Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: uN7RZC4pPJhQlf+5mo7bhQHqhfgg/X9bV3bpE4KwJyM=
Subject key identifier: 10:BD:79:8F:B8:0B:19:F5:58:44:50:4A:D2:3B:78:43:BA:A9:8E:20
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 019A0C38E44860D16B15AACB1BD19C9FDD7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 04D7
Signing time: Wed 22 Oct 2025 14:00:46 +0000
Manifest this update: Wed 22 Oct 2025 14:00:46 +0000
Manifest next update: Thu 23 Oct 2025 14:00:46 +0000
Files and hashes: 1: X0-Djm0vHdUiJwsWds74O566gnw.roa (hash: wptFaY0ZwFbGnw/VuRN3robTidxbKoo/tyvxKrOBB/E=)
2: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: p/+x0qb26mEz+58Jt3kxuRrMcx3Ko7jByIt7yxUh4OI=)
3: wfeH5shQb9p8-APifaQwZCuXjuw.roa (hash: i3m8mYv5PGE+aCaz85jAgzkj3ipmT/iJy2vmh07ZehU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:38:e4:48:60:d1:6b:15:aa:cb:1b:d1:9c:9f:dd:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Oct 22 14:00:46 2025 GMT
Not After : Oct 23 14:00:46 2025 GMT
Subject: CN=10bd798fb80b19f55844504ad23b7843baa98e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:67:53:dd:82:3b:a8:ff:0b:c1:66:b8:ad:
e8:c8:9c:15:9e:f2:42:45:24:06:3a:53:8c:7b:03:
b5:7e:27:fc:3e:31:33:3d:1f:f8:c0:2e:84:e5:85:
13:ee:87:ee:de:ef:69:d7:de:e0:bf:ea:94:89:ca:
01:be:3d:ef:7e:1c:bd:5a:eb:66:a8:e0:f8:a0:de:
46:11:32:51:1e:bc:e0:fb:4e:22:6a:a9:1e:92:1a:
e2:a9:76:2e:2f:63:0f:aa:a8:a3:aa:ca:5d:79:d3:
18:e9:c1:45:a8:af:2b:a1:19:7c:b1:fd:9c:ff:8b:
9f:f1:87:ba:82:d6:85:e5:df:c3:22:f0:5e:e5:c0:
6a:ab:49:2d:4d:30:a8:28:59:da:b0:61:a6:44:3c:
28:ff:17:6e:3b:7e:b4:33:46:99:b5:bd:01:fa:2b:
de:f8:0e:8f:eb:fc:91:b9:cc:02:9c:59:d8:ca:c7:
55:99:09:81:fa:ca:19:72:6d:a2:e5:3f:01:5b:ee:
06:10:6e:e9:4e:7d:8b:f1:d3:f4:15:1c:78:5f:73:
f4:bf:90:8d:f8:70:0a:53:5b:bc:11:34:5c:98:09:
fb:1e:75:51:e3:b2:95:80:f8:c7:d0:64:5d:15:6c:
05:8e:98:7a:a0:72:04:38:b3:4e:54:c3:15:2d:e6:
2d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BD:79:8F:B8:0B:19:F5:58:44:50:4A:D2:3B:78:43:BA:A9:8E:20
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:18:b1:fc:09:cd:07:a9:1a:5e:5e:17:36:6f:e7:e9:f4:bc:
b2:31:2f:8c:e9:05:60:53:6f:02:23:d8:da:7d:27:36:cc:6d:
2e:60:e4:3d:6b:48:c3:50:a8:53:36:b2:92:fd:ff:53:63:09:
db:58:8d:cd:c1:d3:f7:ac:a1:69:96:ca:54:15:ff:e1:c0:0e:
d3:e9:7f:26:95:87:ee:ac:59:d2:fd:b5:12:bb:4b:7e:89:dc:
05:f7:b6:c2:49:89:20:b8:cd:97:d3:63:b0:2d:6d:50:bb:e5:
e9:e8:ee:61:36:1b:dd:55:bd:30:53:97:5a:33:74:5e:69:85:
b9:7c:24:13:40:82:d1:ea:1a:83:d6:23:20:97:8f:80:99:b6:
b9:74:6a:8a:a2:49:6b:53:a6:cd:44:7f:f2:36:90:ad:5c:c0:
60:ac:e9:44:66:d3:9a:85:01:ad:b3:f3:4f:10:d4:6b:01:70:
83:8e:cb:e2:9f:f0:ce:ea:09:22:e9:91:9a:9e:d0:13:75:a4:
1e:62:db:c3:3c:cb:16:44:24:e5:20:0d:31:7d:0b:42:d1:a8:
40:b2:d5:8b:c7:4a:24:a3:57:ee:c7:68:94:48:06:69:f2:70:
4a:f6:91:a2:f1:01:ea:56:a5:87:2d:b0:5c:38:2d:4e:89:06:
4f:b8:17:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:00:23 2025 by rpki-client