Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
File: OpzyvclyZDBARldYsyWap8kubhw.mft (raw, json)
Hash identifier: hsQ0FxQs/wPJK7hS6RtKgkU0WNRbQVfLzi3IC7PA5qY=
Subject key identifier: 17:AC:67:38:0F:D3:9B:98:BE:CE:B1:A4:E7:73:D3:7B:29:29:31:90
Authority key identifier: 3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
Certificate issuer: /CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Certificate serial: 019D2772747BDDCCB8DBBDF7916DF690DAB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
Manifest number: 1881
Signing time: Thu 26 Mar 2026 00:01:45 +0000
Manifest this update: Thu 26 Mar 2026 00:01:45 +0000
Manifest next update: Fri 27 Mar 2026 00:01:45 +0000
Files and hashes: 1: OpzyvclyZDBARldYsyWap8kubhw.crl (hash: a0MhTksdkJcSB8xER4dzGqCR6N7GWxP0gkvyoEWqY/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:74:7b:dd:cc:b8:db:bd:f7:91:6d:f6:90:da:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Validity
Not Before: Mar 26 00:01:45 2026 GMT
Not After : Mar 27 00:01:45 2026 GMT
Subject: CN=17ac67380fd39b98beceb1a4e773d37b29293190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:14:a9:3f:50:34:83:39:b3:96:d5:1f:8a:7a:
0d:c3:a4:57:a9:79:73:9e:6a:00:12:38:9b:a0:e2:
00:30:ed:8f:45:34:e9:83:0a:d3:e1:22:96:d0:dc:
09:8a:58:66:83:79:f3:5e:2b:ce:c9:f6:b0:e8:6d:
52:ea:77:94:e8:15:ab:ab:f9:8e:1c:35:c7:79:cd:
61:dc:99:43:06:ea:99:7f:6a:bc:de:84:58:bc:11:
85:e5:27:d7:a6:a9:48:95:f6:ad:88:20:84:1b:19:
58:60:b2:bc:1c:f4:bc:d8:94:6c:ca:71:2a:a3:03:
47:7e:93:b1:a2:ce:1c:58:71:cc:65:8c:58:d9:15:
de:24:27:54:08:32:15:10:b4:eb:95:a1:60:40:b6:
6a:41:b7:01:fd:96:34:4f:aa:bb:5e:ba:b4:7b:fe:
6a:54:1f:66:18:b6:aa:ec:0e:75:3d:ac:f7:bf:89:
ca:76:a2:b0:37:09:67:d4:4e:02:72:f6:d3:f2:90:
17:6b:07:ef:5a:02:01:17:2b:bc:63:4a:9c:30:1e:
51:f2:54:bc:c4:f2:2a:4a:7a:b3:4c:72:d6:87:63:
af:bd:32:30:7d:84:da:c5:d7:03:1b:88:e6:55:82:
cc:ea:b5:51:87:0d:89:26:aa:50:ff:b4:c4:9d:31:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AC:67:38:0F:D3:9B:98:BE:CE:B1:A4:E7:73:D3:7B:29:29:31:90
X509v3 Authority Key Identifier:
keyid:3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:7b:bf:a4:1b:90:af:22:91:f1:f6:68:3f:eb:99:e1:70:b3:
22:be:2e:38:ac:3b:01:86:ee:34:93:70:05:70:d0:4b:69:b8:
4b:f1:91:58:3a:1d:bd:47:74:cb:4d:04:84:54:b9:34:23:30:
25:4f:8c:8e:d4:ad:6c:46:5a:b1:95:8e:41:5f:eb:07:3d:df:
90:0a:ac:9d:39:98:a9:90:90:91:37:3c:f1:62:bf:0e:1c:9c:
b0:52:6d:36:7d:42:82:3c:61:02:1d:52:01:ac:43:df:2d:23:
a6:3e:60:bf:26:bd:ff:02:0c:52:80:4b:e8:a2:d2:8c:9b:29:
7e:eb:99:20:58:7c:9f:9e:53:b6:bd:f2:a5:56:e5:69:7a:98:
38:1d:bd:d9:e7:e2:32:7a:f8:18:f1:33:31:6b:63:2a:94:de:
11:f5:a0:ba:88:da:ac:36:43:f1:52:34:bb:2a:63:eb:dc:24:
6a:f0:ef:b4:0a:22:74:20:10:e2:07:02:21:e2:25:60:c4:f1:
64:8f:b5:06:7f:1a:06:7b:77:9c:4c:1a:01:00:bf:1e:90:25:
96:69:d1:a4:ea:3d:47:68:05:21:fa:51:b4:53:32:69:c6:3a:
9e:3a:c1:fd:cb:19:1d:2f:d4:40:c0:f4:68:84:05:7b:ef:cf:
07:c5:66:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncnR73cy42733kW32kNqyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOWNmMmJkYzk3MjY0MzA0MDQ2NTc1OGIzMjU5YWE3Yzky
ZTZlMWMwHhcNMjYwMzI2MDAwMTQ1WhcNMjYwMzI3MDAwMTQ1WjAzMTEwLwYDVQQD
EygxN2FjNjczODBmZDM5Yjk4YmVjZWIxYTRlNzczZDM3YjI5MjkzMTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphSpP1A0gzmzltUfinoNw6RXqXlz
nmoAEjiboOIAMO2PRTTpgwrT4SKW0NwJilhmg3nzXivOyfaw6G1S6neU6BWrq/mO
HDXHec1h3JlDBuqZf2q83oRYvBGF5SfXpqlIlfatiCCEGxlYYLK8HPS82JRsynEq
owNHfpOxos4cWHHMZYxY2RXeJCdUCDIVELTrlaFgQLZqQbcB/ZY0T6q7Xrq0e/5q
VB9mGLaq7A51Paz3v4nKdqKwNwln1E4CcvbT8pAXawfvWgIBFyu8Y0qcMB5R8lS8
xPIqSnqzTHLWh2OvvTIwfYTaxdcDG4jmVYLM6rVRhw2JJqpQ/7TEnTGlWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBesZzgP05uYvs6xpOdz03spKTGQMB8GA1UdIwQY
MBaAFDqc8r3JcmQwQEZXWLMlmqfJLm4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3B6eXZjbHlaREJBUmxkWXN5V2FwOGt1Ymh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83MWM1NzktNTA4MC00MWZlLTg2NTMt
MDI0ZjdjNTBmNDI4LzEvT3B6eXZjbHlaREJBUmxkWXN5V2FwOGt1Ymh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83MWM1NzktNTA4MC00MWZlLTg2NTMtMDI0ZjdjNTBmNDI4
LzEvT3B6eXZjbHlaREJBUmxkWXN5V2FwOGt1Ymh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEHu/pBuQ
ryKR8fZoP+uZ4XCzIr4uOKw7AYbuNJNwBXDQS2m4S/GRWDodvUd0y00EhFS5NCMw
JU+MjtStbEZasZWOQV/rBz3fkAqsnTmYqZCQkTc88WK/DhycsFJtNn1CgjxhAh1S
AaxD3y0jpj5gvya9/wIMUoBL6KLSjJspfuuZIFh8n55Ttr3ypVblaXqYOB292efi
Mnr4GPEzMWtjKpTeEfWguojarDZD8VI0uypj69wkavDvtAoidCAQ4gcCIeIlYMTx
ZI+1Bn8aBnt3nEwaAQC/HpAllmnRpOo9R2gFIfpRtFMyacY6njrB/csZHS/UQMD0
aIQFe+/PB8VmZg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:27 2026 by rpki-client