Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: 8g2Sgw77moO0y3JXLLqxyAlAotAPzB3Wcs7U+tE2oJI=
Subject key identifier: E4:99:2D:E0:50:B2:28:EC:BF:94:2E:F8:C7:E3:80:91:54:A6:0D:47
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019D2583B9CB2199B0202AC8470FBD23964D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 1008
Signing time: Wed 25 Mar 2026 15:01:22 +0000
Manifest this update: Wed 25 Mar 2026 15:01:22 +0000
Manifest next update: Thu 26 Mar 2026 15:01:22 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: vk5Ea9GzjyXmTbpM+Z3jeMBeI1vmsjEF8ohkjHC1T3o=)
2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:b9:cb:21:99:b0:20:2a:c8:47:0f:bd:23:96:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Mar 25 15:01:22 2026 GMT
Not After : Mar 26 15:01:22 2026 GMT
Subject: CN=e4992de050b228ecbf942ef8c7e3809154a60d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:f0:63:ab:44:57:aa:19:0c:0f:de:35:cb:
3d:fb:a4:f8:60:b1:6a:5a:7a:7c:e9:6f:6d:e2:af:
43:da:fb:82:a8:e2:e7:86:e2:cc:90:aa:fb:a6:17:
9d:66:a9:8a:12:0e:04:1c:3e:f4:c4:cf:a3:4d:7a:
45:0d:2d:b0:be:60:aa:60:79:ce:fc:3b:03:16:c5:
6d:6c:a9:62:58:2d:16:29:72:80:44:29:c8:27:d0:
01:ef:cb:6d:eb:ec:87:28:21:2f:3b:a2:48:d5:df:
c3:3b:ad:02:6c:cf:d3:a4:9e:a8:d6:90:02:f5:73:
1f:b3:03:87:c0:8d:1f:30:ed:cc:9e:32:68:1a:73:
36:32:c0:42:38:a9:da:26:2f:9d:ba:1a:f0:96:1b:
04:81:93:e8:31:a8:38:ed:d1:41:88:d1:e4:f8:e2:
43:40:8d:4a:53:c9:11:18:b5:1c:e6:3d:a6:ff:c9:
2a:20:17:65:1e:e4:42:de:7c:47:a2:c4:81:55:53:
69:7f:c9:12:ba:44:05:1b:1b:84:c7:f8:06:3f:5d:
07:f0:dc:84:33:73:9d:3f:7f:01:5e:fd:c1:63:b6:
14:c6:2c:a4:49:f9:ff:7c:0d:04:63:13:1a:98:5f:
9a:ca:47:88:44:27:72:0c:e2:d9:43:ea:44:37:54:
39:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:99:2D:E0:50:B2:28:EC:BF:94:2E:F8:C7:E3:80:91:54:A6:0D:47
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:8d:0f:0e:20:56:28:ea:57:ff:ce:cf:d1:3c:16:bf:dc:39:
e3:3d:4f:ad:a8:54:87:db:19:40:4f:6f:3f:cc:b9:9e:80:47:
5a:f6:65:98:99:e2:76:c7:af:bb:52:be:88:6a:8e:f2:2a:38:
25:02:80:14:5e:8f:5f:54:b4:25:0d:11:ff:ef:ae:55:39:ed:
58:e4:c9:7f:8e:07:7c:3c:e0:a7:91:ec:8d:26:c2:34:ba:69:
c0:0a:1b:ca:06:f1:fe:46:48:3a:e1:f2:c7:fa:45:b1:e3:0f:
c5:10:f5:60:37:c7:3d:2b:35:0f:86:12:2e:f8:aa:91:4a:ad:
a3:7e:39:84:73:7c:88:f0:11:c8:14:80:56:52:75:29:00:38:
1f:d6:14:9a:be:c4:81:79:ea:32:6d:ca:37:39:7f:3e:8b:37:
b7:09:a7:f0:07:71:80:88:ef:80:3d:43:65:7e:ff:f9:e7:90:
a3:dd:08:76:42:56:76:74:ee:fa:4e:37:11:eb:e2:a3:b2:41:
6c:fa:a7:c5:27:8b:da:e3:43:51:0b:4c:29:bc:f4:e8:33:4f:
75:23:5c:c7:01:7d:29:7d:82:79:96:ad:9c:ea:49:58:c7:3d:
d1:7c:eb:3e:1e:3e:62:9c:d4:50:be:4f:a9:f9:94:66:fc:67:
55:ff:77:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:24 2026 by rpki-client