Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
File: 2OtznG09xxpiBsjzcSQm_1MqCv4.mft (raw, json)
Hash identifier: flsnPvvG2gBvtFmhIV9Q4JTdm4TUN6tMPOIr2wCud/4=
Subject key identifier: 21:CC:7A:E9:09:7F:53:B7:96:23:72:11:17:71:3E:51:4D:F6:E6:C0
Authority key identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
Certificate issuer: /CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Certificate serial: 019D9C9A9465C538328C64A694BF35C5D707
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
Manifest number: 0233
Signing time: Fri 17 Apr 2026 18:01:09 +0000
Manifest this update: Fri 17 Apr 2026 18:01:09 +0000
Manifest next update: Sat 18 Apr 2026 18:01:09 +0000
Files and hashes: 1: 2OtznG09xxpiBsjzcSQm_1MqCv4.crl (hash: q0a5JlWp84BXiFNiv0xRxh9+WEeqE9e80Da28IQf/m8=)
2: R5Mpv-TpKjDBFOnu2VvpT48qfkY.roa (hash: 4BhY6rNGdaN8G7ZNz8xS2aBWkhA6dXSAvcpryese42E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:94:65:c5:38:32:8c:64:a6:94:bf:35:c5:d7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Validity
Not Before: Apr 17 18:01:09 2026 GMT
Not After : Apr 18 18:01:09 2026 GMT
Subject: CN=21cc7ae9097f53b79623721117713e514df6e6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:ac:3d:5d:cb:47:26:aa:17:72:87:69:92:
45:81:8f:67:ae:c3:64:b1:43:b3:e8:37:a8:75:ca:
63:ac:fa:45:d3:78:fb:33:e7:fd:08:69:10:6d:57:
dc:50:e7:7c:88:64:82:e3:f3:9f:da:f7:c6:1c:20:
5f:5a:29:f6:27:95:44:5e:fa:3a:c3:76:04:0a:e6:
d9:e2:bf:8c:93:0e:72:cc:1b:95:91:79:5d:9d:6d:
cb:49:93:f6:69:93:3c:bd:ed:a2:86:46:63:ed:ad:
eb:c3:49:9d:22:82:26:de:dd:0a:7d:d9:fa:92:ee:
92:6b:75:e5:31:59:12:c6:8d:59:0a:a6:a5:34:27:
36:a2:43:2f:a9:dc:25:49:00:a7:ec:4a:cf:3e:2a:
7c:7c:38:ae:ca:68:b0:9f:f5:17:af:1e:f0:ac:e2:
10:9d:57:f7:12:94:ad:91:bb:fd:fc:c2:a3:81:e8:
f3:08:68:ba:4a:9b:4c:2a:95:2f:e5:9d:33:d7:b7:
35:b8:84:57:4d:b6:dd:ec:bd:47:84:40:a5:fa:57:
d8:ee:9c:30:09:27:a0:dc:af:95:1c:cf:44:a6:01:
a3:73:72:be:ed:e0:7c:23:50:9d:88:00:fc:35:6c:
08:7d:a8:c7:22:93:f7:c1:40:02:07:dc:8e:6b:b2:
33:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CC:7A:E9:09:7F:53:B7:96:23:72:11:17:71:3E:51:4D:F6:E6:C0
X509v3 Authority Key Identifier:
keyid:D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:65:77:9f:bc:24:31:12:80:7f:54:08:7f:e3:e4:2e:12:5c:
fd:72:d0:c0:21:34:cc:06:18:44:fa:6b:14:0f:f8:7c:b6:5b:
5f:eb:13:a1:a8:97:cf:4b:29:4f:db:7c:07:e6:d7:f6:55:1e:
0a:2f:48:3d:e8:31:14:87:63:c1:9e:90:b8:eb:6a:ef:9f:1a:
29:38:ee:e7:4b:d0:3c:42:36:5b:92:67:5d:2f:0b:82:e4:93:
94:86:45:26:23:27:41:28:8e:1a:30:e1:07:80:4b:e3:7e:f0:
7a:af:b8:d2:44:04:d9:4a:91:c5:4d:b7:47:71:8a:79:16:36:
bd:da:b1:e8:08:55:9d:ef:78:78:0a:18:2b:f8:c2:88:a7:8c:
c6:06:0d:80:c0:67:92:ca:d6:f4:5f:0c:98:70:6d:71:3a:9c:
9a:ae:2a:ef:cc:d1:9c:b3:00:2b:b2:68:c4:41:87:5b:83:e6:
af:5e:50:9b:c4:26:b8:96:11:e6:eb:39:04:f8:91:93:96:23:
4c:16:04:e4:59:3c:6d:0b:71:33:7e:9b:95:76:32:6b:30:ec:
6f:5c:50:9a:e3:00:a7:b6:db:22:91:91:a5:3f:36:e4:9e:84:
cd:c0:a8:2a:cb:eb:24:67:f1:7b:c2:9b:e5:6e:c8:77:d9:06:
6d:3d:00:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:18:04 2026 by rpki-client