Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: 5C7OHQlFQNw000wH6M2gpNRar0PQNaueCxe/yXIQuLY=
Subject key identifier: 0E:38:80:CD:A1:70:2F:13:7F:3D:CC:23:61:16:CA:69:C4:7E:10:5C
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 019A1F88760F545FB5BB82AC9EC01F74D3C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 16FA
Signing time: Sun 26 Oct 2025 08:00:28 +0000
Manifest this update: Sun 26 Oct 2025 08:00:28 +0000
Manifest next update: Mon 27 Oct 2025 08:00:28 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: 6ZDrwFza1VokwMW6Crd2EjTF7MPf29nO2Kn/Nu7AuGk=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:88:76:0f:54:5f:b5:bb:82:ac:9e:c0:1f:74:d3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Oct 26 08:00:28 2025 GMT
Not After : Oct 27 08:00:28 2025 GMT
Subject: CN=0e3880cda1702f137f3dcc236116ca69c47e105c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:41:ea:81:8f:bf:d8:25:8e:d6:98:2d:d3:a8:
08:4e:f5:d2:31:cd:69:14:80:41:2f:87:3d:76:aa:
bd:99:89:0c:ed:4a:16:f9:68:46:32:55:1c:d5:ab:
a7:47:ec:5b:49:ef:8c:87:d8:5b:69:b3:57:67:a8:
c6:c1:e4:0b:28:b5:d4:97:08:12:7c:f1:bc:77:0f:
22:2a:3d:24:3f:e2:09:55:6e:6a:db:96:f8:d6:93:
53:27:f2:30:f5:cc:f0:c1:13:4e:d6:54:5d:8d:f2:
c4:6f:e2:d0:86:3b:a7:c3:cf:ae:62:f1:1a:4d:5b:
8f:b1:3b:45:c1:14:db:a0:35:95:e3:e9:c2:52:8e:
97:0c:d1:62:23:1d:26:9d:42:5a:a9:28:93:c1:42:
22:9d:18:ff:33:a6:40:fa:2d:39:6e:f1:d0:8f:64:
7b:eb:33:cf:54:d8:a1:1a:f7:66:88:fe:72:b0:71:
c6:c0:79:50:f4:bc:1d:23:a6:c9:d1:65:1a:ad:07:
10:67:9f:1b:a7:b7:36:52:b4:95:11:a5:30:ea:10:
2e:cb:f9:d0:22:e4:ba:9d:cc:89:4c:2f:07:e0:b3:
ae:01:22:3a:ad:bc:2b:38:54:04:ad:b9:1d:8d:83:
6a:68:d7:60:f2:b6:cd:e5:88:c6:b7:0c:b2:6c:64:
be:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:38:80:CD:A1:70:2F:13:7F:3D:CC:23:61:16:CA:69:C4:7E:10:5C
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:09:34:1f:e2:d2:16:35:82:e1:35:3d:24:1f:61:24:da:b2:
2f:f3:15:ba:74:a3:82:68:79:35:65:fb:22:b0:39:79:db:9e:
c9:65:31:c3:46:37:c6:ca:fe:98:8c:47:5b:9d:a9:61:0c:f4:
60:0c:4c:29:75:20:d3:64:4b:84:7d:eb:29:4f:4e:aa:f7:e7:
63:e2:0a:80:a8:0b:2f:2d:a9:d3:53:e9:87:f0:5f:d4:24:dd:
6c:a5:3c:16:0d:8a:43:d3:17:cf:43:20:9a:54:54:a7:76:1f:
62:d8:41:10:11:b4:57:49:fb:aa:6d:df:19:cc:55:f7:3b:5d:
97:07:73:84:d6:72:95:60:95:ae:a1:2b:88:fa:62:b9:ce:70:
d5:4b:04:3e:89:a4:09:9c:d6:b4:36:59:65:b9:ac:79:17:6c:
50:38:ec:d7:18:13:9d:af:62:d8:49:b6:ed:fc:55:2d:2a:43:
d9:69:6c:87:5b:6d:e6:95:5c:cb:e6:64:95:36:67:36:b7:9b:
fc:40:5e:0b:da:65:df:0c:70:9a:9c:42:e9:2a:76:c4:11:ce:
d2:13:f4:11:e8:94:c7:d4:51:3f:14:f0:7d:e6:6e:dc:d4:77:
11:73:b4:69:2b:4b:28:5f:be:ca:50:9e:78:fa:c6:b5:24:98:
80:c2:4e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 11:10:30 2025 by rpki-client