Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
File: OExBksVwSp65aPXPUzuaH3pmYa0.mft (raw, json)
Hash identifier: eRhIYYELoLH44cgfXEX0W+mT00dWXN3YUYPL98ENfGY=
Subject key identifier: CD:97:C3:41:E7:23:5E:8A:B4:D9:E1:F2:CA:80:9A:A3:F5:A9:4D:48
Authority key identifier: 38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
Certificate issuer: /CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Certificate serial: 019A7149E349F9462DDBA38A286FBCB9E78D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
Manifest number: 02F8
Signing time: Tue 11 Nov 2025 05:00:58 +0000
Manifest this update: Tue 11 Nov 2025 05:00:58 +0000
Manifest next update: Wed 12 Nov 2025 05:00:58 +0000
Files and hashes: 1: OExBksVwSp65aPXPUzuaH3pmYa0.crl (hash: kwYlu9lJFFh9kexEhog2ATXBD2n85LXupZZdsEmbqGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:e3:49:f9:46:2d:db:a3:8a:28:6f:bc:b9:e7:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Validity
Not Before: Nov 11 05:00:58 2025 GMT
Not After : Nov 12 05:00:58 2025 GMT
Subject: CN=cd97c341e7235e8ab4d9e1f2ca809aa3f5a94d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9a:cb:04:84:5b:b9:36:4f:d7:5a:fd:c6:38:
35:7a:f1:d0:13:94:24:9e:53:c2:10:b1:e0:ce:1b:
98:ef:a8:63:36:a5:09:36:37:c4:01:d1:6a:40:66:
7e:79:b0:75:d3:51:ab:c8:02:5b:68:8f:98:8d:53:
62:e3:cf:81:7b:4c:df:9b:2a:a1:8d:8b:c5:bc:ac:
4d:68:53:20:64:6b:3d:f2:4e:5d:aa:52:96:28:2a:
24:b6:f7:ac:31:d9:54:3c:2c:77:45:17:8c:28:03:
7a:f2:ed:62:6a:21:16:89:b8:4d:7f:9d:4a:c3:6e:
c8:fd:ff:12:a3:53:1f:38:f2:ae:12:0f:bf:0d:7f:
77:23:66:31:dd:32:c3:57:ed:16:7e:84:66:40:ac:
a0:5d:d6:fd:8d:9b:f8:a4:88:34:42:0d:2d:bd:6f:
3e:fc:5e:50:3e:ce:d2:d0:e5:ad:c0:21:97:23:8f:
f9:c5:3e:26:4a:ba:11:c0:39:d8:20:49:42:8a:16:
0b:5d:71:5d:19:2b:9a:9b:04:9f:7a:5c:61:f9:ca:
0d:ed:e4:7b:86:f6:ca:db:52:0b:94:9f:af:2c:ed:
a6:7b:13:01:1f:c7:d3:69:1e:d5:ff:ff:78:de:47:
75:bd:c5:ca:a2:cd:36:b6:5a:26:b0:00:15:5f:01:
ed:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:97:C3:41:E7:23:5E:8A:B4:D9:E1:F2:CA:80:9A:A3:F5:A9:4D:48
X509v3 Authority Key Identifier:
keyid:38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:6e:3e:3c:c4:2e:48:fc:7f:8b:3f:ab:c5:b3:65:60:f7:fa:
06:2b:f1:8d:9c:09:bc:6b:53:2f:9e:39:18:3f:85:81:9f:d5:
64:03:1c:5f:5d:20:8e:ac:4a:15:c3:8c:08:8a:01:c6:e3:9d:
