Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: yhvzrx72CfkETgJ/RQKvOYYKu/C7LGA0c3buNmeLOzc=
Subject key identifier: FC:C9:E3:A3:DF:05:F6:E3:3A:25:A2:58:12:00:00:60:9C:00:A0:34
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 019A71EE79E3A4DCE33238B03E2A15F27795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 06CA
Signing time: Tue 11 Nov 2025 08:00:45 +0000
Manifest this update: Tue 11 Nov 2025 08:00:45 +0000
Manifest next update: Wed 12 Nov 2025 08:00:45 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: 0/YW8VvXorYExa6hyDtQh9SPQhipoLeolZE/EdDqOso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:79:e3:a4:dc:e3:32:38:b0:3e:2a:15:f2:77:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Nov 11 08:00:45 2025 GMT
Not After : Nov 12 08:00:45 2025 GMT
Subject: CN=fcc9e3a3df05f6e33a25a258120000609c00a034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a3:ba:29:70:89:71:83:c7:1e:0d:3f:01:d3:
e6:74:28:cf:d8:ba:fd:c4:30:e4:1c:75:e0:d9:cb:
a1:9d:71:e9:bb:d5:f9:7b:52:6d:e0:49:2c:75:a2:
34:b9:4a:85:bb:94:5e:20:22:a6:aa:e5:51:7c:dd:
80:35:0e:b9:84:89:a3:78:b4:da:4e:6a:a1:ab:4e:
1a:7f:ad:62:fa:3d:f1:50:85:ea:64:c4:f0:f6:19:
00:4f:a0:ce:96:da:4a:01:76:0f:0c:1f:cc:62:c5:
78:06:0d:36:4f:28:69:24:a7:ab:00:d7:e1:71:67:
bc:6b:23:fb:4e:93:68:aa:c0:5b:a3:eb:34:67:7c:
93:48:e7:14:ea:1c:9a:6f:f8:28:51:0e:86:71:7b:
ae:49:f6:4a:0b:ca:71:a2:7f:59:92:29:88:38:af:
0a:79:91:96:27:6c:59:c8:72:74:9d:89:1b:07:17:
ea:66:71:22:e3:b4:a9:92:7a:aa:38:59:a0:bb:53:
14:55:9f:02:b9:d6:02:11:de:06:cb:3c:23:6f:a1:
37:fe:d8:5b:7e:3d:01:6b:7e:37:cc:57:42:f8:7b:
a0:5e:b3:a3:0d:99:3f:71:21:30:cc:64:26:af:f9:
86:2f:a8:e0:6e:7d:e8:16:26:f1:01:5b:9d:ad:b6:
5e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C9:E3:A3:DF:05:F6:E3:3A:25:A2:58:12:00:00:60:9C:00:A0:34
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:15:41:9c:ed:d6:a5:fa:05:b9:63:40:1c:be:9a:ec:62:b7:
3a:31:22:02:d0:eb:4b:2e:0f:28:f6:63:20:7d:b4:84:49:12:
b4:2b:6e:30:31:33:5e:ca:86:4e:8b:5c:b4:70:79:f8:cb:96:
da:0a:1c:7c:af:87:92:56:08:2c:35:55:34:c3:70:d7:b8:b3:
1a:0d:ab:2c:c6:22:49:cc:e9:a6:03:b6:12:52:3f:50:04:07:
dd:59:fa:ef:60:29:91:3d:d4:75:de:ab:65:47:fd:18:79:c5:
e3:0f:e7:9f:79:13:91:fa:2c:fb:ca:10:58:f4:05:dc:11:24:
11:e7:9c:3a:31:38:ee:cb:2a:b6:c0:6b:2f:84:61:8c:b1:f0:
ac:a0:fc:e4:d7:21:ee:63:45:69:45:9d:a0:43:16:b3:f3:73:
f0:c6:11:ab:97:d8:96:03:9d:44:d0:1d:d1:27:02:76:d8:b8:
fd:fb:a6:fb:08:11:b7:3b:47:8a:96:33:9f:a4:ce:ef:98:2a:
46:9e:a8:43:c1:4a:41:b3:ac:74:51:b4:32:d5:61:9a:8f:c9:
91:f9:a9:9c:7f:22:cf:5e:50:27:01:80:64:40:e6:77:8e:b7:
5f:06:44:40:aa:09:b8:19:3e:4e:59:23:18:78:93:f1:6b:5e:
d4:28:1f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:23 2025 by rpki-client