Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
File: OZPVTmOQgKRsP-PViqh-MF22mtE.mft (raw, json)
Hash identifier: 2iGa0hKKRlr8np3xn4vh1Y6k4cIQLp2KzzmePM4+IW4=
Subject key identifier: 89:1D:5F:92:AD:68:40:4F:81:C1:6C:16:BA:D7:9D:EE:E5:3D:01:47
Authority key identifier: 39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
Certificate issuer: /CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Certificate serial: 019CACEB82615F1612BAF0D8B0ABA720870B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
Manifest number: 1509
Signing time: Mon 02 Mar 2026 05:00:41 +0000
Manifest this update: Mon 02 Mar 2026 05:00:41 +0000
Manifest next update: Tue 03 Mar 2026 05:00:41 +0000
Files and hashes: 1: 4wCH1xXH2AmEqNEibg1P7FM72SE.roa (hash: 1jaXMinq6qu7nzoECfPCDfNYeYpFgouOjB2jk7Nl0Sw=)
2: OZPVTmOQgKRsP-PViqh-MF22mtE.crl (hash: G8bWg5EqrAGh3nwy+OrQ55WOQNJr5e/VcU078le7+iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:82:61:5f:16:12:ba:f0:d8:b0:ab:a7:20:87:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Validity
Not Before: Mar 2 05:00:41 2026 GMT
Not After : Mar 3 05:00:41 2026 GMT
Subject: CN=891d5f92ad68404f81c16c16bad79deee53d0147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:41:02:a8:61:10:86:90:15:12:23:d8:0b:ea:
bf:16:02:94:33:c1:23:9d:2e:1d:e8:ab:5f:ed:ec:
f4:ce:97:24:24:43:ea:ef:4c:e4:99:8f:5c:41:6f:
46:37:c2:e6:2c:52:fa:5c:29:94:81:56:ef:1d:d4:
05:be:9f:71:16:ee:e6:81:82:ec:ce:2f:99:c9:0d:
25:03:8c:ad:e1:3a:de:3b:00:cf:d8:ca:27:82:6e:
40:34:3b:e0:03:c3:2d:ce:ef:bc:39:6e:49:35:92:
f9:38:a6:6e:2e:af:32:23:8d:0b:1e:62:23:5f:a8:
c7:7c:14:86:8e:f4:6f:be:65:35:2b:2b:7f:d6:54:
ee:d8:fc:57:c8:7f:8d:08:c7:fe:c8:1c:29:39:a9:
eb:92:77:5c:0a:86:39:94:06:07:ea:ef:5a:66:b1:
49:4d:5c:3a:15:2c:b6:1e:f2:60:78:f1:6f:b1:2a:
5e:b5:ab:94:37:f9:47:43:bb:38:f1:01:42:31:ca:
fd:28:14:9f:7c:2f:6f:6a:8e:58:fc:9e:9a:ee:27:
18:e8:09:2a:04:c8:48:30:e9:e6:5f:f5:41:17:3c:
e7:55:7f:4e:a1:3a:f8:1f:90:54:6a:dc:f3:95:63:
ce:cb:eb:fb:b4:a3:73:5d:57:a2:a3:dd:07:cf:aa:
90:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1D:5F:92:AD:68:40:4F:81:C1:6C:16:BA:D7:9D:EE:E5:3D:01:47
X509v3 Authority Key Identifier:
keyid:39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:dc:d3:4c:29:d6:56:8c:8f:b2:85:c3:4f:1d:9c:c2:9d:bc:
4c:89:a1:09:fc:89:ab:cd:80:88:5e:7e:2f:f8:c8:91:11:cb:
f1:07:6f:41:cc:26:28:0f:97:10:6d:82:4f:f3:97:11:d5:d8:
8f:d6:24:02:72:b3:73:7c:7d:64:e5:0a:7a:fd:5b:98:54:98:
0a:3c:bc:76:05:2c:87:f8:4b:3a:c6:b5:af:1e:46:b9:fe:58:
13:23:77:23:5b:d5:1d:07:a3:9a:74:95:40:da:32:d6:a6:ba:
49:d3:60:f2:ac:16:d3:db:34:69:07:66:b7:5c:f9:40:0a:84:
4c:c8:46:f7:a2:95:9f:95:b1:71:e1:e6:ec:56:4a:23:76:20:
74:df:9b:e8:38:34:7b:72:4f:ce:5f:30:82:86:77:a9:16:bf:
f6:01:54:a3:bf:1f:df:34:cc:73:19:0a:04:b2:70:d6:da:e7:
7f:0c:74:65:fb:7a:9e:f0:f4:55:9e:0c:6c:60:5c:12:be:ac:
6c:93:53:00:29:6e:1f:6a:2f:9a:06:8f:74:c3:b4:c2:c0:00:
34:ec:4c:b5:b8:b6:1b:a6:ac:04:27:d9:8e:e6:9e:55:0f:77:
97:b2:e9:25:96:4b:97:9b:14:39:79:26:a0:b6:98:ac:ba:fe:
a0:ff:07:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:50:34 2026 by rpki-client