Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: xkrGW9deV7YAYTOPSEtKxG2l4gjGetR4Ave5ZS1lcLk=
Subject key identifier: AF:06:5C:46:8B:D1:4D:14:58:38:14:30:9A:75:DB:F7:75:D1:1E:82
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 019D269652763189B357066A18F5F132074F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0C70
Signing time: Wed 25 Mar 2026 20:01:18 +0000
Manifest this update: Wed 25 Mar 2026 20:01:18 +0000
Manifest next update: Thu 26 Mar 2026 20:01:18 +0000
Files and hashes: 1: Nph9BsHMAWz3v3KuWSmSYaAs3t0.roa (hash: PiH06TnQZKY0ou+2ssqAuJ7EJt+8n060evKXmiAMkgE=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: QkFmGQhQsf6u5Mo8J/EEaIlQrq36pjUjhxGPwdfQBrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:52:76:31:89:b3:57:06:6a:18:f5:f1:32:07:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Mar 25 20:01:18 2026 GMT
Not After : Mar 26 20:01:18 2026 GMT
Subject: CN=af065c468bd14d14583814309a75dbf775d11e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bb:13:53:01:8f:6a:58:7c:c2:d7:48:26:a9:
1e:3b:60:a8:05:ba:d7:1a:97:b5:1a:c8:66:c2:39:
7c:5d:73:29:9c:28:b0:6d:b0:aa:f9:5b:26:bb:69:
a7:4d:ed:7e:60:8d:55:a9:9a:4b:63:01:ff:20:88:
56:92:ed:d9:53:fd:6e:de:d5:5b:0e:9e:57:4f:5c:
2d:46:d0:ab:8f:25:8a:a1:39:90:b8:bc:c7:f2:59:
55:06:ec:8c:ac:df:17:01:7a:24:8c:74:6c:d8:f8:
14:cc:d6:6e:4e:e1:6b:fa:d4:3a:dd:d8:c8:80:f2:
9f:d4:e4:1d:02:b2:4e:58:da:56:c4:87:12:c2:f8:
7e:cf:58:23:7c:69:05:c9:c8:32:c5:4f:cb:cb:65:
e8:2d:71:73:cd:9b:5e:46:be:5d:48:b5:d6:42:5b:
ea:23:07:27:88:ca:74:f4:5c:46:65:28:d9:d8:9f:
ac:14:7c:07:a4:c5:1e:2c:e9:20:f2:7a:32:72:f8:
35:4f:e1:ca:92:7d:e4:fe:6d:3f:a9:6b:8d:4d:77:
d0:e1:5f:fe:60:14:af:8d:33:cd:f0:df:0c:33:69:
04:b7:d9:bb:ca:48:2c:45:48:f2:62:83:1b:e9:aa:
40:d0:29:01:cb:b9:5e:51:98:3b:a7:20:61:45:74:
88:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:06:5C:46:8B:D1:4D:14:58:38:14:30:9A:75:DB:F7:75:D1:1E:82
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:63:c5:2f:64:6c:a8:b7:c6:69:8b:a5:62:fe:ae:a1:82:57:
23:e0:54:dd:b6:d2:aa:10:c5:0e:3c:98:85:51:62:01:7e:77:
f3:46:e5:e2:7e:8a:eb:e8:f7:a2:8e:3e:2a:19:87:18:47:33:
e0:c4:cd:bc:69:f7:6a:ba:1e:cf:4f:ed:8b:73:e4:34:1d:05:
3d:4e:48:67:87:91:85:d5:03:ea:db:c0:cb:e7:02:58:d0:1c:
b6:6c:a0:1c:53:00:24:a7:18:d7:b7:7b:b9:b5:17:9a:2a:81:
22:4b:bb:48:5d:fc:b2:cf:c6:69:04:08:f3:5d:18:64:6a:81:
a9:60:c3:f9:0d:c0:db:c5:e1:47:e1:0a:81:78:91:54:97:0f:
da:4b:96:d2:1e:4e:8a:a2:d7:f4:0f:3f:6e:5e:d9:0f:72:3f:
b1:ff:c0:de:2e:4a:d3:74:ec:3c:6b:e2:78:35:0f:fe:c9:5b:
75:c1:7b:a6:42:33:4e:ac:6a:3a:19:75:ac:ff:db:d1:26:58:
26:ae:b1:d7:15:31:ec:d2:ab:88:de:5d:aa:88:da:34:10:63:
46:12:ae:b7:b1:25:a2:54:73:31:8e:64:9c:74:dd:9e:09:c6:
12:17:d0:6c:12:b0:3b:53:b3:22:ac:26:ce:6d:5d:10:5c:f2:
08:1a:cd:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mllJ2MYmzVwZqGPXxMgdPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzA1Zjk3YTI2ZjMxZDgwMDYwNTlmYjNhYjE5ZWFjZmI3
ODM0NTUwHhcNMjYwMzI1MjAwMTE4WhcNMjYwMzI2MjAwMTE4WjAzMTEwLwYDVQQD
EyhhZjA2NWM0NjhiZDE0ZDE0NTgzODE0MzA5YTc1ZGJmNzc1ZDExZTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7sTUwGPalh8wtdIJqkeO2CoBbrX
Gpe1Gshmwjl8XXMpnCiwbbCq+Vsmu2mnTe1+YI1VqZpLYwH/IIhWku3ZU/1u3tVb
Dp5XT1wtRtCrjyWKoTmQuLzH8llVBuyMrN8XAXokjHRs2PgUzNZuTuFr+tQ63djI
gPKf1OQdArJOWNpWxIcSwvh+z1gjfGkFycgyxU/Ly2XoLXFzzZteRr5dSLXWQlvq
IwcniMp09FxGZSjZ2J+sFHwHpMUeLOkg8noycvg1T+HKkn3k/m0/qWuNTXfQ4V/+
YBSvjTPN8N8MM2kEt9m7ykgsRUjyYoMb6apA0CkBy7leUZg7pyBhRXSIbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK8GXEaL0U0UWDgUMJp12/d10R6CMB8GA1UdIwQY
MBaAFDswX5eibzHYAGBZ+zqxnqz7eDRVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODkt
NThiOWIwYzI0NDBiLzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODktNThiOWIwYzI0NDBi
LzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANGPFL2Rs
qLfGaYulYv6uoYJXI+BU3bbSqhDFDjyYhVFiAX5380bl4n6K6+j3oo4+KhmHGEcz
4MTNvGn3aroez0/ti3PkNB0FPU5IZ4eRhdUD6tvAy+cCWNActmygHFMAJKcY17d7
ubUXmiqBIku7SF38ss/GaQQI810YZGqBqWDD+Q3A28XhR+EKgXiRVJcP2kuW0h5O
iqLX9A8/bl7ZD3I/sf/A3i5K03TsPGvieDUP/slbdcF7pkIzTqxqOhl1rP/b0SZY
Jq6x1xUx7NKriN5dqojaNBBjRhKut7ElolRzMY5knHTdngnGEhfQbBKwO1OzIqwm
zm1dEFzyCBrNDQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:42:38 2026 by rpki-client