Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
File: oZUhxzUtHKw_mMdW_HprSzrpdT0.mft (raw, json)
Hash identifier: 1ry2nf3z35ktWmtNWlWoA8MR2VisNKOWl7M8hY7+iBU=
Subject key identifier: D3:84:0B:FB:11:1B:1E:61:54:EE:3B:FC:D3:BE:FA:FF:73:68:42:3E
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 019D389C24A5A125EA20A2B4E20684D3D90F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
Manifest number: 12E1
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: oZUhxzUtHKw_mMdW_HprSzrpdT0.crl (hash: SLF+3eiqK57p4YtEh6H7B0LWms2ES+Acx5s1hYg1H0s=)
2: zLO5NhttWnGtKqBNs-55QF4xyAI.roa (hash: Y+DHFPwDb32W512hSzIFIuvnQ5dNais6OF6h18YAYzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:24:a5:a1:25:ea:20:a2:b4:e2:06:84:d3:d9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=d3840bfb111b1e6154ee3bfcd3befaff7368423e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ba:5f:9f:4e:00:31:ec:1a:40:51:9a:59:79:
4d:57:86:4a:62:43:a3:42:87:c2:3c:8c:4a:13:c1:
bc:1a:6e:c4:50:e6:62:c2:5b:a7:4a:ba:62:c3:05:
dc:a9:75:8a:76:fe:f7:77:76:94:c3:f6:ec:c7:69:
5c:e6:98:43:24:9e:6c:37:80:6a:07:1d:45:ed:25:
92:75:3d:e9:44:55:8f:f9:86:f9:77:01:b6:ee:c2:
64:c8:4f:58:96:53:ea:17:7d:ab:bb:44:71:67:82:
c5:c4:74:01:f9:8c:f1:1f:74:2f:bf:45:fb:86:f8:
d0:ef:70:47:5b:b3:2f:b8:79:d3:b8:3b:63:1a:bc:
d6:fd:38:32:c4:02:b3:56:a9:14:71:ac:4a:31:b5:
30:8b:e9:3b:c8:9e:26:64:6a:4c:0c:33:b6:40:ba:
1c:d3:15:72:76:f7:e4:cb:1f:96:f4:dc:d5:3b:41:
91:60:14:1b:38:7c:9d:f3:82:26:71:27:85:64:43:
10:c5:ff:3c:f5:60:66:a9:e9:93:b7:da:1f:c4:1d:
09:1a:6a:b1:ef:f5:9e:56:9b:59:12:80:29:6e:d6:
d9:8e:c0:ab:60:db:ad:7a:7f:83:c3:02:d7:f9:e1:
5d:64:23:8f:3b:16:3f:bf:b4:fe:e8:b9:19:ed:83:
44:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:84:0B:FB:11:1B:1E:61:54:EE:3B:FC:D3:BE:FA:FF:73:68:42:3E
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:dd:49:81:de:23:93:f3:e3:09:5f:95:35:6d:ff:eb:6a:53:
e0:43:1f:3a:69:3e:9d:91:55:92:8d:16:9b:4b:92:4d:01:db:
bc:38:ea:ad:83:e3:ab:68:01:56:2f:5e:9e:6a:97:68:a6:28:
ee:80:38:20:51:d8:cc:e1:4d:6a:e4:e8:a6:58:18:2c:cf:64:
d8:9f:26:e7:69:b3:ea:8c:58:d6:c3:1c:8b:73:45:cd:0a:ae:
f8:52:ad:01:53:23:82:59:76:da:66:ca:95:fb:d3:aa:e1:3c:
20:c6:74:c8:f4:5d:d4:8a:b3:eb:32:9a:17:13:ed:c6:c8:ba:
3f:d3:66:cf:26:f8:2c:e3:61:06:e3:dd:61:92:85:1f:5a:4d:
cf:41:72:d3:3d:7a:9c:b8:8a:64:47:4c:87:11:ec:69:62:96:
9d:40:6b:51:3a:3e:34:31:43:6f:9f:f8:86:fd:29:cf:1c:64:
7f:61:b3:22:c5:34:68:81:36:68:00:7d:57:bc:9e:bd:83:9a:
36:10:f9:c6:c5:b3:bd:79:14:1e:e4:0d:91:9b:d2:db:c1:73:
11:03:b1:be:23:07:f8:f8:f3:1f:2c:f5:57:2b:b3:00:9d:9d:
c8:63:1a:b8:93:fa:a1:1e:f7:38:52:95:f6:dd:9b:3c:72:1f:
53:dc:c2:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nCSloSXqIKK04gaE09kPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExOTUyMWM3MzUyZDFjYWMzZjk4Yzc1NmZjN2E2YjRiM2Fl
OTc1M2QwHhcNMjYwMzI5MDgwMDUwWhcNMjYwMzMwMDgwMDUwWjAzMTEwLwYDVQQD
EyhkMzg0MGJmYjExMWIxZTYxNTRlZTNiZmNkM2JlZmFmZjczNjg0MjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAirpfn04AMewaQFGaWXlNV4ZKYkOj
QofCPIxKE8G8Gm7EUOZiwlunSrpiwwXcqXWKdv73d3aUw/bsx2lc5phDJJ5sN4Bq
Bx1F7SWSdT3pRFWP+Yb5dwG27sJkyE9YllPqF32ru0RxZ4LFxHQB+YzxH3Qvv0X7
hvjQ73BHW7MvuHnTuDtjGrzW/TgyxAKzVqkUcaxKMbUwi+k7yJ4mZGpMDDO2QLoc
0xVydvfkyx+W9NzVO0GRYBQbOHyd84ImcSeFZEMQxf889WBmqemTt9ofxB0JGmqx
7/WeVptZEoApbtbZjsCrYNuten+DwwLX+eFdZCOPOxY/v7T+6LkZ7YNETQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNOEC/sRGx5hVO47/NO++v9zaEI+MB8GA1UdIwQY
MBaAFKGVIcc1LRysP5jHVvx6a0s66XU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMt
ZTVhZGEzNmZhMWYzLzEvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMtZTVhZGEzNmZhMWYz
LzEvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi91Jgd4j
k/PjCV+VNW3/62pT4EMfOmk+nZFVko0Wm0uSTQHbvDjqrYPjq2gBVi9enmqXaKYo
7oA4IFHYzOFNauToplgYLM9k2J8m52mz6oxY1sMci3NFzQqu+FKtAVMjgll22mbK
lfvTquE8IMZ0yPRd1Iqz6zKaFxPtxsi6P9Nmzyb4LONhBuPdYZKFH1pNz0Fy0z16
nLiKZEdMhxHsaWKWnUBrUTo+NDFDb5/4hv0pzxxkf2GzIsU0aIE2aAB9V7yevYOa
NhD5xsWzvXkUHuQNkZvS28FzEQOxviMH+PjzHyz1VyuzAJ2dyGMauJP6oR73OFKV
9t2bPHIfU9zCpQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:49 2026 by rpki-client