Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: RjbsIz2mwqDjJjoa05l4HlVpeUDQiuSdjjq2rMuwRaE=
Subject key identifier: 3D:72:F6:43:D7:4D:9F:79:72:89:32:0E:F5:C7:C5:27:3D:99:12:D7
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 019E1E356FDD4714ED4EC15F9EAF1CB5B9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 08E7
Signing time: Tue 12 May 2026 22:01:18 +0000
Manifest this update: Tue 12 May 2026 22:01:18 +0000
Manifest next update: Wed 13 May 2026 22:01:18 +0000
Files and hashes: 1: 8StX0WxvVxL5fDtFqnpRuPragb8.roa (hash: KTc11CLRkDoDh2bPnpdqQKRTLCJiEbLK9vVpkNsL14o=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: 07XF/rUmU3mj+t3g81FRtAnd94cqGxCjSAtmZ/MyGJg=)
3: bb_iJ1U1Lf6VC6Ovl038VnEkd0c.roa (hash: x4RJFA42s0Y6MhAsHNXRTYoSOIZLJ8yZ/qGJdWD8hcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:6f:dd:47:14:ed:4e:c1:5f:9e:af:1c:b5:b9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: May 12 22:01:18 2026 GMT
Not After : May 13 22:01:18 2026 GMT
Subject: CN=3d72f643d74d9f797289320ef5c7c5273d9912d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:37:ed:86:c2:0c:c9:95:ba:8b:7b:68:88:bc:
df:85:20:58:b7:94:91:18:6a:06:59:e2:d2:64:cd:
f8:c6:e3:5c:bb:36:6c:2b:59:7e:d5:10:a0:51:41:
5a:96:9f:3c:3f:f8:1b:35:cf:bc:d7:ba:17:fd:dc:
8c:aa:1c:3c:2e:9a:2a:bc:ae:ca:81:a8:11:97:1a:
57:5b:5e:a0:fa:99:fe:88:52:53:a7:32:34:29:12:
d2:3d:ee:70:34:92:a5:71:ba:20:e7:47:82:b5:f0:
70:3e:59:c6:be:c3:8a:e0:b5:e5:0c:3a:6a:31:b5:
a1:ff:00:5b:01:cb:11:87:5d:f8:3f:e4:e4:d9:c5:
05:7c:f9:6f:20:3f:e3:1d:ab:f6:72:e6:b7:7d:52:
c9:df:f0:f9:d4:7c:7c:28:82:90:72:a9:e0:11:56:
0f:c2:c2:96:43:d7:9f:79:36:0a:b4:88:8a:44:e4:
94:d4:52:67:f0:d2:f4:06:37:c4:72:68:0b:cc:96:
5a:3a:47:a0:19:b3:96:a3:9b:22:5b:d4:e1:20:e7:
a8:88:83:70:d0:28:ec:c9:69:21:b0:18:57:5f:b6:
67:4b:78:1f:e1:bc:05:28:4e:04:28:ae:e6:9b:c7:
85:39:23:de:f8:f3:73:f6:d1:cb:9d:f5:f9:e5:aa:
40:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:72:F6:43:D7:4D:9F:79:72:89:32:0E:F5:C7:C5:27:3D:99:12:D7
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:5a:3c:28:9d:4a:6d:f7:0b:ac:ff:cc:83:38:e1:19:1e:33:
13:7e:33:ec:24:db:99:a8:54:89:79:b7:e9:66:e0:0d:7e:e8:
fa:01:ec:e2:87:9a:45:cb:6b:03:4a:fb:37:6a:9e:6f:81:2f:
f6:cf:f7:df:46:f5:3b:1f:66:d7:ca:29:94:03:46:7f:86:dc:
fb:80:ba:90:8d:e5:73:0a:da:8b:63:fb:02:ed:71:e5:5f:c2:
07:3c:ce:66:a9:9a:38:35:93:50:92:28:97:41:5e:81:6b:83:
6a:6a:5e:e4:a6:7e:7b:b0:b2:55:6b:32:35:60:29:e4:0b:07:
5e:65:c5:f7:0c:9c:f1:1e:06:c9:42:eb:3a:00:85:0d:da:40:
d8:d9:fe:10:7f:29:ed:a5:72:30:bf:16:6f:ac:ee:2e:a2:ae:
68:ff:f4:a7:da:5b:45:86:da:f4:3a:2a:14:38:4c:85:58:1d:
3a:e7:1e:71:70:c7:a2:4c:17:1a:97:49:ee:22:fb:ec:2f:81:
f5:ff:7f:b4:70:17:2c:21:44:45:ee:b5:48:9a:dd:2c:c2:c2:
05:ba:6c:30:58:27:cd:02:14:2f:78:c0:8c:a2:a9:70:7a:5d:
9b:e9:fb:cb:38:bc:68:60:d5:b7:13:7b:73:85:a3:10:64:8f:
ad:90:3d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:11:56 2026 by rpki-client