Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: 83GxF4I0oU+E6yAYPQirPj2E52VFxGH/v2um5BugUJY=
Subject key identifier: 93:1D:BB:2F:69:20:CB:D4:B7:80:0D:1F:32:DE:D9:5A:B5:98:D0:17
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 019A194FDAE1B9A60C17FE354B62495FF652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 067E
Signing time: Sat 25 Oct 2025 03:00:54 +0000
Manifest this update: Sat 25 Oct 2025 03:00:54 +0000
Manifest next update: Sun 26 Oct 2025 03:00:54 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=)
6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: NjFIhh6QSiUEy391qgxQikUlecPKtl7l4Q/oQyziiR8=)
9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:19:4f:da:e1:b9:a6:0c:17:fe:35:4b:62:49:5f:f6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Oct 25 03:00:54 2025 GMT
Not After : Oct 26 03:00:54 2025 GMT
Subject: CN=931dbb2f6920cbd4b7800d1f32ded95ab598d017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d8:76:a8:d8:56:23:c0:3b:d5:7e:2f:dd:36:
82:2d:3a:a4:65:f6:4c:a1:e7:13:1f:24:73:ff:ff:
b4:65:51:3b:6b:81:58:cc:46:5f:30:3f:5b:81:1e:
41:68:93:ed:68:87:07:46:33:5d:e4:4b:10:06:fc:
c1:b9:ed:da:cd:70:77:ad:7f:bf:40:ba:bb:0b:cf:
74:45:fe:f4:ba:b6:4a:4c:9b:36:bd:6f:a5:dc:1b:
b9:5b:d4:ae:bc:a7:7d:64:b6:66:77:c8:3e:e7:d9:
eb:6a:76:6c:65:9c:12:30:9f:ff:ea:4c:ef:b7:55:
d5:07:2f:14:d9:7b:2c:e1:2c:10:ab:9b:2a:b7:e1:
30:a6:96:e8:f8:9e:b9:4b:1b:b9:7d:54:48:d4:b1:
3f:bf:58:3b:61:62:e5:3a:97:a7:4b:cf:91:7b:30:
92:5f:52:48:2b:b1:22:72:03:c7:89:b6:bf:20:ca:
69:50:4c:bb:dd:51:2a:aa:ab:86:47:08:23:d9:14:
7f:5a:1e:35:5a:65:10:3f:f2:fb:db:c6:8e:9a:0c:
f3:20:ab:b3:e4:fb:e4:0d:85:c9:d8:8a:d1:10:c5:
3a:b8:9f:01:57:04:74:4a:4c:01:7b:57:e7:29:67:
5d:db:7f:ba:55:e6:db:06:be:a1:d6:02:f3:17:4d:
48:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1D:BB:2F:69:20:CB:D4:B7:80:0D:1F:32:DE:D9:5A:B5:98:D0:17
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:93:29:6b:7a:13:37:bc:79:81:9a:80:52:1e:da:8d:d5:cd:
da:25:00:6f:4e:54:a2:41:4d:b6:71:c1:da:b2:27:7d:c6:8a:
3e:e6:94:5f:f0:f8:0e:79:1b:32:66:d7:fe:9a:9a:d1:65:0d:
83:27:f5:59:b5:74:cb:69:dd:ea:b2:4a:3c:9b:2d:7a:98:36:
af:67:a8:1e:3f:e3:24:ca:ed:77:38:09:e8:f3:ff:44:cd:d3:
dc:58:a4:c8:0b:62:6a:fe:bf:6f:b7:7c:41:6f:8c:bd:e8:60:
3f:20:4d:e3:69:0d:52:ec:ff:30:e8:a3:11:98:7c:32:71:b9:
9b:54:be:b0:52:81:a6:b9:cb:69:00:06:22:1d:7b:97:07:dc:
94:1d:c0:46:14:8f:58:e7:8b:cf:40:dc:63:10:ba:99:4a:6a:
3b:a7:c4:cb:7f:f8:b4:ec:5e:57:44:4d:32:27:41:aa:b8:dc:
44:e5:79:94:a8:b9:85:27:2a:e9:3e:7d:13:7e:6e:2c:46:1f:
30:2a:2b:9c:67:80:61:7b:7f:d5:d6:f2:36:e9:2d:99:60:00:
9f:c8:d2:47:01:aa:e8:a5:55:02:d6:33:9c:a0:8c:50:70:8f:
dc:17:87:8a:19:43:94:21:4a:36:83:00:d1:a2:f5:20:1c:a5:
4e:ac:84:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 05:13:43 2025 by rpki-client