Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
File: rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft (raw, json)
Hash identifier: BfFRJgM2Uc+vIR/w0VFsD/iZSk0xNJVPrXADICLX81Y=
Subject key identifier: 74:E8:A4:7B:E8:AD:4B:6B:C8:AF:07:45:1D:91:B3:A6:51:C9:1A:A8
Authority key identifier: AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
Certificate issuer: /CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Certificate serial: 019D9B50DC4A5135C98293B6D568CD1AA5CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
Manifest number: 04E5
Signing time: Fri 17 Apr 2026 12:01:00 +0000
Manifest this update: Fri 17 Apr 2026 12:01:00 +0000
Manifest next update: Sat 18 Apr 2026 12:01:00 +0000
Files and hashes: 1: D1uepCAmRlFVjKTUqfMxFmzOti0.roa (hash: pf7DS73sBkltlYtAHV2Wkt/8vgHhRENJ2syRZHBzVdQ=)
2: rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl (hash: YvztaXMb/NfeS3SfxanM4AskJNh4HXpun00SyayGNwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:dc:4a:51:35:c9:82:93:b6:d5:68:cd:1a:a5:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Validity
Not Before: Apr 17 12:01:00 2026 GMT
Not After : Apr 18 12:01:00 2026 GMT
Subject: CN=74e8a47be8ad4b6bc8af07451d91b3a651c91aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:61:cd:cf:07:80:44:8c:ef:88:58:f4:3d:62:
df:93:48:a3:28:ab:22:66:16:c7:1e:9a:c1:56:91:
c2:56:80:15:45:6c:c6:0b:05:e7:05:1a:64:16:0b:
83:d3:55:2d:dc:38:47:f0:63:55:ad:f0:18:af:41:
2e:fc:10:17:ea:93:ca:a4:9f:56:d7:a9:56:a5:7f:
aa:27:13:ca:06:12:a1:f3:b6:8e:13:34:11:5b:e5:
41:0b:e4:a7:ce:c4:5b:95:6a:76:bd:f4:3a:8c:5d:
9f:6c:25:9e:fc:01:8d:f0:83:16:88:7c:a9:fa:5d:
e7:86:ec:7f:50:7d:75:be:a1:28:2f:9e:cc:74:23:
74:75:73:9f:fa:31:6a:cf:35:d3:f8:7f:f8:5a:db:
d9:34:63:fb:42:a8:c8:27:91:90:6c:aa:2e:0a:a2:
2b:23:09:cb:ca:f2:01:be:01:c4:7a:bf:d6:ed:98:
61:a1:22:75:6a:e6:0c:41:1c:ab:f7:dd:20:8d:c0:
96:9b:ca:37:55:da:ca:85:d2:83:c6:d0:25:e7:54:
9d:e3:58:93:f8:30:c4:eb:99:9a:2a:5a:b2:45:9d:
43:ca:59:f5:c4:c9:14:90:a7:21:19:cb:f1:15:30:
61:6a:d6:fb:0c:cb:09:b0:0e:e4:4a:24:27:95:a6:
75:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E8:A4:7B:E8:AD:4B:6B:C8:AF:07:45:1D:91:B3:A6:51:C9:1A:A8
X509v3 Authority Key Identifier:
keyid:AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:91:ae:3b:28:da:c1:24:69:82:06:4d:b4:7e:ad:75:c0:f6:
d7:f3:cb:53:d7:c0:75:0c:80:d4:49:0e:1b:ce:c8:e5:fe:0e:
e9:7e:de:bb:84:f7:83:bd:c0:8d:f6:b5:85:7d:49:f2:ac:82:
6c:87:81:dd:aa:99:95:e8:32:7b:a9:7b:32:b0:41:cc:60:a4:
a3:61:14:40:0f:d7:7f:10:99:2f:65:0f:0c:11:61:bd:ce:44:
1f:6b:93:a1:f1:9d:9b:b7:eb:e2:68:69:c2:29:d3:ea:8f:0e:
fd:41:80:97:6f:96:3a:68:b4:86:89:07:9b:2a:30:ad:36:ea:
65:e0:8c:b3:b8:ee:0b:45:16:05:2f:d6:a3:c2:3b:83:df:34:
18:0f:09:ab:f7:ed:0a:d7:6b:18:ba:9c:ff:0b:1b:14:d1:95:
03:4a:e2:93:9f:29:7a:f3:19:44:9f:ca:77:c9:06:be:71:5e:
0e:4e:f8:e6:0b:28:f3:10:e8:ab:97:94:f5:60:28:2e:e2:f6:
53:22:d2:12:9f:04:14:a8:65:4b:0a:10:02:66:4b:f7:f5:4b:
91:bd:9c:79:52:27:6b:83:fd:41:52:6d:5c:85:02:e8:4e:0a:
74:a2:62:e1:94:12:d9:08:ec:58:a6:13:38:2d:8e:31:20:42:
3c:0a:95:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:50:31 2026 by rpki-client