Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: ZQSoWXfNjUl+v9zKEiFTiATr6xh3rKCxvdUAIrB1uSk=
Subject key identifier: DC:A4:C1:CB:40:36:52:74:5C:EE:DC:0A:04:98:86:7D:7E:13:21:A9
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 019A1DD141C17773102A86628ECE5EEC6AD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0D30
Signing time: Sun 26 Oct 2025 00:00:44 +0000
Manifest this update: Sun 26 Oct 2025 00:00:44 +0000
Manifest next update: Mon 27 Oct 2025 00:00:44 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: cEsNxEHn+fACz3m9e9aGyfjHD0SHRkXfiDn2bWJvzp8=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:d1:41:c1:77:73:10:2a:86:62:8e:ce:5e:ec:6a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Oct 26 00:00:44 2025 GMT
Not After : Oct 27 00:00:44 2025 GMT
Subject: CN=dca4c1cb403652745ceedc0a0498867d7e1321a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:38:71:c5:a3:9a:3b:08:fd:0b:f2:a9:23:
46:7f:85:a8:15:57:d0:4e:95:80:ab:b9:1a:09:bc:
0c:e4:79:9b:2d:21:9e:f8:ef:93:da:86:0f:24:b3:
e3:a0:a3:09:67:6c:74:72:aa:be:8e:be:bd:9e:f4:
a4:94:7b:25:2e:a8:6c:bb:94:cb:a5:4a:1e:f6:25:
f6:8d:a3:8f:fa:bf:f2:b2:7e:fc:cf:1d:92:01:8e:
63:78:42:42:28:15:c2:62:23:93:82:9c:19:e2:54:
8b:ba:de:d6:67:19:9d:c0:58:0f:5b:be:a7:86:b3:
ff:29:fa:94:44:f0:27:26:99:e7:36:73:18:d8:01:
ea:a5:bd:29:46:c7:28:55:fc:3b:0d:10:10:d0:3f:
06:c3:d4:49:ff:cc:8e:4d:fd:49:91:d2:05:ed:a0:
7f:29:4c:4d:07:bb:a9:af:ce:dd:30:66:65:6e:5c:
ee:5e:eb:58:00:0c:e2:14:25:29:fb:95:de:5b:f5:
93:16:14:24:66:a3:4c:31:ba:8a:92:14:b3:db:52:
3d:5d:ec:de:a1:2f:f7:82:9f:03:67:31:53:17:64:
c7:7f:ee:00:41:5e:70:37:5f:44:43:25:26:21:f3:
90:fd:8e:89:26:4e:c0:0e:43:d3:6b:7c:5f:18:10:
41:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A4:C1:CB:40:36:52:74:5C:EE:DC:0A:04:98:86:7D:7E:13:21:A9
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:b3:6c:4d:ef:c2:a6:b4:a5:e6:6f:88:62:d9:ce:ce:85:83:
29:97:b7:d3:ac:1f:db:0d:67:dc:6b:a8:d7:54:4c:75:3f:29:
c6:6a:0f:23:33:78:49:ac:18:62:d4:e8:57:7c:e7:42:a3:c5:
ac:a7:8c:db:13:67:2e:88:a0:72:28:f0:af:8f:dd:4b:dc:3e:
fe:36:8a:14:0c:58:f3:fb:9f:0c:27:5d:dd:e9:ba:a8:f0:9c:
0f:a8:b9:78:67:49:3e:f1:42:92:c6:ac:0a:ae:5d:83:7f:89:
c7:2e:e9:17:fb:c7:2b:d9:32:92:08:69:e1:d0:90:56:07:73:
d8:4c:bf:59:78:44:19:1a:90:4e:42:4d:99:44:6f:b8:6c:1c:
7b:65:aa:5d:44:8b:e8:f9:9b:3e:8a:f7:1f:48:a3:fb:18:25:
c5:18:8b:16:1f:33:24:49:44:59:ea:74:88:eb:aa:e5:91:4d:
6e:9b:d3:96:dd:c6:c3:da:5c:c5:0f:9c:d4:23:eb:45:90:d6:
88:2c:1e:5a:c7:16:c0:e5:d5:07:78:42:a7:01:ac:e5:90:ac:
63:3c:d9:bc:fc:cc:fe:ea:7a:5e:e9:11:b4:bb:20:c8:e3:f4:
16:e1:84:ca:d0:ec:d4:92:8c:01:4d:8a:9d:a9:ef:ee:e2:47:
0e:7c:df:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 01:32:30 2025 by rpki-client