Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
File: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft (raw, json)
Hash identifier: UMPanOZz6F6FKV459eiO7dqYEMEmjE0PAg8OW6iw3/Y=
Subject key identifier: 7B:6E:58:61:61:72:CB:C3:46:75:72:08:C5:BC:DD:2F:32:9B:48:98
Authority key identifier: A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
Certificate issuer: /CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Certificate serial: 019A15060DF0ECD4212EA0367A20E81682CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
Manifest number: 16EC
Signing time: Fri 24 Oct 2025 07:01:49 +0000
Manifest this update: Fri 24 Oct 2025 07:01:49 +0000
Manifest next update: Sat 25 Oct 2025 07:01:49 +0000
Files and hashes: 1: VpVmsYSCQdNXwRHKQt0NXlzsSG0.roa (hash: E6B6Bl1mDcetd5EsaNvc0boHcTeWIhqXRqGoFPj9kUc=)
2: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl (hash: LiOfrqxrBQKyPAGmT8nuJJ6vjgdJSXtKYdhnFTSCKck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:06:0d:f0:ec:d4:21:2e:a0:36:7a:20:e8:16:82:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Validity
Not Before: Oct 24 07:01:49 2025 GMT
Not After : Oct 25 07:01:49 2025 GMT
Subject: CN=7b6e58616172cbc346757208c5bcdd2f329b4898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:64:88:0f:b6:00:8e:e9:2d:f7:35:4f:9e:
11:31:04:93:4a:47:ba:6b:65:fa:b6:90:cf:cf:89:
ae:77:53:05:64:d3:ee:d9:ac:da:2b:3a:d2:eb:38:
51:3b:94:44:99:3e:62:46:7c:ae:b8:c0:6a:7a:32:
7d:ee:e5:00:0e:ee:94:b5:17:91:1a:91:9b:ee:c4:
b6:ad:29:1e:6b:30:48:f0:6b:5f:78:16:7a:61:eb:
1f:84:26:a0:23:f4:dc:5d:89:72:d8:ff:ba:29:9e:
e9:3d:04:20:8a:13:15:fb:d3:8b:4d:26:77:57:dc:
29:f3:3b:fd:f4:6e:63:c0:0d:e1:fd:4c:d8:d4:a5:
a1:d3:a3:7d:53:04:fd:0b:73:06:05:20:5d:38:ea:
98:22:85:c6:e2:57:04:6b:b9:a3:c7:67:71:cf:f6:
93:c7:93:18:f8:e7:fd:2d:54:d8:17:c1:b0:6c:2e:
82:fd:f8:9f:b1:9c:85:31:0a:28:fd:21:be:81:da:
f0:de:d7:c0:24:e4:65:e0:2e:b6:27:95:1a:28:28:
c6:c7:e3:71:63:69:f3:28:33:6f:09:91:45:b5:ed:
3d:8d:0c:d9:ca:35:75:ae:1e:70:5d:b1:45:8d:22:
30:16:48:93:36:05:dc:32:a2:dd:a7:f3:b9:f7:e0:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6E:58:61:61:72:CB:C3:46:75:72:08:C5:BC:DD:2F:32:9B:48:98
X509v3 Authority Key Identifier:
keyid:A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:dc:af:a1:7a:22:16:6d:dd:b1:cd:72:9c:89:38:a5:de:0c:
ac:00:f8:96:cd:16:9d:d9:b7:8a:97:fb:26:d9:31:6c:02:61:
de:0c:c8:20:25:c1:db:f6:c2:91:e8:96:2a:95:ad:a0:22:ac:
ea:cb:b7:f1:4e:89:6e:20:bc:2f:87:59:91:03:32:e3:ab:6a:
74:5a:39:93:c5:90:ec:47:7e:70:c7:92:c6:dd:62:4e:1b:8b:
a8:0d:2d:39:46:30:1f:bf:a8:23:7f:d8:5f:af:0f:ce:32:4f:
be:3e:cb:12:b7:f0:25:a2:ef:e4:bc:2f:0d:ac:e8:c5:78:68:
72:c0:1b:b6:d0:fd:4e:05:d4:3e:41:d5:58:22:1e:6e:a7:0d:
48:77:b5:a6:14:63:39:e6:7e:ef:29:04:39:41:01:a9:09:1e:
10:51:31:4f:05:db:4a:db:b9:44:42:43:51:48:02:aa:02:64:
17:9e:0a:53:be:fc:f9:6b:b9:51:70:05:b8:7d:5c:54:16:46:
f7:d7:86:0d:8b:e0:93:e0:be:38:0d:78:b6:57:ce:7c:a9:c9:
86:0f:a5:e4:54:e2:be:e2:e7:c4:d0:cc:0e:c0:d7:48:93:56:
6f:3a:67:14:4d:b9:e2:3b:9f:bd:36:87:49:6b:93:5d:ef:9f:
0d:dc:cb:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:39:30 2025 by rpki-client