Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: I60xEJiz1UID5yhBr8QoBADjFMKGRMU0+Lm9SWDzlvc=
Subject key identifier: 27:98:1D:EF:B8:E5:67:60:8A:A6:C4:47:DC:D0:F7:60:3A:A0:E1:FE
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019A22F75AFAA13B072FFFE774E96BEF8BA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1700
Signing time: Mon 27 Oct 2025 00:00:27 +0000
Manifest this update: Mon 27 Oct 2025 00:00:27 +0000
Manifest next update: Tue 28 Oct 2025 00:00:27 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: hG7i0Cwy9+PSmynaI1TnNaLc+LC8JnDMt6fJxmvOfA8=)
2: THEjTsFNcxDVZEOdq3GfXqXC4zc.roa (hash: x5CBmcScUC+Y/Wuw5WgYT+dNtpSqSEasQSVqzZJLzc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:5a:fa:a1:3b:07:2f:ff:e7:74:e9:6b:ef:8b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Oct 27 00:00:27 2025 GMT
Not After : Oct 28 00:00:27 2025 GMT
Subject: CN=27981defb8e567608aa6c447dcd0f7603aa0e1fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:36:5e:83:b6:74:ee:e0:86:08:4e:e4:c3:
3e:e3:d4:ad:31:42:11:27:b5:31:cb:6e:5a:9a:74:
25:1b:71:1a:69:29:8b:c6:b0:5a:7e:05:b3:40:46:
e8:2c:f8:23:e7:65:a1:ed:c6:1e:34:68:bc:49:91:
b7:53:d7:7a:92:97:3e:77:a1:4d:c6:d1:00:b1:68:
33:00:89:87:5e:20:55:7e:27:93:2b:12:7e:9f:89:
50:7e:b3:f0:8b:2d:f8:ba:81:0e:a0:7a:cc:55:6b:
67:b5:4c:28:ea:1d:53:4b:f7:53:8b:fe:c0:1a:d5:
ce:45:53:5d:59:c7:a5:80:e7:81:d2:a4:53:a0:d8:
88:37:54:f3:64:56:95:65:55:d4:69:6c:fa:89:69:
8c:7b:49:34:36:b6:19:a5:3f:ae:cd:06:5f:9f:cd:
ba:81:fa:d4:fd:e9:3a:1f:4e:e0:2d:db:16:62:f8:
de:73:1b:1f:4f:64:59:0b:d6:0e:fd:96:31:69:ce:
7c:c6:46:81:fb:87:63:05:7c:d2:9b:1f:7a:f2:c9:
30:ba:33:65:b6:58:0c:54:3f:5f:46:01:9b:1b:0f:
0e:ac:9b:66:94:0e:08:0c:c2:9c:79:77:b4:b5:cc:
31:86:9f:88:66:a5:74:91:4a:1d:39:e5:14:28:56:
b2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:98:1D:EF:B8:E5:67:60:8A:A6:C4:47:DC:D0:F7:60:3A:A0:E1:FE
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:ac:2d:67:85:6f:78:76:0c:a9:c9:b1:83:fb:bb:36:06:fd:
7e:5f:4a:e1:c7:ac:78:ab:dd:a3:5a:f9:cd:f8:3c:9a:ba:95:
b9:fe:76:71:3c:1d:6b:77:d0:e5:a9:18:98:b2:3b:e8:12:e4:
27:a8:03:a4:ea:3c:fd:06:33:87:da:f4:fc:bd:12:58:8b:de:
16:c2:24:37:b5:16:ff:d3:84:27:53:2f:45:79:31:18:a5:2c:
dd:77:7d:42:d4:f9:0b:cc:aa:d7:71:d6:de:6e:69:8e:8b:7e:
db:75:df:d3:30:61:af:ee:7c:df:eb:b5:e1:de:25:0b:71:fe:
5d:ae:3b:06:a8:a9:36:e6:07:af:52:5a:80:20:7a:56:0f:42:
4e:a5:d0:de:60:4f:94:4e:99:fa:fc:d5:ac:e4:9b:45:e4:ba:
a9:42:40:e8:5b:44:0e:cb:33:72:18:0f:a7:33:a2:28:4b:f9:
de:b6:ce:7c:79:96:ae:6d:10:10:57:96:67:45:c8:17:18:32:
54:3a:49:87:ac:f3:9d:c4:bc:4a:2a:7a:22:76:05:67:2f:70:
4e:2c:a1:b5:99:6d:3b:0f:98:bb:9a:6d:b7:48:04:2b:2c:b5:
1f:b8:3f:c1:0d:4b:b0:7c:79:b9:2f:1b:30:7a:94:73:3d:fb:
4d:12:ba:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoi91r6oTsHL//ndOlr74ulMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MDI3NzM4Zjk3OGZlZGEyNGE5ZDg3YjBjYjhiYjlhYTdh
ZjU0MGQwHhcNMjUxMDI3MDAwMDI3WhcNMjUxMDI4MDAwMDI3WjAzMTEwLwYDVQQD
EygyNzk4MWRlZmI4ZTU2NzYwOGFhNmM0NDdkY2QwZjc2MDNhYTBlMWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjc2XoO2dO7ghghO5MM+49StMUIR
J7Uxy25amnQlG3EaaSmLxrBafgWzQEboLPgj52Wh7cYeNGi8SZG3U9d6kpc+d6FN
xtEAsWgzAImHXiBVfieTKxJ+n4lQfrPwiy34uoEOoHrMVWtntUwo6h1TS/dTi/7A
GtXORVNdWcelgOeB0qRToNiIN1TzZFaVZVXUaWz6iWmMe0k0NrYZpT+uzQZfn826
gfrU/ek6H07gLdsWYvjecxsfT2RZC9YO/ZYxac58xkaB+4djBXzSmx968skwujNl
tlgMVD9fRgGbGw8OrJtmlA4IDMKceXe0tcwxhp+IZqV0kUodOeUUKFay5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCeYHe+45WdgiqbER9zQ92A6oOH+MB8GA1UdIwQY
MBaAFDkCdzj5eP7aJKnYewy4u5qnr1QNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iOTExN2MtNTFjNS00YWY4LWJiZWYt
ZjVkOGFiN2MxNWYwLzEvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iOTExN2MtNTFjNS00YWY4LWJiZWYtZjVkOGFiN2MxNWYw
LzEvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATqwtZ4Vv
eHYMqcmxg/u7Ngb9fl9K4ceseKvdo1r5zfg8mrqVuf52cTwda3fQ5akYmLI76BLk
J6gDpOo8/QYzh9r0/L0SWIveFsIkN7UW/9OEJ1MvRXkxGKUs3Xd9QtT5C8yq13HW
3m5pjot+23Xf0zBhr+583+u14d4lC3H+Xa47BqipNuYHr1JagCB6Vg9CTqXQ3mBP
lE6Z+vzVrOSbReS6qUJA6FtEDsszchgPpzOiKEv53rbOfHmWrm0QEFeWZ0XIFxgy
VDpJh6zzncS8Sip6InYFZy9wTiyhtZltOw+Yu5ptt0gEKyy1H7g/wQ1LsHx5uS8b
MHqUcz37TRK62Q==
-----END CERTIFICATE-----
Generated at Mon Oct 27 04:18:24 2025 by rpki-client