Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
File: O-_lCkD7FzJUHoqXRQq13ndHcdg.mft (raw, json)
Hash identifier: UTMXkETDKog62ndH2mARuSpba0VsAT3DAAkP7bfWDdQ=
Subject key identifier: 7C:32:49:BD:C0:BB:4D:05:C8:07:5B:E0:74:9A:AD:A3:2D:BE:A3:ED
Authority key identifier: 3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8
Certificate issuer: /CN=3befe50a40fb1732541e8a97450ab5de774771d8
Certificate serial: 019A356B91195C03E03EF012C8A315CEAA08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
Manifest number: 0491
Signing time: Thu 30 Oct 2025 14:00:33 +0000
Manifest this update: Thu 30 Oct 2025 14:00:33 +0000
Manifest next update: Fri 31 Oct 2025 14:00:33 +0000
Files and hashes: 1: 7-AQ6OnvZ4yiBI8g8iZcgy53KzA.roa (hash: cTRZ7K6oUrn2Rqx5R/D6Zllm9PmQV/y/ARWXdG55cmE=)
2: O-_lCkD7FzJUHoqXRQq13ndHcdg.crl (hash: W8Bk6PxFv3+L1m3eXxuK2NXVsyqp65rOdkf0UtuMacM=)
3: YOqzdqJgWVyd_2LgxM2J8gMVqBI.roa (hash: va3bKDhWKpgZL3Z4ed7EIl2pjSDDXrOal9gvmMpvSE0=)
4: aBnhuCyVg4pVl4Cu-1q0sSCGSow.roa (hash: VQIqr/RAqzgxu4SPZE6Psd9Jss+IRfVZ1r0b7rL29Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:35:6b:91:19:5c:03:e0:3e:f0:12:c8:a3:15:ce:aa:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3befe50a40fb1732541e8a97450ab5de774771d8
Validity
Not Before: Oct 30 14:00:33 2025 GMT
Not After : Oct 31 14:00:33 2025 GMT
Subject: CN=7c3249bdc0bb4d05c8075be0749aada32dbea3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:f1:d5:29:d6:c5:c9:db:19:e0:7a:c4:1c:
83:69:a2:96:52:dd:58:6b:89:22:9f:b7:ba:16:a6:
ba:a8:04:ed:6c:12:ad:4c:e2:85:3d:10:79:be:46:
1f:6a:ff:86:d0:a8:a4:25:9b:e4:93:42:5b:32:90:
2e:c8:4e:ae:5f:bd:5e:e8:eb:ad:db:c4:4e:76:bd:
b5:06:cf:b9:e5:7b:50:f8:cd:02:86:23:84:c6:f1:
6b:38:93:4f:83:25:4b:44:4d:51:90:63:9c:f5:94:
01:f2:f7:dd:52:07:2d:d3:ae:bf:39:51:45:ff:4b:
f7:2f:6d:95:2d:89:6f:af:97:eb:b7:ec:6f:7e:57:
18:fe:58:50:0f:0d:cb:59:a3:52:f8:50:52:98:dc:
68:33:e2:73:84:4a:d7:f0:d7:9c:99:b1:a2:dd:90:
34:06:db:34:51:19:6d:ab:0c:91:c5:03:ba:cd:e4:
eb:04:6d:90:6a:be:74:17:22:c1:2b:00:55:69:20:
a5:c6:5a:ad:ce:fc:f2:a1:9a:fd:4f:b4:35:e0:3c:
d3:6e:d3:e9:32:70:7b:26:78:37:44:87:a7:97:61:
ca:dc:1f:6c:20:64:4b:b2:09:27:3f:d9:07:72:29:
7c:54:00:4e:e8:49:b2:a0:f3:93:e3:91:01:1f:39:
64:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:32:49:BD:C0:BB:4D:05:C8:07:5B:E0:74:9A:AD:A3:2D:BE:A3:ED
X509v3 Authority Key Identifier:
keyid:3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:3b:95:d1:9f:65:49:ea:15:b3:7f:0d:5e:2a:5a:56:00:aa:
8c:5c:8f:05:71:bc:38:07:14:1d:89:2f:b4:71:ae:9f:b8:7f:
f7:40:aa:86:e2:2e:42:5a:f2:1f:63:6b:38:c2:17:e8:7e:9e:
6e:2d:64:69:2d:33:f5:61:c3:11:df:de:88:ab:4a:3d:21:27:
fa:70:52:46:bd:77:63:1f:0c:c1:58:c3:04:a6:88:13:94:88:
f6:ee:c6:1f:97:6d:bc:07:22:fd:ac:6f:21:a3:28:27:26:65:
b4:45:3d:eb:70:c2:1b:e3:66:50:97:ae:59:91:56:b5:ef:72:
18:7a:c6:a1:6b:22:dc:6e:00:79:b6:f2:2b:3b:33:ea:cd:80:
4a:ea:2e:76:0f:2f:72:37:7b:9c:76:d4:d8:22:23:45:55:31:
1d:06:e0:f4:3f:57:3b:3a:b1:3c:27:73:04:cf:7c:70:a0:42:
08:56:ec:38:a6:65:03:d0:4a:3b:78:25:c0:ea:86:99:02:a1:
5d:59:9d:02:ba:74:f0:a2:9f:86:e9:a6:84:9d:74:f7:b0:d1:
94:4d:77:97:b8:4d:42:dc:6a:ad:b4:b7:91:4b:d3:27:c6:87:
ed:6f:e8:a8:36:6b:a6:56:be:09:63:84:59:fd:4b:19:d4:a7:
8a:40:72:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 16:48:28 2025 by rpki-client