Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: dY2aQKZGQzz5pZCd3IQzBphLphOeWD2XUJhpCbSsh7U=
Subject key identifier: 57:12:72:56:B6:7A:19:CB:49:54:19:6C:EA:BF:55:40:09:32:96:22
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 019A7293B59414DE5D5482DAA96FCFBE5001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 0564
Signing time: Tue 11 Nov 2025 11:01:14 +0000
Manifest this update: Tue 11 Nov 2025 11:01:14 +0000
Manifest next update: Wed 12 Nov 2025 11:01:14 +0000
Files and hashes: 1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: aVjwFbdb8N/fY1NWRByg0B7c3t5oVJX2jjkmiuZby/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:b5:94:14:de:5d:54:82:da:a9:6f:cf:be:50:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Nov 11 11:01:14 2025 GMT
Not After : Nov 12 11:01:14 2025 GMT
Subject: CN=57127256b67a19cb4954196ceabf554009329622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:2d:41:50:de:92:3f:0e:0d:2d:62:0b:09:6c:
4e:79:37:e0:d3:93:ab:af:78:1f:8f:0d:2b:70:66:
23:57:77:9f:d4:bf:4f:52:1f:4d:19:63:0f:8c:e4:
9d:82:fc:9e:bc:81:7b:01:be:84:86:ec:d8:0f:77:
46:3f:e0:ae:c4:30:19:9c:92:ff:a9:ff:4d:66:68:
30:21:54:03:ff:4f:69:93:ec:5a:dd:be:d9:15:94:
79:93:9e:f7:63:d5:ee:48:65:7e:62:eb:2e:8b:32:
ad:43:56:f3:a8:33:b4:5d:1d:68:6a:39:57:53:2a:
db:2e:c8:3c:05:be:73:24:6c:8a:80:45:33:ed:c9:
10:39:77:fc:95:ef:97:9d:8d:2a:46:d3:65:f8:0c:
fb:4b:3c:a1:5f:28:7f:8f:3a:d6:1e:70:65:38:1c:
9d:d2:08:0f:cf:f2:c1:50:7b:9f:69:ab:da:5d:26:
0f:23:b1:c7:27:fa:2f:14:73:70:c3:ec:b8:24:da:
1c:25:fe:9d:d3:d4:b4:a6:97:25:ef:7c:68:1f:0f:
04:ab:2b:12:0a:d8:a3:b1:fc:d9:74:51:a6:8d:23:
3f:82:c5:90:6c:83:2a:95:9d:07:ff:80:3a:ed:61:
e0:5b:c1:3c:b0:80:28:e5:5f:57:66:58:85:5b:f6:
8b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:12:72:56:B6:7A:19:CB:49:54:19:6C:EA:BF:55:40:09:32:96:22
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:16:3f:c8:cd:1b:fe:ac:4c:5c:c0:5d:9b:81:5b:a8:81:b1:
d3:c6:37:43:1e:7d:2d:c2:20:52:9f:6e:90:58:dc:c1:ca:9c:
b1:15:a1:ca:6e:a0:61:42:91:9f:73:84:a2:88:81:25:e1:5b:
61:3c:9d:c0:a5:2c:44:37:ae:4c:3c:ea:f8:e6:11:1b:67:99:
9e:b2:df:75:75:61:93:da:9f:6c:53:f6:00:47:ec:5d:40:92:
7d:bc:ec:48:13:b5:77:0d:c7:08:d6:ca:11:7f:72:ac:09:8b:
b5:08:21:6b:62:e4:e7:76:4a:34:13:81:da:68:9b:7d:c4:5b:
b4:94:38:08:39:02:d7:6c:07:80:f0:ef:99:1a:87:3d:f4:f5:
3b:70:f6:8a:0b:0b:67:7a:54:aa:23:10:6f:86:e8:bb:3f:b5:
cc:4b:c5:29:0b:08:26:35:2b:8a:c4:ff:a0:d4:3c:a9:fb:4b:
6e:9e:15:00:48:ab:e8:75:f8:68:fd:b0:48:62:ec:81:87:7a:
91:c9:0b:67:7f:a6:d9:2d:13:d0:4b:f7:6f:6c:9f:8f:b7:a4:
33:0d:c0:37:f7:4a:c2:e7:bf:80:3b:26:25:6c:04:1a:52:ba:
44:2a:9d:40:86:31:a8:f7:95:68:58:2e:d8:79:dc:f9:b8:75:
d0:a1:f5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:31 2025 by rpki-client