Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: QpRVsEwg9b9Tp/II7YtT3SUZSno+DvfIF/1jeCb9HTQ=
Subject key identifier: 85:62:59:F9:71:C6:F5:62:F8:D6:88:A8:2B:0B:F3:BF:65:E4:CB:08
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 019CAA21511ECAA9134ED69469BE60235C40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 116F
Signing time: Sun 01 Mar 2026 16:00:36 +0000
Manifest this update: Sun 01 Mar 2026 16:00:36 +0000
Manifest next update: Mon 02 Mar 2026 16:00:36 +0000
Files and hashes: 1: FitNVwmkb-__h9PO6L10GhPup_E.roa (hash: ddZD9lDpQD4dBKWa3tVdSEZbNMB8R3IK9ZzbEU7iNSg=)
2: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: m8XIuppIRiK3Qj64anagEOzNSkvHgDm1Y3xBjC3ws5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:51:1e:ca:a9:13:4e:d6:94:69:be:60:23:5c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Mar 1 16:00:36 2026 GMT
Not After : Mar 2 16:00:36 2026 GMT
Subject: CN=856259f971c6f562f8d688a82b0bf3bf65e4cb08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4a:8e:94:b7:0a:33:ab:22:3d:9c:5a:55:ff:
50:a6:66:ca:7c:38:ab:91:2d:84:22:00:2f:62:ad:
54:8a:b5:3d:93:ef:13:fb:9c:a8:f5:39:2f:1f:4c:
fc:93:35:eb:4c:cc:72:4d:03:9e:c8:74:ba:90:74:
fb:4e:74:2c:05:62:76:9e:33:3b:01:aa:9d:90:ce:
69:df:5b:9f:d2:cd:cb:ae:32:26:ee:cf:de:62:ce:
6b:a4:8b:2b:ad:a6:55:6d:45:4f:3c:8f:7f:a6:15:
fe:1c:79:32:c5:68:a9:ab:9f:73:a6:ef:9c:21:bd:
e9:73:ea:fd:79:e6:b8:6a:16:32:bc:10:57:c1:9a:
0e:2e:ed:10:1c:77:c3:0a:db:f6:23:1a:ed:87:93:
4d:67:8a:06:cb:df:13:3f:70:df:0b:d6:aa:4e:57:
67:45:1d:ce:83:0c:d3:4b:bb:5a:41:20:5b:06:9c:
7c:72:de:9f:cb:b3:f0:69:f5:91:df:6b:dc:06:44:
e7:10:ac:40:b7:48:c7:b7:f4:dc:3f:62:74:95:e3:
6c:54:aa:c9:79:90:5f:2a:7d:26:ea:4d:f7:1c:fb:
cf:5e:c6:d8:7b:75:7a:1e:e1:42:e7:5f:80:05:2b:
cb:6d:59:ed:f7:f6:a0:2d:a7:4c:3b:3f:8b:bd:7b:
83:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:62:59:F9:71:C6:F5:62:F8:D6:88:A8:2B:0B:F3:BF:65:E4:CB:08
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:4d:3b:7d:18:e5:f3:3f:71:b9:4b:de:94:90:9c:34:bd:1b:
33:eb:20:f0:84:47:79:ac:40:6d:0f:2a:a9:9c:c0:37:9d:16:
62:69:39:1a:41:31:18:b8:ed:77:f0:fc:c8:ce:97:65:ce:98:
91:00:0f:a8:bd:e8:8d:fd:f0:03:af:30:53:99:95:49:37:94:
e0:f5:33:bc:67:bb:71:85:81:11:bd:91:39:e8:bf:a8:ae:64:
43:61:3a:bf:c3:2c:d8:7c:11:90:30:2b:61:de:2a:fb:af:c2:
33:98:08:db:95:51:92:5f:8b:ce:b1:47:ab:f1:4a:54:be:4e:
95:1c:89:74:78:80:38:f2:ae:3a:4a:1c:4a:fd:49:ae:7f:ab:
2f:b3:f2:df:a6:d2:02:c4:15:a9:74:ea:19:5a:85:f8:a9:d9:
c1:c2:7a:af:2b:94:fe:5d:98:bc:a9:54:a8:f5:3c:0f:61:fd:
e2:1d:d8:4e:f7:91:c4:c9:97:b8:13:70:f5:f9:28:96:8f:c1:
a9:02:37:d4:90:0b:9d:a1:a6:91:dc:70:23:fb:9f:e1:c4:a9:
6b:e1:d6:1c:8f:51:f6:f7:f9:51:bf:90:3d:eb:cd:45:2a:4f:
fa:9e:a8:34:fe:84:cb:51:bb:ca:3e:f5:00:ca:c3:0a:a5:cf:
bf:d8:dc:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:11:19 2026 by rpki-client