Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
File: oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft (raw, json)
Hash identifier: qTeQ+tIOOy3UsLarUqqGlxJ626CiIkAP0z6bDYRnhN4=
Subject key identifier: 46:F7:80:82:47:B0:EE:EA:EA:ED:C3:7F:E8:5F:5C:86:DC:A5:36:7E
Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Certificate serial: 019A71B82A2AD5487B6BC38C9CAAA691A1ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
Manifest number: 0391
Signing time: Tue 11 Nov 2025 07:01:26 +0000
Manifest this update: Tue 11 Nov 2025 07:01:26 +0000
Manifest next update: Wed 12 Nov 2025 07:01:26 +0000
Files and hashes: 1: KVGzhURun_Z2Cbls6jKq8-siUnI.roa (hash: ICdbcaL6JuM+fFFA7u9Ui1orbNqbZysTahR0X2YtQkM=)
2: hSxuqdFakuVuEvKUogCcsFaigPs.roa (hash: Xj6H7DBsScqxHUyFTpNMVSRKFfZSSLZGI1xOM2DNsyc=)
3: oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl (hash: GrMGN7nzThfMPzSQlXaWfxYwgGRQ0DQRVQ3NQbxKGBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:2a:2a:d5:48:7b:6b:c3:8c:9c:aa:a6:91:a1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Validity
Not Before: Nov 11 07:01:26 2025 GMT
Not After : Nov 12 07:01:26 2025 GMT
Subject: CN=46f7808247b0eeeaeaedc37fe85f5c86dca5367e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a9:8c:d0:be:97:a5:17:c0:cc:dd:4b:80:97:
b4:df:de:c0:4b:fe:b4:0f:4e:91:da:ed:f5:2f:6b:
fc:3e:37:6b:4f:c1:c8:c7:fc:c9:13:f0:e1:3c:a4:
26:bf:bc:9f:b0:a1:1b:fe:87:33:8c:84:24:e8:cb:
9f:18:84:99:57:27:9b:e8:28:22:1d:1f:98:2c:14:
0b:05:ca:32:0c:a0:e7:3c:b4:6d:cf:fc:12:ac:be:
12:55:e8:85:11:27:2c:51:4e:53:05:55:da:c7:82:
3e:2e:d3:c0:a5:65:db:1d:16:e4:c3:ff:35:d0:ae:
cf:2e:4a:73:1d:d9:28:bb:95:32:67:f4:30:e0:ec:
bf:e8:47:9f:27:2a:05:01:a8:d6:d8:31:a0:79:ad:
a6:6e:ec:02:e3:ee:51:a9:04:8b:ee:73:2e:8e:bd:
97:da:11:38:4b:6c:a1:5f:00:ab:18:c4:04:6f:77:
f0:0b:51:a7:ad:95:1b:b8:44:0a:24:c9:1f:cf:7c:
7b:e6:a8:85:32:39:fd:bb:9b:7b:55:b2:83:0c:db:
76:48:37:38:8a:26:b9:55:1c:de:94:0f:92:3e:7a:
1f:87:1a:62:79:78:4d:aa:c1:c9:a1:ef:8d:a8:93:
03:3a:d4:2f:31:9b:f8:f0:12:96:52:97:52:72:58:
b8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F7:80:82:47:B0:EE:EA:EA:ED:C3:7F:E8:5F:5C:86:DC:A5:36:7E
X509v3 Authority Key Identifier:
keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:71:75:3e:b4:12:ca:9a:c9:38:27:0d:f8:16:45:c8:79:9b:
b2:12:d4:d7:bd:6c:4a:1f:62:79:22:28:e2:50:b1:a4:44:2f:
04:e8:6c:05:3d:ed:72:45:56:df:b2:58:1b:72:2a:19:15:ee:
57:e4:ff:46:52:b0:16:d7:fd:50:dd:7b:41:d6:57:29:9f:c4:
b2:73:83:43:33:9c:a7:97:05:18:93:52:d1:8d:4a:22:74:94:
43:33:ac:1a:12:a2:5e:b6:f8:3d:25:3e:77:53:d5:cb:34:f5:
39:60:af:e8:d1:ac:72:d6:4d:0d:b0:52:43:80:39:78:80:fa:
9e:4a:17:95:fd:85:42:09:f3:00:2b:37:1d:96:33:bd:5b:1c:
de:73:8a:64:32:ed:f3:9f:8c:cb:7a:ea:25:79:78:24:eb:44:
ee:9d:8e:7e:59:3e:ea:55:c8:86:29:30:39:3d:1e:28:37:e0:
8e:de:96:59:5a:7b:58:03:c0:6a:04:84:a8:77:cf:d0:8f:b9:
0c:6d:45:5a:ad:45:a3:f8:29:4b:78:0a:f1:7a:3d:d6:ce:06:
38:65:e6:7a:08:61:3c:46:36:0e:11:2a:10:3d:c2:d4:30:30:
f8:fd:a4:1b:e5:e8:3e:89:96:b4:78:0a:4a:69:fb:c9:7c:26:
d3:57:59:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:42 2025 by rpki-client