Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
File: ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft (raw, json)
Hash identifier: LN+7p04Pz/SmaN76NzWCnr4xR6t+Vr2dEN7JwPRTpAM=
Subject key identifier: 52:82:7E:23:2F:C2:A9:23:66:F4:02:04:FC:B8:17:99:65:82:13:04
Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928
Certificate serial: 019CB16D093DEDB25DA43294E171F92AC950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
Manifest number: 12BD
Signing time: Tue 03 Mar 2026 02:00:38 +0000
Manifest this update: Tue 03 Mar 2026 02:00:38 +0000
Manifest next update: Wed 04 Mar 2026 02:00:38 +0000
Files and hashes: 1: IBksnf3WkTvoF5rkP1mUy15812I.roa (hash: HD4RkTmAf3uLEci/QM2BCfZRy1s1DoklxIvLjDBwxb4=)
2: NdOYrmb6RnvhyXZ1Skocw4HNEj4.roa (hash: i19fewp2gqVX7ORfnbVNxiNhHz8sRGSZyn7wRBbQZfc=)
3: ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl (hash: kELTtrNGtm18L+U2jglEmVOy2wIIlnE5jhkBLCTPZtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b1:6d:09:3d:ed:b2:5d:a4:32:94:e1:71:f9:2a:c9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20cc67154b403145d139469886127ab629eb928
Validity
Not Before: Mar 3 02:00:38 2026 GMT
Not After : Mar 4 02:00:38 2026 GMT
Subject: CN=52827e232fc2a92366f40204fcb8179965821304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:17:47:ea:15:54:b7:15:53:60:91:23:e6:24:
a7:11:d0:02:93:92:2b:70:71:57:19:b6:fa:43:c0:
3c:23:32:a2:78:9e:80:0c:1a:a2:ee:64:92:6b:d6:
c6:78:0d:09:1d:c2:9d:13:f3:a3:1c:89:b1:9e:8d:
7d:ef:d7:2c:79:8c:36:2a:c8:f2:39:e6:f8:c3:4f:
c3:cb:d5:38:d0:09:fe:92:53:69:36:1d:3a:b4:ac:
f4:70:04:a5:87:36:34:dd:66:f9:5d:fc:e6:9a:18:
a7:bd:f5:1f:c4:6b:d2:6c:4c:dd:31:14:59:ec:72:
30:fe:8c:0e:81:fd:bb:44:54:96:44:3f:9d:7c:40:
80:0d:c8:a0:fc:07:36:03:03:09:24:02:e0:60:38:
61:19:1f:9e:d5:68:b7:c1:e1:61:86:51:4e:b0:76:
0c:96:1d:e6:3d:98:80:e8:23:2d:e9:b9:7f:eb:0d:
af:2d:f8:b9:29:1a:2e:03:03:59:7f:62:e1:8f:dc:
a7:4b:3a:0f:6c:7d:cf:94:4e:4a:bf:aa:19:d5:37:
9e:d7:17:3e:04:bd:34:69:e7:ae:38:50:96:ce:60:
71:9e:cd:79:aa:12:a4:dd:21:16:35:cc:54:b8:ec:
ae:3b:f0:18:85:23:fa:87:c1:58:3b:20:32:df:31:
c9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:82:7E:23:2F:C2:A9:23:66:F4:02:04:FC:B8:17:99:65:82:13:04
X509v3 Authority Key Identifier:
keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:22:a0:55:5c:1f:8c:71:d7:e1:17:1b:e1:b5:98:5e:74:43:
1f:b3:86:ad:42:5c:99:03:03:19:6f:62:85:e3:be:94:fd:e4:
60:7b:d9:50:01:fd:88:df:6d:4b:08:10:cc:5e:32:4c:7a:8d:
e6:f1:f1:9f:9a:9d:ac:9b:ed:5d:b9:05:be:52:ef:93:20:2b:
a9:af:f6:46:29:7b:08:ac:54:06:64:30:59:5f:1e:b9:99:09:
eb:fc:4b:12:ca:b8:e3:0b:09:b0:34:4f:98:4a:e4:de:42:07:
20:5d:b1:28:39:17:4f:be:66:f5:b7:74:e7:0e:3c:ed:75:54:
95:35:2a:76:57:b3:17:bc:0e:e8:b1:84:2e:7b:a2:f4:56:6c:
cd:80:03:f8:df:1d:cd:40:29:05:2b:98:f4:89:9a:94:d3:7f:
99:7d:11:74:02:17:10:05:a6:fa:38:27:ff:f8:ab:0a:52:0b:
76:2c:53:fa:8e:20:99:60:32:13:6f:49:e6:63:3a:8a:e5:60:
93:75:93:92:e0:84:c6:a8:26:d3:9d:b2:ca:70:64:a3:8c:9e:
4a:ee:b5:01:aa:50:80:b7:0a:b2:b1:2c:33:e1:94:29:b5:50:
80:a6:7a:5e:2e:b3:a9:57:79:ad:2a:e8:26:a2:32:67:c9:46:
9f:72:27:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 05:30:05 2026 by rpki-client