Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: ff6nlMiGxcLS/SCnV5ADvzT1XhmYLmFijL80TFD/0lM=
Subject key identifier: 43:66:C3:04:F1:2D:60:52:38:2D:55:81:41:30:09:58:2A:26:DB:B5
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 019CAE35D4BE1C2BF639BD8377AA6680A4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 04BE
Signing time: Mon 02 Mar 2026 11:01:29 +0000
Manifest this update: Mon 02 Mar 2026 11:01:29 +0000
Manifest next update: Tue 03 Mar 2026 11:01:29 +0000
Files and hashes: 1: Rr66ufKb1MLh9Wv3Z89vKrKFJI0.roa (hash: Yiy6bWp1Un5UwdmVbAZxKqnd38OQfcX3Y4LJySknw8Y=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: SBdohvqfkNHASwoWj30u1X5F/bTfj8H0mMhS1ZFdZ+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:d4:be:1c:2b:f6:39:bd:83:77:aa:66:80:a4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Mar 2 11:01:29 2026 GMT
Not After : Mar 3 11:01:29 2026 GMT
Subject: CN=4366c304f12d6052382d5581413009582a26dbb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:1c:5e:98:a0:16:0c:44:04:32:ad:4d:38:
6b:1c:ad:c3:8b:dc:82:65:cf:06:2f:6d:bd:02:15:
5e:9f:7e:59:67:58:40:5b:ae:8e:c9:59:4b:75:e0:
e5:80:b9:fc:f5:65:db:9f:58:14:67:a8:df:c9:d7:
0f:99:1b:d0:d2:31:b9:b4:33:e0:47:b0:9a:ed:dc:
a7:a1:53:1f:39:12:f7:da:52:15:6a:62:21:c4:5d:
cc:45:c1:f9:3e:49:1b:2e:40:f8:5a:71:bd:d5:f2:
8d:af:5e:d1:36:43:29:31:cb:a2:64:f6:82:bb:49:
77:20:5b:d9:16:b9:db:12:c7:61:93:25:2b:19:1a:
4a:f9:41:f4:be:80:cb:00:bc:ff:c0:4d:b0:22:b8:
aa:8c:86:b4:8c:7e:bb:fc:65:b9:75:18:bb:cd:2b:
e3:4a:88:0e:63:b6:17:b0:0d:eb:db:b0:c4:c4:53:
9b:c7:29:10:7a:93:af:2a:62:ec:ff:69:1e:38:ec:
89:da:0f:0d:f5:ef:b0:bb:12:f8:a7:3f:a3:8f:ef:
18:18:dc:24:83:eb:fe:25:8c:34:de:26:d1:d5:3c:
33:b2:8a:96:62:43:2c:ea:39:8e:ad:75:9e:55:fa:
e7:80:19:72:14:67:1a:c7:2d:b3:6e:b0:29:fd:4e:
99:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:66:C3:04:F1:2D:60:52:38:2D:55:81:41:30:09:58:2A:26:DB:B5
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:cf:c2:5b:bd:bc:39:95:a8:f6:de:fb:3e:5d:a9:b9:1e:0f:
f9:2a:90:75:31:53:c3:24:36:93:34:f2:5f:38:c1:70:b8:7d:
14:e2:9a:11:74:d5:49:e4:d2:2d:1a:97:2a:ed:cd:2c:f9:67:
9f:e8:e0:91:ee:23:e0:16:03:bf:85:4d:4a:16:35:0e:4d:79:
11:d4:1d:1b:52:97:b7:fa:7d:3c:77:e5:89:7a:ba:ff:d2:da:
28:03:26:97:47:6b:37:c8:b2:79:b2:7d:7e:db:be:04:1a:f7:
a2:b3:f1:58:c2:fe:c7:88:54:9a:f0:80:65:b8:c2:38:21:77:
3a:42:e6:d7:2e:91:1f:74:e2:6a:f2:66:3b:b8:93:28:fa:c3:
57:41:6e:35:7f:6d:74:eb:4d:0e:a7:18:ad:0c:fd:22:4a:ca:
f1:6f:3c:be:54:40:cd:35:75:00:f4:13:84:79:2e:c0:19:23:
91:13:e4:a8:94:31:90:d4:c6:d6:d0:28:52:8f:3a:ff:97:44:
2a:91:c8:b1:23:f9:f4:d7:de:a8:50:50:f1:be:a6:2a:c4:f2:
30:b7:09:dd:4b:50:29:d4:3d:86:6d:b2:45:2a:a3:7d:cc:a8:
0b:8a:65:74:65:2b:c7:7e:28:ba:74:d7:ff:30:f0:8f:27:ce:
3c:7e:0a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:12:31 2026 by rpki-client