Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
File: oJRwOdnwgKQn91JcXQZvbPYhNPM.mft (raw, json)
Hash identifier: pHnNywcyDB6NKeht2xmBtTkfFwQnzK0H0YYD0uxxeKQ=
Subject key identifier: FD:D0:9D:ED:BA:AF:1E:7A:01:06:59:1F:5A:8E:4B:C5:31:64:9F:0B
Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Certificate serial: 019A714A035737E535D141D9D1BE5B2D4BDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
Manifest number: 0899
Signing time: Tue 11 Nov 2025 05:01:07 +0000
Manifest this update: Tue 11 Nov 2025 05:01:07 +0000
Manifest next update: Wed 12 Nov 2025 05:01:07 +0000
Files and hashes: 1: 2CUF8fkBOk7BwaT2x7tRMW9KGPA.roa (hash: czarYHJez6qAV6nXVQK9tcHYXpAXKKAJjoacYgptlzg=)
2: oJRwOdnwgKQn91JcXQZvbPYhNPM.crl (hash: LDj5osGCrpz3fIyXUOosF/W6du8GxrF/btrhfwLwz5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:03:57:37:e5:35:d1:41:d9:d1:be:5b:2d:4b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Validity
Not Before: Nov 11 05:01:07 2025 GMT
Not After : Nov 12 05:01:07 2025 GMT
Subject: CN=fdd09dedbaaf1e7a0106591f5a8e4bc531649f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:49:67:aa:5f:d4:5a:30:28:c4:0b:5c:e9:c4:
c0:34:09:ff:be:c2:59:e2:ea:84:68:61:e5:40:25:
7b:c6:09:16:73:93:3d:f9:da:2a:39:84:cc:3e:35:
cc:e4:dc:0c:4b:fc:56:55:e6:31:29:33:e5:cd:2d:
d3:2a:87:b3:8a:5b:dd:fe:97:06:98:01:f8:4e:3b:
cc:f5:6f:90:5a:51:6d:c3:93:3f:04:86:6f:83:fc:
2b:49:4f:4b:1b:86:62:e5:26:4a:19:a2:2a:8e:fc:
50:3d:29:4a:e5:df:c6:4f:a1:ca:e4:0f:43:c4:6a:
bf:99:e2:12:87:2e:a0:79:a1:87:8c:43:d1:7d:17:
28:45:9c:9d:a5:c8:ba:cc:b8:d7:1f:96:42:36:e8:
93:ee:83:56:e9:d4:09:ca:79:3e:62:c8:b6:c1:e2:
ee:4d:8c:73:e2:18:69:de:7b:1d:0c:c1:5a:50:27:
b9:9c:51:cf:6f:a5:05:c9:03:df:2d:00:5d:43:e2:
f2:1f:06:83:16:69:0e:a7:3d:1c:76:b2:b8:de:4e:
7b:8b:b9:cb:1d:1c:d1:8f:8e:e0:59:ef:57:7c:39:
7d:f2:2a:71:47:fc:d5:a2:5a:11:ec:da:df:8b:e3:
c9:01:58:b7:bf:97:6e:ca:5c:47:fd:87:b9:d0:df:
2d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D0:9D:ED:BA:AF:1E:7A:01:06:59:1F:5A:8E:4B:C5:31:64:9F:0B
X509v3 Authority Key Identifier:
keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:3b:72:43:fa:31:41:b9:49:d2:8c:3d:f3:8f:17:45:17:d3:
fb:07:64:d8:ac:4a:9d:17:12:6f:c7:34:bf:8c:36:09:3c:11:
9c:73:69:96:e7:fc:16:5d:d7:1e:41:6e:c3:d2:cc:d7:82:63:
2a:59:e3:02:8d:49:fa:5c:d8:4f:0c:b1:85:b3:c4:d2:8e:15:
2e:b4:b8:c7:93:5f:fb:43:18:37:33:2e:90:b2:37:ff:75:4a:
6e:9a:b9:50:e4:2d:8a:9a:8f:a8:35:f9:08:44:3c:b5:dc:28:
3c:98:3f:40:f7:1a:0c:9d:b7:7e:d1:31:e1:b3:0f:fb:6e:dd:
16:ec:cd:d0:f8:1d:96:5f:25:e4:54:e0:68:ee:7f:6a:f9:37:
87:2c:aa:83:4f:87:5d:11:f1:d6:73:30:ff:8a:92:4a:4b:00:
c0:ce:37:77:40:f9:6a:b2:e0:8a:14:71:7a:63:5f:4b:c8:95:
1c:0c:6d:7e:ac:6c:14:dc:7e:fe:2a:1c:6b:be:85:b5:ca:b8:
f4:ed:7d:97:09:69:8a:2f:f6:a2:df:af:14:4a:13:36:7d:7d:
13:39:63:e6:a4:dd:ad:89:a8:be:68:2e:07:45:2f:65:6b:48:
ea:d3:67:a5:29:62:dd:ea:d4:e1:d5:f1:4d:5d:af:8f:ac:06:
c4:f5:e0:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSgNXN+U10UHZ0b5bLUveMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOTQ3MDM5ZDlmMDgwYTQyN2Y3NTI1YzVkMDY2ZjZjZjYy
MTM0ZjMwHhcNMjUxMTExMDUwMTA3WhcNMjUxMTEyMDUwMTA3WjAzMTEwLwYDVQQD
EyhmZGQwOWRlZGJhYWYxZTdhMDEwNjU5MWY1YThlNGJjNTMxNjQ5ZjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUlnql/UWjAoxAtc6cTANAn/vsJZ
4uqEaGHlQCV7xgkWc5M9+doqOYTMPjXM5NwMS/xWVeYxKTPlzS3TKoezilvd/pcG
mAH4TjvM9W+QWlFtw5M/BIZvg/wrSU9LG4Zi5SZKGaIqjvxQPSlK5d/GT6HK5A9D
xGq/meIShy6geaGHjEPRfRcoRZydpci6zLjXH5ZCNuiT7oNW6dQJynk+Ysi2weLu
TYxz4hhp3nsdDMFaUCe5nFHPb6UFyQPfLQBdQ+LyHwaDFmkOpz0cdrK43k57i7nL
HRzRj47gWe9XfDl98ipxR/zVoloR7Nrfi+PJAVi3v5duylxH/Ye50N8thQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP3Qne26rx56AQZZH1qOS8UxZJ8LMB8GA1UdIwQY
MBaAFKCUcDnZ8ICkJ/dSXF0Gb2z2ITTzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQt
YzhiM2FjMGJlZmNiLzEvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQtYzhiM2FjMGJlZmNi
LzEvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWztyQ/ox
QblJ0ow9848XRRfT+wdk2KxKnRcSb8c0v4w2CTwRnHNpluf8Fl3XHkFuw9LM14Jj
KlnjAo1J+lzYTwyxhbPE0o4VLrS4x5Nf+0MYNzMukLI3/3VKbpq5UOQtipqPqDX5
CEQ8tdwoPJg/QPcaDJ23ftEx4bMP+27dFuzN0Pgdll8l5FTgaO5/avk3hyyqg0+H
XRHx1nMw/4qSSksAwM43d0D5arLgihRxemNfS8iVHAxtfqxsFNx+/ioca76Ftcq4
9O19lwlpii/2ot+vFEoTNn19Ezlj5qTdrYmovmguB0UvZWtI6tNnpSli3erU4dXx
TV2vj6wGxPXgKQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:18 2025 by rpki-client