Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: svdwYwbB3YxA3o4MrL6gxTip350A2Hh1mEWX92AQFUE=
Subject key identifier: 78:D0:42:49:DC:88:F7:F4:E5:18:59:B9:0B:83:F0:5C:A3:6C:D6:B5
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019A1CF59592BA4159B03053D5165CF56861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 06BD
Signing time: Sat 25 Oct 2025 20:00:47 +0000
Manifest this update: Sat 25 Oct 2025 20:00:47 +0000
Manifest next update: Sun 26 Oct 2025 20:00:47 +0000
Files and hashes: 1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=)
2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: e1YKLBtKC3GvsTecf2UqIubhZrypIuBYVY4u1jLRvQc=)
3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=)
4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:f5:95:92:ba:41:59:b0:30:53:d5:16:5c:f5:68:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Oct 25 20:00:47 2025 GMT
Not After : Oct 26 20:00:47 2025 GMT
Subject: CN=78d04249dc88f7f4e51859b90b83f05ca36cd6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5f:37:80:78:66:fc:a1:6a:27:f3:68:ab:91:
64:43:39:f8:25:f9:8c:a9:5f:dc:30:c1:b3:ec:9a:
7a:4e:4a:d5:b7:95:02:18:d4:2e:7f:a0:4c:66:35:
2b:43:2f:ea:f0:1c:fe:9c:ab:9c:3c:60:f1:6d:9c:
b7:18:10:81:70:7d:68:fa:f0:55:c6:5d:ea:de:5b:
10:9a:63:e4:84:38:c6:1e:52:f7:38:52:ef:ad:f1:
2f:48:7c:98:58:39:15:e6:99:d4:c5:67:a4:66:5f:
a9:fb:b3:eb:22:4d:05:74:2d:06:2b:7a:28:de:5c:
f2:2e:1d:aa:62:fa:b2:eb:8d:ee:3e:18:dd:ef:b3:
bc:91:fe:bd:49:59:5f:b1:d1:35:ef:3d:39:e7:f5:
cc:f7:b3:f3:f4:3e:9a:d5:ef:5f:61:29:3a:58:00:
9a:4a:45:59:95:40:28:8f:c0:db:0e:66:0d:68:6a:
cf:8f:cf:a1:27:7c:6a:73:8f:87:16:2a:6c:84:8f:
71:eb:50:75:c0:2f:da:6e:a0:5d:4a:98:49:28:c7:
b5:1f:02:b7:fe:fd:de:aa:ba:d1:cf:37:ab:89:c0:
40:56:66:97:03:5e:99:7a:50:7d:dd:9a:f2:6c:82:
c4:4b:d6:ff:8b:3d:21:01:b0:7a:62:4b:88:bc:fe:
c4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D0:42:49:DC:88:F7:F4:E5:18:59:B9:0B:83:F0:5C:A3:6C:D6:B5
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:ca:6e:d3:87:55:ae:ea:af:97:1c:8a:7f:d2:e0:78:e0:6d:
23:cc:0c:9d:b9:a9:1e:9b:d7:aa:7b:f2:5c:c3:07:36:f4:67:
68:bf:3b:ce:a3:dc:40:7e:3e:84:33:a9:58:d8:9c:b7:d0:2e:
a8:84:48:fa:ac:c9:44:33:ee:a1:f1:49:d7:87:46:26:eb:de:
c5:c9:b3:29:74:45:cf:2b:b3:1c:66:5f:c9:28:4f:18:5e:b4:
11:1c:62:bb:76:06:c7:2c:6d:3e:04:c9:97:ef:3b:57:48:24:
0e:1f:3a:91:e5:ba:48:e6:e0:bd:7c:85:dd:3e:0e:43:37:0a:
66:7e:01:34:98:b4:12:2f:9d:4d:c0:0f:c7:ac:ee:34:14:ea:
e2:36:74:20:d1:65:1a:dd:c0:bf:cd:eb:b1:89:19:f8:9f:5e:
77:b4:d7:28:94:4c:84:4e:95:93:fc:33:74:92:6c:10:17:d6:
6e:c8:5a:77:9c:47:ef:52:19:54:ca:c4:b8:02:24:11:e9:78:
85:26:91:d8:dd:5d:ce:d3:08:27:6b:ba:5f:a5:15:1d:01:7d:
45:f7:21:e0:e3:86:61:11:12:19:8b:e7:f4:c4:43:fd:75:25:
77:e6:3d:9d:d6:e2:2c:c7:b2:d8:89:fa:8f:4b:40:96:68:12:
78:26:f0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 03:18:09 2025 by rpki-client