Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: ndx0y+b9EZ96iPeWljOKfvjdzm1EYB3ffJhPYgxdfsk=
Subject key identifier: 4B:19:0B:49:6A:FC:FE:4F:15:7A:F8:99:64:D5:5F:42:7F:B4:3C:57
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 019D371B2517F693971698464099ABF22566
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 11B8
Signing time: Sun 29 Mar 2026 01:00:18 +0000
Manifest this update: Sun 29 Mar 2026 01:00:18 +0000
Manifest next update: Mon 30 Mar 2026 01:00:18 +0000
Files and hashes: 1: FitNVwmkb-__h9PO6L10GhPup_E.roa (hash: ddZD9lDpQD4dBKWa3tVdSEZbNMB8R3IK9ZzbEU7iNSg=)
2: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: 5wy/tXmZrq99N8KfzT5x0OuaJ63XsH5mDPyvgDDV2ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:25:17:f6:93:97:16:98:46:40:99:ab:f2:25:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Mar 29 01:00:18 2026 GMT
Not After : Mar 30 01:00:18 2026 GMT
Subject: CN=4b190b496afcfe4f157af89964d55f427fb43c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:83:e0:59:48:d2:62:1f:fd:00:44:79:94:f8:
d2:bc:ef:95:eb:01:8d:8d:d1:5a:70:0d:b6:ae:17:
23:93:6d:e8:07:a9:82:eb:76:15:a1:ce:90:ae:b2:
21:59:ee:83:f7:4a:f3:5b:fe:db:e0:4d:b5:4f:b6:
12:ad:92:99:78:29:8f:c1:cd:ac:a6:b1:c8:82:95:
96:f8:7b:78:8c:e5:66:69:cb:34:4f:88:58:36:63:
a2:3b:f9:32:43:22:ee:b6:4f:4c:0b:ed:2a:49:99:
cd:c7:f3:ae:6d:c5:e8:9f:02:93:c8:e2:c5:45:9c:
d3:25:1d:fb:22:8d:fa:dd:d8:31:c2:37:f1:72:83:
a0:87:fc:ae:9d:cc:f7:95:84:ed:16:d8:58:62:6e:
e0:64:9f:e2:5c:62:ca:31:e9:23:b2:87:00:76:1c:
2d:be:51:2f:46:aa:f6:f5:85:4c:8c:8d:2c:60:da:
b2:1e:35:d4:8d:86:f2:ac:e0:a7:eb:d1:3d:5d:3c:
fc:33:ef:0f:dd:c7:cf:ff:8c:16:80:1f:0c:d1:cd:
7c:8e:44:af:40:97:06:48:e2:ee:97:cd:97:df:dd:
60:06:49:59:21:82:e8:4b:da:73:78:fa:fd:03:98:
8e:93:a2:28:57:43:a4:d8:38:ee:ef:5b:52:af:e1:
b0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:19:0B:49:6A:FC:FE:4F:15:7A:F8:99:64:D5:5F:42:7F:B4:3C:57
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:11:7b:93:d4:41:ec:d6:31:6c:33:03:cc:6d:86:de:4f:3d:
8e:0a:b0:e9:91:37:4b:cb:b2:76:65:40:ed:10:08:3d:80:39:
22:07:78:f9:6b:ec:65:81:b2:21:c9:07:8a:26:d6:13:22:ba:
65:3d:4a:f3:68:56:5f:9f:89:45:1e:01:31:33:89:75:01:27:
a6:15:3d:53:51:9a:94:57:2b:4b:c4:9f:ee:e9:8c:25:f6:14:
52:6c:e3:60:55:1a:94:2e:a5:ff:3e:ec:79:a6:a4:2f:83:aa:
6b:28:77:d5:80:3d:1a:0c:11:9f:21:06:8b:32:41:dc:1c:08:
e1:1f:b2:40:a1:af:1c:4d:a1:40:6b:86:cc:8c:9b:cd:14:98:
16:bd:51:01:71:1d:ac:55:f6:70:e3:d4:d0:fb:ec:2f:61:a0:
bb:66:82:0f:de:e4:fc:49:97:0d:b7:7e:7f:b3:e2:1d:61:6e:
98:4a:84:6e:55:c7:f3:2a:8a:86:91:65:7b:80:98:03:9c:c3:
ed:77:71:e8:e8:25:bf:a8:7f:32:90:49:3e:cf:d5:dc:4e:14:
a0:2d:40:64:d6:c0:63:fc:b0:d3:89:21:63:f5:cd:d5:57:74:
28:5a:0e:5f:e6:db:06:4d:01:80:b0:e5:c0:e1:33:09:e2:91:
0f:68:2c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:46 2026 by rpki-client