Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
File: PubOz_2bi7oY1HTns5k-Ch0U27M.mft (raw, json)
Hash identifier: Hm6dF3dlKA/GZ/IdeaRu1PmLZ1Z2ybKOPAyDWAdazds=
Subject key identifier: DA:11:25:39:B3:7D:60:3B:DC:42:95:71:D5:C2:9E:A5:3C:52:0F:E1
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 019A21ADE22A2161D5D0A1664E977A61E86A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
Manifest number: 16F4
Signing time: Sun 26 Oct 2025 18:00:34 +0000
Manifest this update: Sun 26 Oct 2025 18:00:34 +0000
Manifest next update: Mon 27 Oct 2025 18:00:34 +0000
Files and hashes: 1: 0Z0N7XcDaBDDIFuADZvveEOpnJw.roa (hash: gAUFpbijoaRws4OSpZQdGdoxqVjsxrfddgC/n57+l3g=)
2: 8-FKPJHE6vcPzqBfhidoWPOxdAI.roa (hash: YFJG/U27ibxfBXMxeBPb2K+kYbsAd+aEaMxdkmB5KX8=)
3: MeMsmYAnac73QikfwHpf4FiB8MA.roa (hash: w8cyx5Qe5TgkNbDbtB6QAHXf0+aV1FgiM053aALKsSg=)
4: PubOz_2bi7oY1HTns5k-Ch0U27M.crl (hash: xlYFGd/zShBP4yFdE/GWa3PZlKU5rlmEY/MvUNOid+0=)
5: gBOr1K9o3G_sjVut4hTNYrOz3aw.roa (hash: WvCboN2sSwdfSWgLauEyXaJvvKZ2k+WSGckagpeMJcA=)
6: pRRc-aHsLhs7L3jVpiMmTF9mbXU.roa (hash: 3+Rll0s3Qp4ADMZLaRyXjqLo1eqDlTqqXI3V1CpcTo4=)
7: vuTW0ftXsfvIWtL6nGLUGKWxAa0.roa (hash: vusAgJM4Fe2/TEz+SbhV7Z/ibEen3tJQhfA8nIe5Or8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:e2:2a:21:61:d5:d0:a1:66:4e:97:7a:61:e8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Oct 26 18:00:34 2025 GMT
Not After : Oct 27 18:00:34 2025 GMT
Subject: CN=da112539b37d603bdc429571d5c29ea53c520fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:e3:18:19:8e:9c:bc:ec:8e:09:44:aa:f4:
2a:04:0b:cc:ec:68:4b:ff:f1:4c:9c:78:d3:c9:35:
59:71:f6:40:03:4e:8b:cc:fa:aa:7e:40:0b:67:b7:
8b:7f:68:4d:bf:41:ed:14:c9:f7:3e:e6:23:15:5a:
a2:a2:a7:51:49:54:64:85:94:fb:bd:4f:93:af:d5:
04:3a:0f:c4:60:6e:13:21:26:0f:1d:28:80:98:f3:
00:f1:c6:7e:5f:41:10:76:33:9a:ff:00:b4:02:be:
29:5c:65:4c:33:f0:26:61:e0:73:d5:c6:59:05:ef:
c1:24:96:68:e4:02:7b:62:3e:ea:69:d8:a3:94:b5:
38:2e:0f:20:0d:26:6e:55:2e:37:91:e0:10:a3:52:
7e:19:fd:5f:41:3b:22:b6:dc:2e:96:df:47:eb:f0:
28:51:b0:9e:cb:ff:7e:e3:b6:36:62:5d:93:55:82:
d0:73:3a:bb:96:cd:89:81:3a:af:39:46:c2:21:49:
3a:0b:be:03:6c:4b:e0:0f:00:5b:ee:16:70:4c:a8:
f8:d1:f3:7d:b5:2f:c7:77:1d:0a:4d:cf:1e:fa:95:
ea:99:45:02:2b:bc:a0:e9:5c:72:07:0c:bc:77:bd:
05:88:c2:34:d8:6c:4b:d7:46:5c:c0:57:b9:12:1e:
