Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: LtT5+1LsiwAtFrdoFdLCsNZSVPsPuSoIK0aPbgjRUcQ=
Subject key identifier: 5E:61:82:44:26:F8:C6:60:77:6F:53:3B:96:B6:B2:4D:8D:17:4E:AB
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019CACEB4F958ADC3E0DCE8ABD6CE77E0997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0450
Signing time: Mon 02 Mar 2026 05:00:28 +0000
Manifest this update: Mon 02 Mar 2026 05:00:28 +0000
Manifest next update: Tue 03 Mar 2026 05:00:28 +0000
Files and hashes: 1: HL__qaGc13R_JJTvUCH7c2B82tc.roa (hash: HV/JSNT03SbWk0eCa+7g8K+2C1DRHozLoBRXr4HShVE=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: HTqRBmBXW7TjDvPd5jzVQY6ER/OTkYbW5IeQ+z5iFCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:4f:95:8a:dc:3e:0d:ce:8a:bd:6c:e7:7e:09:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Mar 2 05:00:28 2026 GMT
Not After : Mar 3 05:00:28 2026 GMT
Subject: CN=5e61824426f8c660776f533b96b6b24d8d174eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:44:1f:0e:82:04:be:9a:f7:88:39:48:23:fb:
ad:76:83:47:c0:68:0e:9f:d7:f3:07:58:a5:76:5e:
86:76:65:a5:f9:28:ef:a3:57:60:0d:ed:d7:fd:e4:
8f:1b:07:84:b0:41:bc:d6:91:e8:be:39:aa:76:6b:
a8:88:88:29:5a:ab:89:33:6e:0b:39:87:f5:77:2d:
1f:39:99:2f:08:a8:7f:9f:f0:1f:03:2d:6a:66:95:
67:13:a2:a3:da:ed:4f:97:c8:f5:ec:b3:41:69:90:
1b:d0:18:b0:b1:03:ae:aa:08:61:a0:af:5e:50:17:
30:6b:b4:59:b9:c8:e0:ee:50:21:4b:e2:35:5f:84:
97:19:c3:e6:b3:5c:04:12:f0:c8:2b:1f:78:9e:71:
28:74:3c:ee:5d:2f:36:13:9c:a3:7a:2e:90:77:33:
8c:71:bb:41:e0:91:16:8d:f0:4f:51:b7:4e:bb:fa:
aa:5f:90:e5:66:fe:bb:f0:75:04:d8:59:04:e4:bd:
6f:e4:f2:3d:ec:77:df:77:d1:0c:1e:f6:e2:01:7c:
1d:f4:fa:86:85:5d:d8:6e:6c:c9:11:f6:f1:a1:4d:
44:3f:d7:14:99:3b:5c:03:cc:51:47:3e:a5:0c:31:
f5:5e:d6:9c:11:b0:4f:5a:73:ad:69:cd:c8:1f:98:
d9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:61:82:44:26:F8:C6:60:77:6F:53:3B:96:B6:B2:4D:8D:17:4E:AB
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:04:4d:df:97:d1:9a:c2:33:77:b7:6e:9a:4f:7d:33:fb:84:
6d:d7:3f:fd:23:b1:34:0b:f0:d0:9c:ea:00:ca:58:a7:cf:ba:
44:5a:de:d2:00:ea:fe:a1:76:c9:af:b8:4d:98:1d:76:7d:62:
b3:18:76:82:f3:75:ca:88:08:6a:1b:2b:5d:25:e0:f2:14:49:
2e:9e:84:e2:a6:da:34:14:32:96:42:9b:eb:69:c2:7a:16:7a:
c1:96:7d:29:31:1a:78:77:b5:1a:11:6a:55:8c:23:9a:88:a9:
21:a4:be:7b:a3:6e:be:fc:2f:4c:80:dd:c0:f8:ba:19:aa:86:
b5:21:b5:c9:f3:40:8b:27:12:eb:ee:32:f4:72:9a:2c:7b:2c:
d1:44:94:a3:04:3d:96:98:bb:09:d6:62:c2:da:21:63:76:5d:
b0:54:7d:95:6d:b4:c4:d5:58:a3:fa:02:32:70:ee:bf:2e:d8:
dd:88:fb:a9:ac:b4:d7:32:e3:96:01:d3:0f:d1:e4:81:05:97:
5c:b3:be:b5:77:e6:b0:5f:32:08:53:20:8a:5c:68:fc:40:31:
15:30:f0:f9:5e:77:7b:74:2c:1c:77:ac:d0:0c:b9:9b:52:5f:
fd:4c:e3:5e:9a:96:af:62:c8:f3:40:ff:4e:91:df:fb:c7:70:
61:2c:8e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:50:51 2026 by rpki-client