Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
File: ovl077UOcpyeAVqLwrbCsGGd_IQ.mft (raw, json)
Hash identifier: nzbcZqWl7TbOiXEiqNxFQb0X/kvTX9G5s5tZFuV/CV8=
Subject key identifier: 9F:17:5D:B3:B8:3D:AD:9F:CB:95:D3:DF:AF:05:4B:45:42:83:B4:5A
Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Certificate serial: 019A706E81803E3FC1D2D5401ACBF94B6A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
Manifest number: 0BE9
Signing time: Tue 11 Nov 2025 01:01:21 +0000
Manifest this update: Tue 11 Nov 2025 01:01:21 +0000
Manifest next update: Wed 12 Nov 2025 01:01:21 +0000
Files and hashes: 1: Uk_aanYMRxowJq16GMNyhbsFOEw.roa (hash: creuRsSl8nSakc/hCQHakSFNIaRZLii8X1gMM9BUYWY=)
2: ovl077UOcpyeAVqLwrbCsGGd_IQ.crl (hash: QChoJTNdObd7Y3uL2WKAonLfy4Qy79v2Kerckb2a8Fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:81:80:3e:3f:c1:d2:d5:40:1a:cb:f9:4b:6a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Validity
Not Before: Nov 11 01:01:21 2025 GMT
Not After : Nov 12 01:01:21 2025 GMT
Subject: CN=9f175db3b83dad9fcb95d3dfaf054b454283b45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d1:41:51:ea:ce:98:56:0a:c9:4a:a4:0a:67:
74:b7:7d:d2:6e:13:9f:37:f7:0b:ec:0d:91:66:83:
36:0e:e7:05:dd:9f:06:d1:b5:10:56:5f:16:4c:39:
ee:24:7f:fa:9e:c5:c4:f8:0e:0b:55:6a:f7:19:a2:
1f:8a:5b:00:c8:e4:1b:4c:4e:9f:b4:1c:d8:b4:a9:
3b:26:10:73:b7:94:6e:15:fe:fa:e6:28:26:9d:a0:
79:b1:ed:08:b5:45:3d:18:6e:9c:01:5d:b3:62:60:
a8:f7:89:e7:3a:13:a0:a7:56:3a:b3:26:74:e5:05:
4a:bd:e5:38:0f:d7:7c:77:4b:c1:4c:cb:6c:5a:4f:
82:8f:c6:c7:ed:43:7c:9b:1f:f1:df:8c:59:2a:f8:
62:c5:5f:3a:3f:a5:69:14:60:9a:0a:1b:c7:81:71:
b8:a1:3a:cd:c7:d1:84:83:ea:68:5d:fe:60:10:73:
25:7d:83:a5:79:82:b4:96:16:88:6b:0e:81:2f:4b:
52:e2:43:e1:a2:28:4e:c2:0b:f7:f9:1d:e6:cd:77:
ac:ef:64:de:ca:f7:04:12:a4:f9:9d:d1:7d:d7:a7:
60:72:43:4f:32:11:9b:dc:d0:d4:44:c4:a2:ea:04:
e6:06:e9:95:4e:78:b0:a1:8c:a6:dc:45:17:a9:9f:
df:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:17:5D:B3:B8:3D:AD:9F:CB:95:D3:DF:AF:05:4B:45:42:83:B4:5A
X509v3 Authority Key Identifier:
keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:65:21:07:eb:59:67:9e:80:01:8a:0f:09:03:a3:64:ef:e6:
e5:93:d5:0a:38:db:7f:9a:ce:57:54:ee:ed:6b:a4:09:6c:a3:
5e:b1:8b:19:87:10:d9:21:98:3a:b3:5f:e3:15:c9:f1:f6:2d:
25:5b:09:17:2b:b3:87:78:30:92:e2:27:3f:d7:f7:cc:81:df:
25:12:71:96:43:2e:3d:df:a4:5d:ab:3b:ba:78:00:7a:23:f1:
c6:a8:04:8c:15:1c:e9:56:db:3d:c7:3e:f8:da:fa:a1:3a:d4:
55:a1:41:25:95:46:27:1e:4b:80:29:30:6f:38:35:ae:24:ea:
1f:26:8b:b9:2f:56:86:0d:5e:82:c4:34:10:83:60:a5:22:10:
b3:21:86:f6:1a:f2:5d:b0:31:8e:60:a0:06:8d:5a:29:8b:62:
04:02:d9:92:ee:7e:92:b8:3c:b2:7c:a7:48:4e:e5:81:5f:ae:
49:27:f7:fe:c3:64:be:cc:6b:d8:78:73:bb:56:c1:80:be:b0:
4e:32:0b:5f:47:40:c8:7a:24:cc:2e:96:54:26:05:37:39:13:
18:4a:ea:11:8f:6d:0e:2f:ce:1f:6e:c9:59:7b:a2:44:4d:d9:
b7:08:70:72:da:f8:57:6b:5f:68:da:dc:54:b6:f4:d3:a9:5f:
94:2d:92:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:21 2025 by rpki-client