Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: 6OVNquvJM7RvUyzRkUDqmtUePAS5PkgM2bOHBM7aMC0=
Subject key identifier: 29:4C:64:E3:D2:E0:1C:E2:28:6B:68:5E:21:40:F4:30:FD:11:D8:7B
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 019A240A31BDFF7A9B3EBB96AC2990C1D8D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 13C2
Signing time: Mon 27 Oct 2025 05:00:39 +0000
Manifest this update: Mon 27 Oct 2025 05:00:39 +0000
Manifest next update: Tue 28 Oct 2025 05:00:39 +0000
Files and hashes: 1: ZsbPyFKfDnHSbXB5Rdfyon4nTbQ.roa (hash: f+ETlYVDvmS9d48p0ZYmqykWIOKGSt0JzwDEXRuMaVs=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: aUrGoKPWuaoEYor408qGDWPauKTSBNKjwzU8iisi8D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:31:bd:ff:7a:9b:3e:bb:96:ac:29:90:c1:d8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Oct 27 05:00:39 2025 GMT
Not After : Oct 28 05:00:39 2025 GMT
Subject: CN=294c64e3d2e01ce2286b685e2140f430fd11d87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:23:f3:8b:62:fc:e6:6d:bf:89:2e:6b:52:11:
d4:52:63:d2:98:3f:fd:01:65:16:51:76:15:f9:5c:
be:52:0f:a0:1b:ea:29:db:e4:43:6b:98:80:42:2d:
a4:c7:a9:ae:46:c1:8d:7d:96:fe:82:03:b1:4f:19:
d0:a9:62:3b:e7:b8:5f:54:89:d2:2d:3d:90:0f:eb:
f2:87:7e:43:cf:04:3d:71:b5:05:9a:a2:0f:98:3e:
bb:79:7b:01:92:c5:51:34:a9:ae:87:ed:35:44:aa:
0b:7a:da:75:e7:51:a7:94:dd:84:fe:6c:ef:b9:0c:
a0:d2:cc:fc:43:96:a0:e8:87:bf:97:17:b6:2a:a0:
66:5d:fa:ee:c0:0b:5c:43:32:20:dc:1a:92:ef:1d:
90:87:e2:f0:03:30:b9:09:bc:8a:e4:fe:7e:87:c2:
03:4f:29:a1:bd:34:f8:b1:14:e0:d6:c6:a8:27:d4:
8d:64:7e:e1:ca:ac:b6:27:b4:5c:29:35:06:0f:89:
0c:b8:70:7b:91:dc:01:5c:f5:de:a7:77:b4:bb:cd:
d1:48:f5:bf:45:d2:70:1b:1e:8c:c2:45:d9:88:c5:
52:20:85:dd:bc:87:9d:16:e2:97:9e:76:39:85:4c:
23:55:73:fd:00:da:fe:3d:94:e5:a6:1d:e8:16:d1:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4C:64:E3:D2:E0:1C:E2:28:6B:68:5E:21:40:F4:30:FD:11:D8:7B
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:64:4d:ec:88:cd:84:f9:cb:9e:e5:55:56:5f:79:d5:bc:ef:
7c:cb:0b:73:ee:c5:e1:bd:49:26:42:e1:cb:a2:05:d6:ba:48:
97:d9:86:dd:ac:5d:1c:d0:2e:2c:61:03:57:3f:bc:d1:c9:71:
57:d6:a1:e8:c6:1f:ac:7b:3e:5f:cd:3c:23:a2:5b:12:85:44:
43:e0:41:ef:e7:94:76:cc:3f:fb:be:fe:1c:7a:7c:9d:94:2d:
09:8c:28:08:ad:f1:25:d4:94:7c:1b:47:2a:a1:0b:ca:6f:bc:
83:95:fd:ee:6b:42:92:08:80:db:29:75:d2:3f:18:6f:00:d1:
3c:f9:84:36:6e:c4:40:4d:0d:f7:0f:c1:3f:cf:98:35:ad:ee:
0f:4e:ec:00:ae:0d:81:ed:ab:79:62:33:95:67:25:10:8d:b3:
a6:2a:fd:69:5e:bc:d5:b0:36:62:09:6f:60:b0:95:15:46:cb:
e5:82:5b:0d:32:a8:13:ad:0c:5f:9d:52:9c:f3:8a:20:b1:ea:
eb:51:61:66:9e:44:06:b1:7b:04:9b:3a:84:97:d4:91:ec:31:
21:ee:bf:5e:fd:b2:5c:f1:75:2b:67:47:88:2c:14:ad:25:47:
3d:68:95:7b:dd:54:e1:d6:9d:bc:8e:18:d7:35:d9:15:20:d2:
a9:0d:45:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 10:01:19 2025 by rpki-client