Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: G2n6o7bqs1gx03Ig/SsqIASgHn5BKdJCUaYV38vjLHU=
Subject key identifier: 93:CB:3B:57:EC:2A:63:DE:1F:B4:7A:AE:65:1D:F9:B4:B1:77:2E:FE
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 019D288461220D06CD4051535E2C8EBA4574
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 17DF
Signing time: Thu 26 Mar 2026 05:00:57 +0000
Manifest this update: Thu 26 Mar 2026 05:00:57 +0000
Manifest next update: Fri 27 Mar 2026 05:00:57 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: RTDB4FktEwcSM5VHqYlEg5h8Nt7MxkZM1QAUIYoS/kA=)
2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:61:22:0d:06:cd:40:51:53:5e:2c:8e:ba:45:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Mar 26 05:00:57 2026 GMT
Not After : Mar 27 05:00:57 2026 GMT
Subject: CN=93cb3b57ec2a63de1fb47aae651df9b4b1772efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:30:25:b4:5f:0b:be:4e:0b:0c:df:e7:91:
fb:be:ba:5b:a6:f8:48:10:93:fa:e7:1b:03:a5:c1:
50:e2:c2:79:0e:5f:6f:19:fa:c4:9b:bf:37:7b:77:
fa:74:1d:c7:d2:1f:4c:24:9b:a5:83:fa:47:d4:72:
62:9f:dd:5c:1c:b6:9c:02:ad:fe:20:18:24:17:c8:
d7:cd:ac:d6:51:8a:9c:88:b1:ed:ae:62:6e:f7:b6:
6a:59:7f:43:6a:eb:6e:e2:80:15:fe:9a:d6:aa:09:
43:2d:0c:94:17:2d:ee:cd:3a:1f:77:5d:48:9a:6d:
e8:8a:e4:6c:1f:af:bd:ed:e0:2b:3c:d1:b2:ae:db:
b2:dc:45:60:37:55:0f:31:e2:d1:b0:f5:d7:37:c6:
43:a3:70:52:64:cb:14:69:05:b4:85:74:cd:e3:61:
bf:1b:d3:c7:1f:24:67:d9:29:fc:e3:a8:38:cb:0d:
a4:3b:6c:69:4e:86:eb:8f:44:66:9a:43:32:eb:66:
6d:e7:b2:29:ea:20:e8:e0:a3:e5:ef:d3:f8:6b:0d:
6c:86:14:28:04:b7:41:ca:06:67:3f:c1:8d:97:3c:
81:70:2a:6f:70:2b:3a:4d:20:16:47:94:c5:6f:94:
47:2d:f6:07:0f:16:4b:a8:90:83:d4:c9:43:69:1a:
66:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CB:3B:57:EC:2A:63:DE:1F:B4:7A:AE:65:1D:F9:B4:B1:77:2E:FE
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:09:d6:73:ca:1c:91:26:78:6d:94:ec:ec:ec:a5:a9:ff:38:
76:ca:8d:37:b8:20:d1:12:a7:3a:5e:ab:84:ec:da:a1:be:b3:
15:e3:0f:95:d4:0a:e0:90:8c:8f:9b:34:05:07:96:67:9b:11:
8f:02:0a:19:71:4b:da:87:0d:a6:23:ea:02:11:88:53:c3:b8:
9d:59:ca:25:30:a4:52:7f:8f:75:95:be:87:81:01:b6:8d:b5:
c3:01:0a:99:74:d7:8e:a1:74:f1:1b:30:ea:5e:7f:a3:3d:1b:
55:af:ca:a1:f5:56:de:85:bc:f8:00:a8:ee:49:67:17:e1:5a:
8c:d0:ba:18:5a:45:67:0e:22:a2:26:5a:2f:83:fe:49:90:30:
5f:67:15:ca:05:07:36:46:b9:9e:e2:ef:0c:5d:45:5b:03:6c:
cc:36:2e:ee:6c:f6:7c:88:b3:6d:c6:08:11:e9:7a:65:b4:e4:
52:e7:ce:b1:39:dd:59:20:d1:b5:47:2a:2b:bc:81:6b:3a:c4:
d9:55:39:f3:8c:f0:c6:c1:11:8f:71:90:67:f6:2c:5f:a9:8d:
d2:1f:3c:c7:cc:31:0e:bd:4f:3d:bb:e9:e2:e9:3b:7c:3d:52:
ea:3d:58:fc:ea:a0:dd:67:9a:91:31:d1:e9:ec:de:c3:46:d6:
4f:8d:80:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:59 2026 by rpki-client