36:1e:4b:b7:17:7f:a7:80:08:3c:c5:50:04:42:fc:c6:71:c4:
6f:45:a3:30:18:e7:63:90:56:34:e3:06:e3:f1:53:d1:6f:4d:
c3:e5:ba:fd:5b:9e:cc:73:44:57:b1:1c:3f:55:6e:aa:c5:9d:
b8:1d:53:8c:6b:b0:2f:36:bf:5b:5d:a0:04:b9:2e:c9:6d:12:
5d:f2:79:3c:2a:e3:3f:25:c0:59:75:6f:c2:48:cf:b3:27:f0:
a9:23:2a:7a:18:bf:5c:1f:c1:62:26:a2:e0:ca:4e:3c:3b:f9:
7a:9a:f7:b0:02:6f:62:fc:67:0e:2f:7d:1d:8f:8e:88:7f:16:
f8:b3:5a:07:0a:fa:d0:a9:5d:36:27:3b:b0:6c:f4:0f:c6:51:
b9:4a:a6:0b:12:1b:7e:1a:6b:09:6d:5a:63:b9:26:c1:22:b2:
67:5f:45:40:16:f4:fc:aa:7e:9f:1d:77:b5:2f:ab:59:35:c0:
3a:50:7d:22:1f:c7:b8:58:9d:ad:6d:43:3b:4c:b9:02:72:64:
28:cc:21:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSeNJ+UYt26OKKG+8ueeNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NGM0MTkyYzU3MDRhOWViOTY4ZjVjZjUzM2I5YTFmN2E2
NjYxYWQwHhcNMjUxMTExMDUwMDU4WhcNMjUxMTEyMDUwMDU4WjAzMTEwLwYDVQQD
EyhjZDk3YzM0MWU3MjM1ZThhYjRkOWUxZjJjYTgwOWFhM2Y1YTk0ZDQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5rLBIRbuTZP11r9xjg1evHQE5Qk
nlPCELHgzhuY76hjNqUJNjfEAdFqQGZ+ebB101GryAJbaI+YjVNi48+Be0zfmyqh
jYvFvKxNaFMgZGs98k5dqlKWKCoktvesMdlUPCx3RReMKAN68u1iaiEWibhNf51K
w27I/f8So1MfOPKuEg+/DX93I2Yx3TLDV+0WfoRmQKygXdb9jZv4pIg0Qg0tvW8+
/F5QPs7S0OWtwCGXI4/5xT4mSroRwDnYIElCihYLXXFdGSuamwSfelxh+coN7eR7
hvbK21ILlJ+vLO2mexMBH8fTaR7V//943kd1vcXKos02tlomsAAVXwHt1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2Xw0HnI16KtNnh8sqAmqP1qU1IMB8GA1UdIwQY
MBaAFDhMQZLFcEqeuWj1z1M7mh96ZmGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0V4QmtzVndTcDY1YVBYUFV6dWFIM3BtWWEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS82MjA1NzctZGZkOC00ZjIzLWE2NTAt
ODNiZTQxOGFhN2Y0LzEvT0V4QmtzVndTcDY1YVBYUFV6dWFIM3BtWWEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS82MjA1NzctZGZkOC00ZjIzLWE2NTAtODNiZTQxOGFhN2Y0
LzEvT0V4QmtzVndTcDY1YVBYUFV6dWFIM3BtWWEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAG4+PMQu
SPx/iz+rxbNlYPf6BivxjZwJvGtTL545GD+FgZ/VZAMcX10gjqxKFcOMCIoBxuOd
Nh5Ltxd/p4AIPMVQBEL8xnHEb0WjMBjnY5BWNOMG4/FT0W9Nw+W6/VuezHNEV7Ec
P1VuqsWduB1TjGuwLza/W12gBLkuyW0SXfJ5PCrjPyXAWXVvwkjPsyfwqSMqehi/
XB/BYiai4MpOPDv5epr3sAJvYvxnDi99HY+OiH8W+LNaBwr60KldNic7sGz0D8ZR
uUqmCxIbfhprCW1aY7kmwSKyZ19FQBb0/Kp+nx13tS+rWTXAOlB9Ih/HuFidrW1D
O0y5AnJkKMwhrg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:08 2025 by rpki-client