:0d:58:9a:4d:89:20:55:7b:6d:81:98:55:ed:1e:64:
84:36:4d:eb:13:7e:13:d8:a9:91:8c:7d:88:aa:8e:70:0c:e8:
ba:ad:a5:f3:7a:fa:f9:f8:42:71:fe:c8:69:fc:ac:c0:c9:c3:
ce:bb:d3:a2:c2:7c:78:84:67:40:54:55:de:6f:1f:cc:b6:0c:
1e:6f:32:0b:c7:4e:62:b8:cc:7e:55:2c:23:cb:d5:0e:fa:e3:
ab:04:3b:0e:90:fc:5e:c0:2a:1f:c8:f6:4a:77:91:2d:52:cd:
64:da:3b:59:be:df:35:22:7a:11:d4:14:ea:59:e3:50:a2:6a:
e2:38:40:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:21 2026 by rpki-client