Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
File: rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft (raw, json)
Hash identifier: 0JAG9b1zzrFIQmOVHUMIEdJb27H8+Wmfsbh+MMnSoN8=
Subject key identifier: 17:14:41:B7:FB:4C:7A:44:E1:BB:9D:35:68:9E:6E:57:E4:98:B3:C7
Authority key identifier: AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
Certificate issuer: /CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Certificate serial: 019CADC8396727FD30D31E81DCF5FD1E05DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
Manifest number: 046A
Signing time: Mon 02 Mar 2026 09:01:45 +0000
Manifest this update: Mon 02 Mar 2026 09:01:45 +0000
Manifest next update: Tue 03 Mar 2026 09:01:45 +0000
Files and hashes: 1: D1uepCAmRlFVjKTUqfMxFmzOti0.roa (hash: pf7DS73sBkltlYtAHV2Wkt/8vgHhRENJ2syRZHBzVdQ=)
2: rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl (hash: TgZWnDZ8ZfhKlMn9BGazYiJwU2FkZtI3K5RnCuBTixo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:39:67:27:fd:30:d3:1e:81:dc:f5:fd:1e:05:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Validity
Not Before: Mar 2 09:01:45 2026 GMT
Not After : Mar 3 09:01:45 2026 GMT
Subject: CN=171441b7fb4c7a44e1bb9d35689e6e57e498b3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:4d:64:0f:98:3a:d3:7d:25:20:c6:26:2d:
5c:19:ad:96:a3:04:1f:2f:b2:24:32:d4:c2:56:13:
1f:10:04:7f:a2:86:31:1a:af:fc:75:e7:bc:a4:8c:
e0:2f:d4:bd:e8:e5:62:01:fe:2f:60:23:b4:19:0e:
00:cf:25:9b:10:cf:e1:7b:86:12:17:af:f1:cd:3a:
27:8c:00:cf:bf:61:45:30:f6:de:5f:50:84:75:8d:
75:b5:1e:b5:5d:3d:d2:35:6e:80:fa:80:24:66:ea:
01:f0:7d:6d:44:be:9f:c1:84:a1:7c:85:1c:8e:80:
b9:e8:7c:98:f4:68:c5:2b:64:fb:19:d4:02:71:65:
96:b8:0f:bd:f1:f4:4f:69:e7:ed:6a:4d:a6:af:84:
4f:31:38:ef:3a:60:3a:82:6d:c3:57:21:41:7b:8a:
d5:f9:c5:b1:15:77:7c:4a:23:d5:cf:37:23:70:1e:
bb:f8:53:94:9f:82:16:9a:9b:e5:84:d1:63:93:33:
b2:26:57:6a:05:e3:6a:0b:75:9b:85:f3:70:8d:a9:
bf:af:7c:b7:ad:4d:6c:c8:3e:ff:cf:9b:e0:7b:1a:
5f:04:86:f9:96:1a:8b:ea:4d:2f:97:c8:04:ec:6b:
ee:b2:19:28:ed:5e:89:39:20:ed:34:59:b2:e1:28:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:14:41:B7:FB:4C:7A:44:E1:BB:9D:35:68:9E:6E:57:E4:98:B3:C7
X509v3 Authority Key Identifier:
keyid:AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:1d:da:b6:94:02:15:90:52:a8:8f:06:7b:65:c8:08:d8:0a:
92:c7:75:75:32:fe:49:f8:c5:9e:11:e9:4f:e6:5f:e6:68:a5:
fa:26:dd:1e:9c:4b:70:b6:81:66:22:cb:9d:83:b4:82:53:97:
39:d3:63:c9:ae:d1:6a:54:7e:2e:cd:36:36:d8:fb:8c:1e:3e:
2e:18:90:00:2e:37:6b:a0:cc:4c:66:c8:d7:30:9d:80:d2:66:
b6:56:6d:82:97:7c:1d:f7:d1:45:48:9a:25:d1:66:79:1e:73:
cc:87:02:af:4b:b3:ad:bb:c9:b9:81:09:17:df:d3:b2:eb:fc:
fb:83:30:78:58:d4:bc:30:ce:d7:eb:38:2d:f2:33:d1:f3:fa:
fc:50:42:2f:7c:3c:54:63:ba:6a:41:fc:97:6b:63:55:86:29:
61:88:35:50:00:10:ed:1d:c4:0e:4c:5a:f8:30:e7:b1:7e:ac:
21:5c:7f:d5:a3:c7:ae:5f:94:2b:55:af:90:a2:0e:19:ac:db:
64:5a:4a:43:63:43:fe:bd:29:54:25:28:2a:d0:73:86:31:3a:
1c:2a:90:53:e2:0d:af:3c:a0:d2:a9:40:c2:93:e0:27:25:ec:
19:a6:9e:76:aa:ef:32:fb:4f:c5:bb:f0:47:f9:8c:63:7c:7c:
a7:49:7d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:31:20 2026 by rpki-client