Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: e+LsSYDeFp3nWfJWsaADYDOO23NU5Rqc2wU71BchkUU=
Subject key identifier: 39:49:6D:9B:90:D5:AD:DD:5C:9E:36:FD:A9:FD:BE:D3:F3:89:7F:F1
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019D9A7542F30AEEF3D3FACDBC731F3994C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 04CB
Signing time: Fri 17 Apr 2026 08:01:08 +0000
Manifest this update: Fri 17 Apr 2026 08:01:08 +0000
Manifest next update: Sat 18 Apr 2026 08:01:08 +0000
Files and hashes: 1: HL__qaGc13R_JJTvUCH7c2B82tc.roa (hash: HV/JSNT03SbWk0eCa+7g8K+2C1DRHozLoBRXr4HShVE=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: PtMFWJSAr1qddT5JyJlxmzoPGn3DgLwBUWDU6ETWWBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:42:f3:0a:ee:f3:d3:fa:cd:bc:73:1f:39:94:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Apr 17 08:01:08 2026 GMT
Not After : Apr 18 08:01:08 2026 GMT
Subject: CN=39496d9b90d5addd5c9e36fda9fdbed3f3897ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a5:31:16:a3:83:cf:52:ce:ef:f0:fc:8c:46:
f9:71:2a:b6:f0:78:d9:f3:5e:1c:24:8f:e8:56:de:
ad:01:dd:1f:15:4a:11:76:bc:75:6d:6e:bd:57:9d:
95:0a:77:f6:8e:02:2b:91:ae:fd:45:30:f9:e9:a4:
4f:30:1f:c7:0b:62:44:2b:95:b8:6f:15:1d:ff:a6:
b8:5a:1e:9d:b2:71:22:17:52:3b:c9:18:26:72:4d:
e6:69:23:b4:21:5c:7c:b1:ce:a3:e2:11:59:d1:b0:
52:c6:3d:f4:47:96:f8:ac:04:bf:1f:ef:d0:57:48:
7d:85:c9:02:bd:76:02:fa:f0:e7:74:5f:80:05:e9:
9d:33:6a:cd:8a:c6:5d:39:62:f9:5b:e8:aa:87:54:
e2:48:aa:ef:03:49:59:86:7c:fd:02:ca:80:a5:37:
22:ae:bf:9e:b3:b3:dd:e8:97:0c:a9:d1:c7:be:e0:
62:0b:9d:d7:e3:31:55:a1:bf:40:77:6c:af:37:e2:
a4:4f:5d:32:88:0d:21:ec:8e:b3:ca:8b:98:1d:1a:
02:1c:e1:e3:c4:7c:64:a3:3e:e6:63:bc:1f:e6:30:
bd:31:c0:45:6f:de:f2:6e:c9:0b:fc:67:1a:09:09:
05:92:ea:ef:1a:41:c9:1d:06:85:d4:db:17:a6:0d:
8b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:49:6D:9B:90:D5:AD:DD:5C:9E:36:FD:A9:FD:BE:D3:F3:89:7F:F1
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0f:07:d5:70:23:01:4e:2e:a2:b8:6e:8a:36:f1:a6:95:6c:
db:66:d6:51:d6:73:10:e8:d9:cd:6f:51:66:54:fd:98:45:c6:
08:38:f8:0f:8a:b6:af:b7:b5:6a:10:f7:be:f1:04:c7:c7:31:
69:33:ce:ce:0d:ff:f6:94:b5:c3:88:b2:c3:15:91:c4:03:ae:
97:cd:a5:94:be:c1:d3:bb:7a:67:16:d7:bc:01:ee:e8:2f:43:
4d:40:db:46:20:ab:a5:88:3e:ae:30:c0:a4:a7:ea:17:c3:b5:
ab:71:b7:2c:c6:dc:bb:f2:8a:8a:af:fe:e2:43:84:de:a4:a4:
84:1e:56:cc:37:3b:9d:ac:1e:13:13:a9:1b:1e:49:2b:2e:cf:
7f:ac:20:fb:94:79:73:96:94:e0:6d:35:31:14:63:54:2c:16:
b8:38:11:93:e5:22:be:0c:5e:b8:03:72:87:61:74:38:84:e6:
6a:0b:b1:be:16:c2:07:ea:0c:23:98:d9:b7:41:03:7d:f1:ef:
7a:69:4f:98:d5:5e:f0:aa:44:0a:ed:b6:d8:04:48:cb:70:74:
8f:d0:55:82:43:4c:fb:e0:a5:c1:17:e0:b1:b9:99:08:b0:71:
b8:70:89:90:e0:49:4b:cc:de:45:a2:58:a3:24:1f:25:4d:c6:
5e:15:7f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:47:07 2026 by rpki-client