Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
File: OZ17KbLru-43WSMgfh2FZU8LV7o.mft (raw, json)
Hash identifier: TDSe7xV/gJv+IbWD0/0RDpihfdTQeRXFppN+wGo/8Es=
Subject key identifier: CF:8E:E6:A2:19:4A:BD:92:54:A8:19:58:62:10:D2:91:46:0B:26:FB
Authority key identifier: 39:9D:7B:29:B2:EB:BB:EE:37:59:23:20:7E:1D:85:65:4F:0B:57:BA
Certificate issuer: /CN=399d7b29b2ebbbee375923207e1d85654f0b57ba
Certificate serial: 019CAC1057025527583DA4BA51B506957DC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
Manifest number: 0490
Signing time: Mon 02 Mar 2026 01:01:17 +0000
Manifest this update: Mon 02 Mar 2026 01:01:17 +0000
Manifest next update: Tue 03 Mar 2026 01:01:17 +0000
Files and hashes: 1: OZ17KbLru-43WSMgfh2FZU8LV7o.crl (hash: UvQOEz+ghLG1mHgjCyl29akCOAuKZetKfTr2pH+X8kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:57:02:55:27:58:3d:a4:ba:51:b5:06:95:7d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399d7b29b2ebbbee375923207e1d85654f0b57ba
Validity
Not Before: Mar 2 01:01:17 2026 GMT
Not After : Mar 3 01:01:17 2026 GMT
Subject: CN=cf8ee6a2194abd9254a819586210d291460b26fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:4c:df:c4:13:f7:67:fd:3c:f4:0f:24:79:
ed:e4:d6:a1:85:3e:ba:d6:25:a7:9e:45:43:95:15:
95:75:a0:2b:c3:86:58:ad:52:29:4d:42:60:17:ff:
3d:92:a5:c0:e3:b6:fa:c2:be:ba:40:57:09:16:6c:
d7:1d:a8:c4:09:0d:c7:9b:ea:6b:c8:cf:eb:ad:7a:
61:78:12:d8:61:8a:88:61:1e:52:b6:f3:7d:0e:f6:
b7:26:f2:73:ef:13:fc:c3:0a:e5:cb:1a:bf:d7:96:
f8:bb:d8:23:08:39:0f:f0:9f:a6:dc:c8:9a:da:8e:
75:f5:b8:1a:0a:e4:a0:5b:91:d2:b7:cf:d2:62:9e:
6a:34:38:c4:72:bc:20:18:f0:ae:c1:99:ac:40:f1:
87:76:de:6e:11:5e:8b:9c:1c:d2:de:ed:26:10:c9:
f7:a8:89:aa:f8:3a:66:5e:b9:81:ac:5e:1e:20:85:
1e:99:1a:0c:34:52:ff:18:2b:a0:18:0d:34:66:2b:
c6:b6:2d:0a:e0:1a:ed:21:82:cb:b2:bf:5f:5c:c3:
e6:4b:90:aa:e4:4a:86:5c:76:0b:60:6f:4d:4b:d8:
4e:ae:76:76:a8:64:e0:47:4e:77:d5:b7:83:33:d2:
a2:43:13:da:d7:87:c3:13:e3:70:76:71:61:e9:33:
cc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8E:E6:A2:19:4A:BD:92:54:A8:19:58:62:10:D2:91:46:0B:26:FB
X509v3 Authority Key Identifier:
keyid:39:9D:7B:29:B2:EB:BB:EE:37:59:23:20:7E:1D:85:65:4F:0B:57:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ff:b1:b0:04:8c:3a:98:30:c0:ba:8a:eb:dc:d0:03:da:3b:
2d:07:8e:0f:77:eb:04:54:e4:f3:fb:f3:92:72:d7:2a:90:8a:
ac:3f:b4:f7:7a:43:df:31:0f:ee:85:9d:3a:bc:fe:58:e0:cb:
48:15:ad:ab:4c:b3:9d:0e:33:30:97:89:d6:53:fb:10:ff:43:
21:2a:76:e4:01:e9:87:e3:da:8d:66:47:0d:9f:e9:2e:8a:f1:
ec:b0:15:62:c8:32:27:f5:58:93:bc:78:bf:95:46:11:51:76:
28:54:ab:77:64:74:7a:ea:7a:bc:31:03:7c:ac:7d:05:37:b8:
92:93:da:a2:3c:bc:6a:2b:54:39:41:22:52:b0:55:f3:76:c2:
39:c0:4b:09:8a:f5:c4:e9:91:6c:ed:d4:76:ab:ea:82:aa:98:
98:dc:46:9f:8f:ec:57:53:c8:61:19:96:f2:68:21:98:d8:99:
31:c6:a8:c0:8c:ae:3b:d6:9e:3a:73:2b:e4:7c:37:29:46:5a:
82:14:5c:e6:7a:73:db:76:42:a3:23:e1:9b:0b:17:24:b7:ad:
19:6b:f9:8e:fd:03:7d:f0:bf:fc:b4:05:e1:2e:88:22:4e:63:
fb:84:ea:65:e7:51:c2:99:27:ed:95:62:5d:3a:16:aa:1e:ee:
83:2e:62:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:54 2026 by rpki-client