Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: /0GLEcGhNERmI72fH/0RjegLanBSN9I7eGcRVJ4E1Ng=
Subject key identifier: 4A:45:05:E2:39:EB:3C:12:E8:4E:E3:EB:26:B7:BE:E4:57:35:91:E0
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 019A72267B1AF225943F1D386D24829C32A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 161F
Signing time: Tue 11 Nov 2025 09:01:55 +0000
Manifest this update: Tue 11 Nov 2025 09:01:55 +0000
Manifest next update: Wed 12 Nov 2025 09:01:55 +0000
Files and hashes: 1: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: FunCQAnEtntVdbO9Ve6K2k3lwfM0R/r94VBVLgZicTw=)
2: hE2ePAizZlQUV6uXdZuzIjMthNQ.roa (hash: +KNuL0RhbzwD+ZdqGTxpdbmElk+6cn62429cYK2AHFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:7b:1a:f2:25:94:3f:1d:38:6d:24:82:9c:32:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Nov 11 09:01:55 2025 GMT
Not After : Nov 12 09:01:55 2025 GMT
Subject: CN=4a4505e239eb3c12e84ee3eb26b7bee4573591e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1a:61:3d:f9:21:e4:83:98:be:1e:0d:d3:8e:
63:4f:22:c3:5b:49:25:e8:bc:1a:ae:c0:33:2c:1e:
da:cd:99:a8:b2:02:bd:f9:9b:09:15:71:a0:b6:e6:
e0:5d:99:78:55:9c:33:1c:cf:60:0e:d3:33:b1:aa:
e6:d3:13:c0:00:18:24:6d:1c:c1:02:28:b7:14:79:
43:e2:5a:b3:d4:3b:bc:1f:ae:ce:4e:ad:1a:24:5b:
52:9d:30:ad:6f:7d:79:76:f2:8e:56:a9:b5:5c:61:
88:24:85:ca:24:07:25:5c:c9:4c:f2:52:c2:af:96:
8d:5d:3d:7d:9a:e9:89:22:2e:92:64:22:ac:f3:84:
c0:1a:aa:ea:1d:e1:58:e6:c3:05:cc:b7:fe:95:b2:
87:72:0e:33:a2:ed:19:90:28:4c:6b:50:78:cf:89:
fa:b7:39:15:e8:8e:bd:a8:b2:6e:27:0f:8c:05:12:
48:92:41:2e:e3:6c:80:0f:c8:8b:27:61:78:83:4b:
f9:e6:51:42:5b:0c:e3:bc:f8:05:35:e7:25:4c:c8:
e0:1f:36:b6:55:60:89:7f:01:92:a2:cf:80:2a:0c:
6e:c3:47:c9:7a:4a:f0:91:be:c9:54:00:d3:0f:50:
5d:92:bc:09:36:93:63:1f:00:29:04:9f:36:5e:d5:
37:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:45:05:E2:39:EB:3C:12:E8:4E:E3:EB:26:B7:BE:E4:57:35:91:E0
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b8:ec:51:ef:b8:82:d8:e9:80:f8:a6:a3:2c:31:61:ac:9b:
8d:39:ae:fa:b2:ee:83:f9:a2:a3:f1:b6:c1:48:65:0c:58:65:
f3:c7:1e:fd:18:3e:5a:42:53:2a:e7:69:25:45:b7:a9:17:1f:
11:68:73:ce:1a:fd:2f:be:88:fb:c0:99:48:e2:ea:87:3c:6d:
fd:aa:44:f8:3f:cc:0a:71:0a:f1:39:28:bb:b5:85:47:5c:d2:
6d:0d:d4:63:70:3f:35:55:38:4f:3c:0e:34:06:83:ad:26:56:
5a:9e:e5:a9:1a:0c:bb:96:c5:f9:69:aa:1e:eb:85:f9:b3:1e:
48:63:cf:42:cc:f7:69:db:93:bf:26:b5:d9:2f:0a:39:03:e1:
88:99:fe:48:15:75:ce:bb:f9:f6:f7:08:26:86:46:89:5c:e7:
96:6f:e2:d2:6d:bf:95:d0:e6:83:b4:04:c1:71:06:47:4b:01:
3d:3e:17:6b:38:5e:2c:6e:60:5c:86:e7:88:20:f2:7d:e1:ac:
5b:f0:11:07:15:4a:7f:88:1f:98:80:7b:65:3d:a8:c2:9b:1a:
5b:25:1f:2b:e1:0b:21:70:9e:ca:b1:e5:1e:0e:a2:18:4b:3a:
81:9c:7d:06:76:79:d6:8a:a7:6f:87:96:44:1e:e7:d3:a0:2d:
92:b6:e6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:35:50 2025 by rpki-client