Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json)
Hash identifier: juT7kuiUmdg7wY5QFXziHZdp3sIOw6+Xz/1Ez79nxhU=
Subject key identifier: 20:60:BD:67:27:76:B5:31:40:84:01:7C:AD:18:24:4A:30:E8:83:3D
Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Certificate serial: 019CACB4BA021BABDBBBE8ADC4A045C77FC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 04:00:50 +0000
Manifest this update: Mon 02 Mar 2026 04:00:50 +0000
Manifest next update: Tue 03 Mar 2026 04:00:50 +0000
Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: J076+ROWREFdbQ1DCVBd9j/CbxrzrzD3cj5NwgW5CPQ=)
2: cpS1wHSQ6aTdnwNWUDjBZlgAC7Y.roa (hash: XiHOtWW1/pqGi1+Lnl6yq25m5xXc7tXDYaQje+WHC+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:ba:02:1b:ab:db:bb:e8:ad:c4:a0:45:c7:7f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Validity
Not Before: Mar 2 04:00:50 2026 GMT
Not After : Mar 3 04:00:50 2026 GMT
Subject: CN=2060bd672776b5314084017cad18244a30e8833d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:1c:7b:85:32:d4:63:6e:72:b4:02:2a:3f:
c2:05:fb:d9:88:6b:64:c8:94:56:4c:a9:65:0c:4f:
1c:e1:de:6e:b9:5f:36:68:c1:3f:3e:a6:0c:9c:df:
8b:d1:f3:cc:7a:ae:fa:90:bd:ca:29:8e:0f:54:18:
b6:97:df:9b:73:68:65:23:c3:c4:ad:22:b5:d4:c1:
20:88:f3:65:5c:b4:43:b7:91:9d:6e:8a:27:68:79:
fd:f3:51:b3:16:34:fa:7c:03:1a:6c:dd:f2:17:e9:
4e:4f:91:f7:99:ed:d2:bd:6a:18:e2:29:43:77:e5:
87:14:9a:3a:db:a6:08:b4:e7:80:f8:33:27:4f:2c:
42:96:16:e5:d4:ec:f4:3d:91:b2:54:4a:05:7e:69:
b8:aa:1b:ba:cb:82:a1:7c:1d:59:7f:90:17:7f:63:
54:0c:59:63:aa:4e:c8:18:75:6f:e0:8b:fd:64:45:
c5:cc:eb:98:cb:6b:77:c1:c1:c7:77:8d:8d:43:c3:
65:c1:9a:6b:ec:0e:bb:59:ae:49:50:31:85:8f:23:
53:dd:f4:26:d2:bb:08:e2:75:3c:d4:24:69:5f:23:
fc:b0:47:32:80:c7:ae:f7:ad:54:9c:1b:63:cc:17:
d1:6b:e6:1b:34:3c:79:1e:1e:b3:f7:66:07:7d:22:
3d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:60:BD:67:27:76:B5:31:40:84:01:7C:AD:18:24:4A:30:E8:83:3D
X509v3 Authority Key Identifier:
keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:40:fd:90:84:49:5f:e0:27:fc:56:a3:35:9d:69:8f:a6:d4:
c5:06:01:8c:ea:69:8e:b3:77:fc:ef:56:cf:b0:f3:36:04:b3:
98:a2:22:a3:4c:80:be:61:ea:dd:16:6b:d9:37:d2:cb:b4:6f:
1c:dc:9c:a7:19:90:d3:98:dc:ee:38:35:9a:b9:f3:7b:48:c8:
e2:e9:d4:df:ff:6b:88:d8:47:38:07:07:0d:6b:4a:df:b2:df:
1d:bc:25:0e:c5:e2:bc:c8:0e:38:89:31:86:dc:b4:4d:b4:c1:
57:ef:ec:a0:dc:32:2b:ae:b4:82:3f:32:b1:64:e3:8a:21:71:
36:d1:23:e2:54:17:ea:86:16:38:60:be:e8:06:4f:16:c0:b8:
36:11:25:b4:a2:c7:d4:30:ca:c4:35:7a:a1:49:3b:09:f0:93:
b9:5c:73:27:70:f8:4b:8c:ee:b0:63:8e:5b:eb:75:f9:28:42:
ce:38:f2:13:09:ef:37:e5:0e:82:02:83:ca:77:63:4e:d6:e2:
67:8e:a3:08:66:b4:46:9c:72:a5:50:75:11:17:cc:ad:94:29:
ad:ce:e7:d5:10:00:da:5b:c9:84:c9:b3:b7:3d:34:d3:63:3f:
d4:a6:d5:88:16:12:82:a0:b8:4b:3d:17:c6:84:56:26:d7:06:
37:d7:3c:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystLoCG6vbu+itxKBFx3/IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzc2NzI1MjAwZDhkOGMwMGNmMGY3NTE0YWYyNWZmMzYy
MzEwZjAwHhcNMjYwMzAyMDQwMDUwWhcNMjYwMzAzMDQwMDUwWjAzMTEwLwYDVQQD
EygyMDYwYmQ2NzI3NzZiNTMxNDA4NDAxN2NhZDE4MjQ0YTMwZTg4MzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4Ece4Uy1GNucrQCKj/CBfvZiGtk
yJRWTKllDE8c4d5uuV82aME/PqYMnN+L0fPMeq76kL3KKY4PVBi2l9+bc2hlI8PE
rSK11MEgiPNlXLRDt5GdboonaHn981GzFjT6fAMabN3yF+lOT5H3me3SvWoY4ilD
d+WHFJo626YItOeA+DMnTyxClhbl1Oz0PZGyVEoFfmm4qhu6y4KhfB1Zf5AXf2NU
DFljqk7IGHVv4Iv9ZEXFzOuYy2t3wcHHd42NQ8NlwZpr7A67Wa5JUDGFjyNT3fQm
0rsI4nU81CRpXyP8sEcygMeu961UnBtjzBfRa+YbNDx5Hh6z92YHfSI9nwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBgvWcndrUxQIQBfK0YJEow6IM9MB8GA1UdIwQY
MBaAFDs3ZyUgDY2MAM8PdRSvJf82IxDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTkt
MjkyMDk4ZGEyZTM5LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTktMjkyMDk4ZGEyZTM5
LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlUD9kIRJ
X+An/FajNZ1pj6bUxQYBjOppjrN3/O9Wz7DzNgSzmKIio0yAvmHq3RZr2TfSy7Rv
HNycpxmQ05jc7jg1mrnze0jI4unU3/9riNhHOAcHDWtK37LfHbwlDsXivMgOOIkx
hty0TbTBV+/soNwyK660gj8ysWTjiiFxNtEj4lQX6oYWOGC+6AZPFsC4NhEltKLH
1DDKxDV6oUk7CfCTuVxzJ3D4S4zusGOOW+t1+ShCzjjyEwnvN+UOggKDyndjTtbi
Z46jCGa0RpxypVB1ERfMrZQprc7n1RAA2lvJhMmztz0002M/1KbViBYSgqC4Sz0X
xoRWJtcGN9c81A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:02:44 2026 by rpki-client