Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: zaxdDtvDKtAnPrXfO7vXL4tie8tpaXtreNXGJejVWX0=
Subject key identifier: 26:86:6F:19:1B:EB:00:FA:5D:D8:BA:0F:AA:2A:A2:72:56:E5:BF:F9
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 019A71B8195FE3AF6F049678B1B5CD724E84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0E46
Signing time: Tue 11 Nov 2025 07:01:21 +0000
Manifest this update: Tue 11 Nov 2025 07:01:21 +0000
Manifest next update: Wed 12 Nov 2025 07:01:21 +0000
Files and hashes: 1: f3Wn9TOfcfxB3VYXWanqfMC6WRI.roa (hash: CJSEzeKkH+A8u48zVCzb/MrI7FvV/Beze1CPp3UTLZU=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: bhoyfpj8Z4uqfi70HSENOJkROZqcnC4P/+omfGM6v60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:19:5f:e3:af:6f:04:96:78:b1:b5:cd:72:4e:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Nov 11 07:01:21 2025 GMT
Not After : Nov 12 07:01:21 2025 GMT
Subject: CN=26866f191beb00fa5dd8ba0faa2aa27256e5bff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:af:0d:e0:3b:45:67:13:d7:72:f2:6e:85:
6c:52:7f:6f:78:c2:03:ab:55:b8:f2:67:b6:2f:78:
ef:61:ff:69:62:ec:b5:e3:10:61:bf:0a:b0:27:af:
69:87:71:e9:5c:de:94:5f:58:4b:95:e0:9b:3b:47:
2f:bb:f9:68:d7:78:ed:38:2d:ca:6c:89:10:01:a5:
3e:13:cf:f7:f5:92:e9:ad:e4:50:bd:40:7c:c1:21:
0f:c8:ba:91:70:07:f0:61:6b:78:c0:f4:00:aa:cf:
9d:83:3e:9a:82:79:ca:3f:6a:db:5a:57:a1:fb:de:
d5:b9:9f:1f:3a:ff:c8:6d:b9:fd:97:ab:36:a7:c9:
3e:36:8d:3b:54:42:00:8b:56:aa:16:5b:80:7e:cd:
3b:2a:82:e4:70:8c:c1:bc:30:79:f7:7e:e5:df:6f:
04:5c:ab:f5:09:01:07:30:ef:c1:8b:f5:27:8c:8d:
27:1f:40:16:35:ea:8d:09:04:bb:2e:9b:d5:bb:63:
12:33:a3:66:12:9b:61:56:36:53:c6:68:a3:5d:92:
6f:3c:f8:05:f6:3b:91:26:ed:3c:0d:58:3c:35:8d:
57:18:e9:f2:cd:d0:55:34:1f:2a:fd:aa:03:25:fa:
30:66:55:22:24:28:db:00:9d:c8:cb:4a:bd:e1:44:
61:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:86:6F:19:1B:EB:00:FA:5D:D8:BA:0F:AA:2A:A2:72:56:E5:BF:F9
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ca:34:fc:4b:bf:10:20:52:f6:0d:47:e8:37:2a:c4:60:da:
9b:56:8c:a2:e6:e2:36:99:dc:c9:7b:9c:2a:2f:e4:80:a4:5d:
f6:8b:48:da:1c:94:b8:97:a7:34:e2:59:8d:46:cb:91:24:1a:
28:00:b7:d0:7c:22:ed:16:e0:89:49:04:ca:ff:5e:bb:3d:63:
92:a9:99:73:d5:3d:aa:41:b6:bb:69:29:2a:ff:a9:48:6c:e5:
66:14:f0:f7:f4:e6:f2:7e:7b:83:56:fc:77:3c:57:95:28:bd:
95:5a:0c:5f:f7:05:69:a3:30:e2:ac:bc:04:72:aa:08:c4:cf:
eb:f2:80:99:71:fa:7e:af:ee:a8:da:15:b9:50:43:90:dd:3b:
f6:5c:01:45:6d:27:bb:6a:35:40:7b:78:1e:04:49:71:2b:86:
dc:20:43:54:f0:a3:03:dc:04:54:3c:78:8a:a4:67:4d:9f:d7:
1e:7b:ae:cb:fd:d8:79:15:b8:9f:13:24:32:ad:52:3a:2d:0d:
7b:03:64:5b:c0:cd:e7:cb:aa:fe:4d:60:ab:11:99:0c:fb:f8:
f7:0a:f8:89:b5:e8:94:1b:a7:97:1f:87:79:85:b7:a0:a0:ee:
88:f7:af:4e:0e:d2:50:18:85:0a:27:4e:81:7d:91:66:30:01:
2e:08:e2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:46:19 2025 by rpki-client