e1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:11:25:39:B3:7D:60:3B:DC:42:95:71:D5:C2:9E:A5:3C:52:0F:E1
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:db:67:51:b8:11:96:48:2d:d1:f1:52:8a:a6:08:1a:51:9e:
f4:a9:47:ef:b4:54:26:ef:f8:5a:df:21:3f:e9:c8:1f:1b:d0:
3f:ae:f6:13:9b:8d:60:fa:cc:76:a2:a9:a4:c7:4a:57:73:08:
2c:32:60:a2:23:5d:3f:5c:42:ba:b8:47:43:42:df:d5:f1:c5:
26:ed:be:ea:64:b2:45:69:1d:30:1e:6e:bf:20:20:c7:d8:16:
65:ec:f3:00:5b:05:ca:af:18:0e:ee:ef:40:2c:e7:7c:4b:c2:
c3:be:65:0c:17:cb:c6:d8:7f:d5:d0:48:0c:db:32:3a:d6:52:
54:78:bd:4b:41:d7:3f:5e:5a:a8:b9:4a:9d:b8:71:18:49:ec:
19:28:85:80:ed:e9:ee:c3:5d:27:eb:2c:c7:58:d8:9d:86:4a:
d0:ba:67:87:2c:a5:b4:cb:65:63:56:2e:f5:ad:00:77:2e:7b:
69:9c:c7:bc:ce:4e:1b:9a:74:a4:40:82:c6:1e:69:eb:21:c2:
a3:bb:f5:52:c8:ec:0c:ab:0a:68:e7:9c:d5:c1:7b:b6:d5:38:
1b:b8:64:8a:2a:82:2b:38:b5:ea:c7:6d:e7:04:49:c0:6a:d0:
21:8d:2a:2c:ae:2b:f6:29:df:8b:98:ad:f6:e3:9a:bf:a8:1f:
e0:68:fc:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZohreIqIWHV0KFmTpd6YehqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZTZjZWNmZmQ5YjhiYmExOGQ0NzRlN2IzOTkzZTBhMWQx
NGRiYjMwHhcNMjUxMDI2MTgwMDM0WhcNMjUxMDI3MTgwMDM0WjAzMTEwLwYDVQQD
EyhkYTExMjUzOWIzN2Q2MDNiZGM0Mjk1NzFkNWMyOWVhNTNjNTIwZmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3jjGBmOnLzsjglEqvQqBAvM7GhL
//FMnHjTyTVZcfZAA06LzPqqfkALZ7eLf2hNv0HtFMn3PuYjFVqioqdRSVRkhZT7
vU+Tr9UEOg/EYG4TISYPHSiAmPMA8cZ+X0EQdjOa/wC0Ar4pXGVMM/AmYeBz1cZZ
Be/BJJZo5AJ7Yj7qadijlLU4Lg8gDSZuVS43keAQo1J+Gf1fQTsittwult9H6/Ao
UbCey/9+47Y2Yl2TVYLQczq7ls2JgTqvOUbCIUk6C74DbEvgDwBb7hZwTKj40fN9
tS/Hdx0KTc8e+pXqmUUCK7yg6VxyBwy8d70FiMI02GxL10ZcwFe5Eh7htQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNoRJTmzfWA73EKVcdXCnqU8Ug/hMB8GA1UdIwQY
MBaAFD7mzs/9m4u6GNR057OZPgodFNuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEt
NzMyNDkxMzk3NWQ1LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEtNzMyNDkxMzk3NWQ1
LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT9tnUbgR
lkgt0fFSiqYIGlGe9KlH77RUJu/4Wt8hP+nIHxvQP672E5uNYPrMdqKppMdKV3MI
LDJgoiNdP1xCurhHQ0Lf1fHFJu2+6mSyRWkdMB5uvyAgx9gWZezzAFsFyq8YDu7v
QCznfEvCw75lDBfLxth/1dBIDNsyOtZSVHi9S0HXP15aqLlKnbhxGEnsGSiFgO3p
7sNdJ+ssx1jYnYZK0LpnhyyltMtlY1Yu9a0Ady57aZzHvM5OG5p0pECCxh5p6yHC
o7v1UsjsDKsKaOec1cF7ttU4G7hkiiqCKzi16sdt5wRJwGrQIY0qLK4r9infi5it
9uOav6gf4Gj85Q==
-----END CERTIFICATE-----
Generated at Mon Oct 27 01:44:44 2025 by rpki-client