Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: y+/qJgAFL2uS/14Jw0tzBaJWbo/afLuyIIRvDgy3c9o=
Subject key identifier: 67:83:D6:D2:18:76:68:C3:7F:06:93:9A:3A:2E:71:73:D3:6A:94:44
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 019D999919A0A3DC826953F5AED76F969510
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 11EB
Signing time: Fri 17 Apr 2026 04:00:40 +0000
Manifest this update: Fri 17 Apr 2026 04:00:40 +0000
Manifest next update: Sat 18 Apr 2026 04:00:40 +0000
Files and hashes: 1: FitNVwmkb-__h9PO6L10GhPup_E.roa (hash: ddZD9lDpQD4dBKWa3tVdSEZbNMB8R3IK9ZzbEU7iNSg=)
2: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: 4z4/Ft5nz9Bnm6JVDViXlPlGGmKF7rdpd9UC9s6ROnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:19:a0:a3:dc:82:69:53:f5:ae:d7:6f:96:95:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Apr 17 04:00:40 2026 GMT
Not After : Apr 18 04:00:40 2026 GMT
Subject: CN=6783d6d2187668c37f06939a3a2e7173d36a9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8e:dc:3f:95:da:d3:59:97:ad:51:ff:7f:6f:
cf:f2:3b:87:ef:62:a3:7f:ac:f6:bf:8e:5b:ff:61:
c9:c7:39:d8:37:fe:99:a4:94:38:ef:c2:64:38:3a:
88:9f:e0:2a:1e:a2:d2:e1:0e:55:94:7d:56:04:5c:
46:7f:40:a7:b9:73:28:00:87:6a:3a:f1:0c:1a:24:
ab:e4:3d:9e:70:51:a2:bd:ab:2b:58:67:8e:9b:08:
58:f7:b9:e1:42:04:a1:51:7d:aa:6c:60:c0:36:b4:
bd:be:e3:37:f4:cf:86:06:26:38:0e:ba:08:9f:f7:
61:9d:21:e9:f3:a6:11:11:1f:eb:6b:14:9f:0b:d2:
13:c4:9e:46:1c:29:b8:73:3d:f4:03:90:52:4d:70:
8a:04:8c:c5:da:8e:87:29:cd:3d:7e:4f:5c:73:a3:
c9:57:11:23:11:2f:cf:9c:ad:c5:f2:7d:9e:fe:60:
aa:11:69:02:cb:e1:58:90:28:29:9c:dc:3e:f3:b1:
c5:09:11:59:30:5a:e7:0d:44:79:2d:53:6d:c9:3d:
55:65:6c:9f:b6:3d:21:3f:fd:96:01:28:c2:df:a7:
ae:f1:7f:bf:41:46:d5:9d:48:6e:cb:13:b0:92:e5:
b6:ea:5c:98:e6:89:b4:10:7c:f1:68:c1:db:f9:1e:
3f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:83:D6:D2:18:76:68:C3:7F:06:93:9A:3A:2E:71:73:D3:6A:94:44
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:df:ae:3a:0b:76:21:b1:6e:98:37:21:e7:97:10:7f:34:4a:
d7:ce:01:42:ab:e6:7f:8b:15:a4:2f:a1:2e:e7:d7:df:49:f5:
82:eb:63:b0:36:dc:4f:63:bc:87:08:62:8c:ce:f5:85:c9:60:
1d:47:21:1d:2a:33:9d:61:bb:23:8f:87:1d:ec:51:19:94:f8:
11:4c:13:a2:32:e3:96:3a:6c:9e:4f:13:f1:74:86:12:61:d7:
08:64:be:ba:6c:bb:c3:ba:31:27:30:f9:68:25:57:88:c4:33:
00:8d:f0:59:8c:fb:14:da:ee:fb:18:ef:7f:f4:19:e4:f5:9c:
9e:90:38:0c:70:e3:48:e2:62:64:54:19:be:2c:df:07:2e:f7:
20:e0:ea:ed:01:44:7d:e7:e0:64:03:7e:87:78:3c:f3:53:a1:
2b:28:27:40:72:5b:57:0a:9f:3b:db:ec:2f:83:f6:ba:69:f4:
7e:95:52:36:52:f1:a9:a7:25:05:d7:c5:3a:df:f4:61:30:2b:
0d:95:fe:69:bd:8a:32:6d:6d:42:07:7f:f0:ab:e3:b5:e7:45:
66:eb:38:4a:45:3d:bf:8a:c7:7b:06:84:bd:60:93:bb:db:00:
53:f4:c7:25:3f:d6:18:9f:dd:c4:b9:f9:db:92:78:03:65:8f:
64:2a:02:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:36:24 2026 by rpki-client