Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: 5nqVw4USChXxZl0n/Ji/jcptgA9N+f8bCDjtxiFiJ/M=
Subject key identifier: B3:1B:0F:E2:8D:7D:FA:AD:F3:6A:E1:A2:EC:1E:24:68:50:5C:D4:36
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 019E1BD8E4CF4C60706B696B0318844A5BD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 185D
Signing time: Tue 12 May 2026 11:00:59 +0000
Manifest this update: Tue 12 May 2026 11:00:59 +0000
Manifest next update: Wed 13 May 2026 11:00:59 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: VEG1KMu+54Pj8psjyWtt+gXOZ1zrkrOQhqFTXa5jLis=)
2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d8:e4:cf:4c:60:70:6b:69:6b:03:18:84:4a:5b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: May 12 11:00:59 2026 GMT
Not After : May 13 11:00:59 2026 GMT
Subject: CN=b31b0fe28d7dfaadf36ae1a2ec1e2468505cd436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f1:c1:fb:5f:a6:f3:da:9b:7e:ae:c7:8a:c9:
a9:e3:d1:54:49:22:08:45:40:fc:24:59:f7:f8:bc:
87:82:f2:f9:42:0c:51:2b:70:0a:e3:c1:32:50:d0:
12:9a:56:82:45:c2:80:ab:54:2c:6a:44:ea:4e:99:
1a:ba:f5:8f:28:38:dc:b2:4c:12:d1:d9:fa:40:12:
f5:a0:79:87:10:3b:dc:20:d1:ed:b7:4a:a6:a5:a2:
3b:02:31:9c:97:f0:f1:31:1e:be:fc:a4:87:1a:39:
23:d0:40:ef:53:e5:54:ed:6b:8d:26:4e:da:7d:24:
9f:0a:ec:24:b7:81:fb:b9:27:72:6a:14:a2:2a:18:
f5:e9:9b:42:b4:bf:e5:2b:d3:f5:cf:98:01:7f:40:
ed:26:50:02:ba:30:92:a0:0a:fe:90:04:c2:4e:62:
b5:18:40:39:8c:45:2b:4f:11:c9:66:d1:a4:55:ed:
93:07:26:38:fb:a1:4e:d7:7c:89:cc:3a:9e:0c:63:
97:d5:04:65:1f:f6:a5:17:de:06:e7:0a:d4:d5:c6:
0e:1a:38:f7:90:f0:2e:af:3f:9c:d9:48:42:7d:99:
c4:78:72:13:da:ca:1c:84:d7:1b:38:33:f6:4b:97:
9a:5b:af:10:df:e8:7d:e0:45:85:1b:e5:c1:54:aa:
c4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1B:0F:E2:8D:7D:FA:AD:F3:6A:E1:A2:EC:1E:24:68:50:5C:D4:36
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:b0:d1:77:2f:7e:32:36:eb:c6:cf:5e:0a:a9:58:f4:19:3d:
66:85:b6:f1:4e:b9:a9:ed:53:ae:73:a6:a5:35:0a:9f:c4:c4:
b6:c9:b3:6e:a0:e1:66:b9:18:81:d7:fd:49:fd:2b:34:f4:36:
b8:a4:98:66:ca:36:ce:ba:b7:f4:40:2f:80:60:2d:54:64:ec:
90:6a:cb:06:c5:ce:45:8b:b1:10:48:1a:0b:b0:1b:71:c5:fa:
dc:0e:18:1e:f1:74:6e:70:26:c6:d9:fd:0f:65:6e:84:bb:3a:
ec:cd:06:24:75:35:7a:ac:5f:0e:8f:32:1d:af:f8:e3:5f:73:
43:f4:7a:dc:ae:b5:c3:62:88:17:b4:87:0f:21:be:2c:3c:f9:
53:d3:42:f4:98:01:94:a3:a5:77:77:8c:96:e1:07:1c:0c:0c:
5c:f7:4c:4e:86:e7:c5:bb:e0:8c:6b:4e:22:80:86:92:0f:d8:
b6:41:99:4e:5a:d4:58:b5:be:6d:4c:18:27:5d:fb:cc:ed:b0:
e7:fb:71:f1:be:8d:45:10:ed:44:e9:28:2b:92:f5:44:3e:3e:
17:60:29:ff:17:43:48:a4:cc:8e:7e:6b:cb:de:e8:0a:28:fc:
d1:5d:4f:89:3b:db:34:ae:cc:39:3d:d6:1c:d2:30:d6:52:47:
d5:5b:b3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:43:50 2026 by rpki-client