Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier: /hPrxeGVyN1/onNehpV4cBSCdP+zH44K3+v8CepKFBk=
Subject key identifier: 64:75:6B:BC:A0:F2:4C:FF:AD:7A:32:ED:60:A9:C2:C1:2B:3C:C6:27
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 019A714A1E622AE17DAEAB272D500CB8A10C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number: 1119
Signing time: Tue 11 Nov 2025 05:01:14 +0000
Manifest this update: Tue 11 Nov 2025 05:01:14 +0000
Manifest next update: Wed 12 Nov 2025 05:01:14 +0000
Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: lPCyU7dufcjssny4cwS8kH+RZ8jtXbbhtYhKKucnL9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:1e:62:2a:e1:7d:ae:ab:27:2d:50:0c:b8:a1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Nov 11 05:01:14 2025 GMT
Not After : Nov 12 05:01:14 2025 GMT
Subject: CN=64756bbca0f24cffad7a32ed60a9c2c12b3cc627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:92:4b:92:5f:c6:36:3b:66:6e:e8:87:47:cd:
77:a6:21:ea:a1:61:d7:a2:1b:94:00:e7:b0:ad:41:
49:61:f7:63:19:db:48:f9:a0:ac:b5:a8:15:7f:42:
bd:6a:2c:a9:c5:e1:53:c4:82:b1:91:53:01:7d:6d:
83:d2:b4:9b:aa:fc:eb:a4:8c:14:e2:98:11:8b:32:
2c:ec:3d:7f:1e:84:39:8f:26:e2:12:fb:88:d2:e8:
e9:0a:6f:ec:37:80:d0:32:42:f1:d7:d9:de:d5:46:
e9:72:5a:94:19:0f:93:3b:e5:a2:c0:7b:85:fd:a9:
78:29:ec:1a:2f:23:28:6f:0c:cb:6b:96:3c:a0:4a:
eb:85:aa:e6:43:9c:78:37:10:d9:91:54:71:99:a4:
ff:1f:86:44:4f:98:43:6a:5d:34:5b:30:4a:da:7b:
2d:37:6f:9d:4f:73:45:b5:99:0c:21:f3:21:bd:d5:
a1:bd:b6:20:c4:c5:09:97:36:9a:cd:ea:05:61:cd:
1b:64:e8:94:7f:42:cf:0a:93:76:b4:9b:a4:e9:a2:
16:b4:c2:77:4d:b4:60:a0:6b:99:69:ba:d7:b9:2f:
54:00:2c:e7:92:35:ce:38:23:5d:1c:90:24:d2:fb:
c6:ac:23:34:15:a6:0b:d1:33:41:42:53:43:fe:87:
33:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:75:6B:BC:A0:F2:4C:FF:AD:7A:32:ED:60:A9:C2:C1:2B:3C:C6:27
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:20:4a:92:00:b8:d1:0c:c8:e2:99:2f:ed:c5:49:44:94:d0:
ed:88:2d:1c:35:4e:c0:9d:7e:ae:16:96:62:87:94:ba:29:1b:
76:0d:3e:9e:90:25:b0:b3:2b:b6:36:83:67:6a:a4:9b:fd:83:
a6:42:b5:d1:65:c5:7e:51:98:df:99:b7:d7:91:68:f9:77:ea:
ba:42:2c:ba:b6:3e:e1:dd:81:e8:29:09:2f:74:6a:05:5c:f8:
0c:d3:31:be:18:03:ea:ac:a7:2c:b0:96:9b:3d:42:13:5f:0b:
f7:56:c0:bd:54:f6:05:34:7c:a4:cc:f2:35:b8:f5:c5:cd:3d:
a5:d2:32:5f:54:ae:89:be:4b:d7:a5:93:2d:59:7e:b6:5b:81:
eb:ff:55:5d:41:7d:39:51:f6:64:99:08:00:01:51:0c:50:d8:
b4:e1:00:92:f0:a2:c5:9c:5e:ab:70:75:a7:87:9e:7d:ea:4b:
d3:63:a0:3a:6f:53:29:6b:bd:6d:84:f6:5f:63:ad:f5:fc:aa:
7a:90:5b:bc:bf:d3:e7:d1:44:9b:d2:df:94:80:a3:b1:e8:f0:
6a:22:1a:c4:e7:94:cc:59:f8:ca:c2:e5:50:91:9d:89:05:f1:
a0:c2:ed:19:23:d6:fe:f5:3e:3c:6a:ec:cf:72:62:b7:5d:02:
5d:5c:a4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:34:56 2025 by rpki-client