Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: cDk/sMAvejV9BJ90nX2a0tRYmkOkJkcrTKPGWZX3meg=
Subject key identifier: 75:05:7C:58:F4:A3:08:D3:9E:02:B0:71:1B:5E:3A:61:78:22:D8:1A
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019E1EA38A712F5722573445E18AC7E5F8A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 1089
Signing time: Wed 13 May 2026 00:01:34 +0000
Manifest this update: Wed 13 May 2026 00:01:34 +0000
Manifest next update: Thu 14 May 2026 00:01:34 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: S5v8BJNe0T0Mb2A72MLCS83eB1KC549y4q2fgEqZOys=)
2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:8a:71:2f:57:22:57:34:45:e1:8a:c7:e5:f8:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: May 13 00:01:34 2026 GMT
Not After : May 14 00:01:34 2026 GMT
Subject: CN=75057c58f4a308d39e02b0711b5e3a617822d81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:66:3b:54:79:6b:45:73:8f:7c:df:02:08:d0:
ca:d3:67:dd:86:da:37:94:12:ae:89:8c:fd:3c:b1:
07:05:79:9f:1f:b4:ae:1c:49:0b:53:c2:b2:ca:93:
74:1d:49:92:70:f4:d3:e2:3d:92:b7:08:19:98:fb:
57:89:1f:90:90:d4:46:de:f9:1f:fd:9f:27:bd:63:
5a:ce:75:9e:7f:49:c5:39:2a:87:55:01:9a:81:d0:
eb:51:63:d8:92:80:05:c6:09:da:30:6d:a4:ea:3b:
37:c4:71:9b:2b:9f:49:ac:9d:34:ea:0b:07:2c:d5:
43:d1:75:61:fc:f5:d2:b9:2d:2d:9f:3b:11:cd:fc:
d8:00:c3:5f:09:dc:4c:f3:3c:1b:8a:df:4a:4a:34:
6b:38:42:7a:b6:f8:78:93:ab:17:32:3c:e0:e6:cb:
8d:ab:1a:0c:11:25:36:d6:1f:4f:43:0b:2f:3d:9f:
99:05:6e:2c:4d:6f:af:64:7d:6d:e6:2a:72:42:df:
d8:d3:7a:49:e7:e4:54:63:51:62:3f:57:71:28:35:
1f:87:fb:e6:93:bc:85:60:7e:48:53:74:6d:b0:15:
d2:f1:1a:12:b3:51:1b:64:ac:d1:b2:e5:5c:68:4a:
70:f1:00:32:bb:64:a1:58:d4:75:95:72:80:28:bc:
bc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:05:7C:58:F4:A3:08:D3:9E:02:B0:71:1B:5E:3A:61:78:22:D8:1A
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:12:aa:fc:a2:7b:dd:5b:73:bf:b3:ca:50:40:37:77:41:fb:
36:9e:0a:e0:af:67:de:65:ce:22:cf:38:0d:95:63:cd:b5:bb:
cb:6b:a3:51:3a:c5:2c:06:b9:da:5b:f6:89:be:a2:81:96:14:
fb:d7:6c:2f:54:22:c8:11:71:0d:da:33:cb:9f:fe:e0:88:9c:
23:e3:71:9d:0b:3f:c4:95:af:5f:8f:50:e5:a0:94:55:df:f5:
98:fc:02:53:df:4f:8b:59:8b:0d:1a:bd:d3:37:d8:d4:2a:95:
fe:e4:fa:f2:cf:ef:1e:d7:b8:3e:f0:7a:dc:73:95:fc:8a:67:
0e:55:e6:d0:21:ab:c0:29:b5:12:a5:21:c0:d4:75:f8:cb:66:
c6:0d:01:6d:f6:b6:da:2a:08:2b:eb:dd:b0:05:b0:25:f8:cb:
99:84:2b:33:0a:64:00:5e:66:67:b1:b6:86:fc:2b:f5:99:86:
a0:9c:67:61:55:20:0a:48:28:e6:05:0f:c5:39:62:b4:b2:f5:
06:fb:3c:12:ed:36:fb:1b:26:67:b5:28:bd:91:ee:52:68:e9:
de:fd:8d:32:12:9b:24:fb:d0:43:df:f9:5c:1b:ab:be:1e:49:
58:c2:57:f3:c3:c6:32:16:f7:ed:45:21:2f:bd:be:ff:68:8c:
5b:2c:40:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:28:26 2026 by rpki-client