Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: iI2G1MyqyZDqD7KF76yufjMDhKdZWsYDBk/k29Upqk4=
Subject key identifier: 75:54:C5:B7:89:B7:3C:FE:B7:DF:C1:7F:1D:15:65:90:F6:01:8D:AE
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019CA9EAD79581FBC09C202AC2F93C917D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0FC8
Signing time: Sun 01 Mar 2026 15:01:05 +0000
Manifest this update: Sun 01 Mar 2026 15:01:05 +0000
Manifest next update: Mon 02 Mar 2026 15:01:05 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: ztsnZeYGrPMT7DFA4WsqukvGZREHtwid34h9ym5zXTU=)
2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:d7:95:81:fb:c0:9c:20:2a:c2:f9:3c:91:7d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Mar 1 15:01:05 2026 GMT
Not After : Mar 2 15:01:05 2026 GMT
Subject: CN=7554c5b789b73cfeb7dfc17f1d156590f6018dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:41:94:cf:33:27:7c:40:e1:e2:ca:ff:13:
9a:f8:2d:ae:8f:b5:dd:6e:62:f8:74:6e:0e:43:26:
38:2e:28:90:9d:ec:4a:39:25:4b:00:55:f3:8e:11:
1c:e7:5a:a1:b9:1e:58:a7:75:20:f7:17:3c:22:35:
0f:ce:f9:d0:22:4a:ab:99:5f:cb:aa:d5:8f:5a:18:
50:81:fe:a6:9d:38:36:d8:6f:51:0d:90:e0:a4:44:
c5:3e:c5:f0:a8:5b:dc:e1:2a:c5:24:a7:4a:7e:29:
cb:6f:09:c1:74:6c:ae:07:d5:c6:ee:8d:0c:7b:ce:
c1:15:4b:4d:19:f7:61:fa:a4:f1:47:d6:69:aa:26:
08:87:0c:01:38:1d:38:ce:f2:d9:c0:28:61:6f:27:
b8:37:57:69:76:22:fa:98:16:f6:5a:3f:83:06:1e:
19:1f:61:32:a6:12:bb:53:56:27:5a:c1:cf:ed:2a:
1f:00:b9:53:08:53:2d:16:c2:ef:68:56:ab:cc:bc:
9f:45:d7:a1:ba:66:8e:35:47:41:6a:a1:ab:d9:48:
6a:89:1f:aa:1f:10:7d:f0:79:7e:40:fd:87:ab:2e:
a6:3d:e0:28:4c:2f:1c:ff:49:f5:8e:6e:23:1f:39:
e0:20:3c:9a:09:4f:34:98:9c:71:f3:2f:59:07:04:
38:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:54:C5:B7:89:B7:3C:FE:B7:DF:C1:7F:1D:15:65:90:F6:01:8D:AE
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:c2:98:ed:48:ce:58:77:bf:91:51:8b:24:16:f2:2a:7d:2e:
04:70:eb:e1:4e:c8:ca:eb:50:24:68:9c:35:13:09:ec:f6:15:
5c:ea:1c:52:11:4f:23:a2:9e:d3:da:e6:4e:94:f4:24:d4:14:
51:80:b1:b8:29:e7:93:80:cb:16:29:f4:28:6a:ab:25:38:d3:
48:98:e9:ec:40:c0:e4:85:07:0a:2b:93:df:ff:c2:70:11:52:
d3:7e:f7:b1:5f:aa:b8:b4:8c:58:be:79:91:51:3e:a3:80:e4:
b4:ad:c1:3e:21:b1:46:47:da:2c:cd:f9:14:ff:b8:95:87:61:
36:4e:e3:fe:ea:96:52:8c:56:4c:d6:17:d9:e1:c5:75:a9:0e:
4e:91:77:85:06:0d:07:f4:e0:57:06:82:41:15:81:c6:97:65:
59:55:a3:d1:61:19:15:1c:4c:5b:d6:8b:67:e6:c6:4c:cf:36:
c3:52:7f:6b:f3:19:d1:d4:3e:85:32:4c:71:32:ed:cb:4e:8c:
95:9f:bc:48:b0:09:20:d4:fa:4a:89:33:0b:4e:58:77:01:35:
7f:31:0f:3b:f2:c2:24:7c:a3:e2:31:23:68:cd:fc:cf:a9:ab:
ef:50:8e:f3:b8:6f:42:ab:16:2d:c7:16:b6:59:95:dd:18:e2:
14:01:2b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:48:21 2026 by rpki-client