Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: euLLTb0G+T+GkuDoou6JtDUj7w8Oc/03nw4x9nckJrI=
Subject key identifier: 38:6A:51:4B:D5:09:AE:7C:C3:3E:89:23:15:1B:2D:B6:6C:ED:42:D2
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 019D29CECA7E9986B5B97F22A4BA9938AA9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 04FE
Signing time: Thu 26 Mar 2026 11:01:51 +0000
Manifest this update: Thu 26 Mar 2026 11:01:51 +0000
Manifest next update: Fri 27 Mar 2026 11:01:51 +0000
Files and hashes: 1: Rr66ufKb1MLh9Wv3Z89vKrKFJI0.roa (hash: Yiy6bWp1Un5UwdmVbAZxKqnd38OQfcX3Y4LJySknw8Y=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: MQ4Q0nZusndKbHR78Xw8sJqBvTRFA9oN9R4UjlpoLeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:ca:7e:99:86:b5:b9:7f:22:a4:ba:99:38:aa:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Mar 26 11:01:51 2026 GMT
Not After : Mar 27 11:01:51 2026 GMT
Subject: CN=386a514bd509ae7cc33e8923151b2db66ced42d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9c:e0:8c:15:58:83:01:e8:02:71:fe:5d:ef:
1f:38:1d:1e:cc:b9:d2:ca:a5:17:fa:2f:63:ea:a5:
e9:a0:9c:9d:b5:69:6b:fe:96:e7:f8:98:ca:8f:a5:
e3:e0:ca:0a:c5:cc:5f:9a:fd:fd:46:cc:f8:a7:4f:
64:83:b0:0f:f5:07:13:4b:b2:51:08:43:01:29:96:
56:75:e6:10:69:ac:8e:61:bc:5d:30:f3:7f:1c:40:
51:b2:28:03:a7:dc:19:9c:01:35:06:de:ca:34:92:
ac:30:95:61:ef:87:7d:ad:29:58:76:ce:c9:1f:58:
b4:cd:c2:b4:f1:40:f1:f9:45:79:b1:67:c8:9b:aa:
a6:a8:20:6f:68:3e:c4:85:64:15:e9:14:33:b5:a8:
da:71:45:63:7d:a4:62:99:6b:91:d6:6f:e1:7e:04:
57:11:91:b6:85:86:55:10:a4:84:35:01:83:41:5c:
13:5c:09:89:02:00:c6:95:46:e4:ca:52:9e:b2:d7:
1e:5b:91:be:ca:16:75:cc:61:25:c0:32:08:a1:85:
df:f2:ef:9a:6d:c3:95:88:39:14:67:a3:a3:82:c9:
14:cd:9e:ac:da:58:e2:cf:98:66:b6:8b:86:e1:74:
12:30:2c:33:80:cd:e3:6f:e0:19:bc:e4:4c:1e:7a:
f4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6A:51:4B:D5:09:AE:7C:C3:3E:89:23:15:1B:2D:B6:6C:ED:42:D2
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ce:b2:ff:b1:f7:cb:d6:48:23:78:26:83:3a:97:a9:89:c5:
75:55:6f:43:bc:21:4e:41:01:6f:95:c7:8f:19:1e:fa:48:18:
77:9a:80:ee:02:39:90:4c:d4:f9:32:e4:b8:a9:c6:d6:b2:95:
22:98:b6:04:7c:f5:10:95:16:67:6d:a8:88:20:1d:e8:32:da:
3e:f2:d9:86:b1:bc:40:d9:0f:2c:ea:44:12:73:59:17:29:89:
3c:f5:5b:ea:8e:2d:4f:23:11:d5:fb:cf:1a:13:b9:ae:63:e5:
3d:72:ec:1d:d6:40:52:c4:f2:5f:b1:a2:10:ab:83:d3:f1:ff:
d0:3a:9e:da:58:07:69:44:46:38:d4:75:f4:9e:3b:f8:10:17:
7b:f3:d8:d8:4d:7c:7a:a7:06:c9:b8:e7:81:ac:11:d7:96:cf:
ec:94:e1:16:0e:47:b5:7d:e4:81:c6:c9:46:f6:62:90:4b:ab:
28:b7:2c:60:9f:9f:f4:d5:4d:1a:87:83:03:b8:05:bb:86:2a:
02:f4:0a:8f:94:3b:24:27:04:a6:52:01:94:5c:c4:13:07:5b:
fe:6c:ff:e1:a6:67:7e:b5:ec:47:5c:6a:e2:58:db:f0:65:6e:
53:26:9a:72:44:ae:7d:83:f1:cd:9c:a9:c5:6f:00:45:f1:10:
34:63:fa:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:31:32 2026 by rpki-client