Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: E1iDSx2/FpWKVNaFlTEkQ2I0SzvbJf8snfoV+NaKeNI=
Subject key identifier: 7D:B7:45:2D:C2:2B:F8:DE:77:C3:C4:85:AB:11:DC:67:01:EC:26:86
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019A72259A7368216C73AE0A37346A733248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0328
Signing time: Tue 11 Nov 2025 09:00:58 +0000
Manifest this update: Tue 11 Nov 2025 09:00:58 +0000
Manifest next update: Wed 12 Nov 2025 09:00:58 +0000
Files and hashes: 1: miHlM9LoOvhYbZQONUYiQ010Y0Y.roa (hash: lxFbzya4PF93jTfC+wdGWG8lRjQOoMqPwgxmgMabAZw=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: 47jinPr18wRqADPiZ5pdXe8f2MlWA5OnzhXP4ewgzvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:9a:73:68:21:6c:73:ae:0a:37:34:6a:73:32:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Nov 11 09:00:58 2025 GMT
Not After : Nov 12 09:00:58 2025 GMT
Subject: CN=7db7452dc22bf8de77c3c485ab11dc6701ec2686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e6:88:83:79:a3:b5:29:96:e3:39:c2:8b:b3:
85:14:e4:63:17:ca:f4:2f:46:2b:07:53:e5:1e:61:
74:fa:07:5d:30:6f:eb:e2:27:7b:30:62:ad:07:1e:
fe:7f:e5:95:8a:61:ec:0a:5b:ad:71:d7:fb:0b:be:
8c:3c:6b:cb:f0:12:29:61:43:44:02:bc:d1:c4:91:
31:fa:a0:01:f4:2d:ee:77:98:ae:47:d4:8a:79:7a:
c3:c3:62:a4:a9:cb:b3:78:64:24:ca:c2:20:e2:50:
99:6a:d8:73:06:5d:76:2b:97:3e:0d:84:a7:86:ff:
4b:e5:73:50:a7:41:20:d4:21:81:e6:bf:6c:9b:e8:
17:af:fe:cd:19:0a:e7:b2:5a:dd:dc:37:d0:ca:f0:
c9:a5:bd:5a:e9:ad:62:18:a6:4e:22:3f:14:b2:b3:
17:ac:f6:28:8d:16:78:e4:8f:ee:44:ad:8c:18:fc:
9a:58:28:ff:f8:55:12:af:b2:a3:83:68:f3:bc:55:
b1:e4:99:65:68:fc:00:ab:59:df:ac:04:fe:a5:04:
36:1d:b6:76:ed:b8:e2:c7:a5:75:b4:eb:a8:7c:25:
a2:d6:73:84:0e:cb:34:73:db:3e:14:ff:1f:4f:f7:
fc:bc:2a:8c:28:c0:bb:b4:cd:69:ae:bf:38:f6:97:
e9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B7:45:2D:C2:2B:F8:DE:77:C3:C4:85:AB:11:DC:67:01:EC:26:86
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:e5:a8:f1:8e:db:23:d2:33:4c:8a:98:32:b7:3b:52:4e:75:
15:9d:0c:80:a6:bf:9a:3b:01:44:b1:5f:28:25:d8:d3:e8:3e:
b2:fd:5a:bf:e9:0c:cb:d2:b0:81:a2:0c:33:a1:16:65:66:94:
07:64:1b:56:45:ad:61:3c:5c:6d:5e:89:d2:76:6a:08:cf:75:
3f:d6:5a:a0:f2:f0:e6:25:16:15:65:83:6e:f5:28:ec:14:5b:
e2:17:af:ca:d4:c5:dc:81:bb:59:6c:d3:f9:87:60:c6:21:67:
e2:3c:c6:52:10:18:0c:e3:6d:28:fc:53:6b:00:36:50:43:be:
ec:77:2b:57:5e:59:ce:cf:74:5d:5f:86:a1:af:05:90:1d:b7:
a0:a0:1f:b4:54:5c:82:d6:69:8e:2a:12:d3:52:5a:d0:72:2e:
ea:a3:63:38:f6:7a:92:2c:a7:55:da:33:30:b6:55:07:9a:80:
c3:54:84:53:73:34:90:fd:c7:89:ac:b9:d3:03:55:84:84:07:
b1:81:70:41:37:c6:fa:e2:d2:26:b1:6a:b5:b5:36:0b:b0:21:
1f:46:e3:e4:b9:42:40:92:19:0e:c0:1c:a6:ff:19:5d:81:9b:
8d:94:71:22:0e:af:7e:63:fe:40:a3:9a:79:82:53:c6:9e:22:
f0:73:20:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJZpzaCFsc64KNzRqczJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExOWZkNjMzYTRkM2QyMTBkZWNmN2RiNTdkMTIyYjY0OGI5
OGVkMjUwHhcNMjUxMTExMDkwMDU4WhcNMjUxMTEyMDkwMDU4WjAzMTEwLwYDVQQD
Eyg3ZGI3NDUyZGMyMmJmOGRlNzdjM2M0ODVhYjExZGM2NzAxZWMyNjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuaIg3mjtSmW4znCi7OFFORjF8r0
L0YrB1PlHmF0+gddMG/r4id7MGKtBx7+f+WVimHsClutcdf7C76MPGvL8BIpYUNE
ArzRxJEx+qAB9C3ud5iuR9SKeXrDw2KkqcuzeGQkysIg4lCZathzBl12K5c+DYSn
hv9L5XNQp0Eg1CGB5r9sm+gXr/7NGQrnslrd3DfQyvDJpb1a6a1iGKZOIj8UsrMX
rPYojRZ45I/uRK2MGPyaWCj/+FUSr7Kjg2jzvFWx5JllaPwAq1nfrAT+pQQ2HbZ2
7bjix6V1tOuofCWi1nOEDss0c9s+FP8fT/f8vCqMKMC7tM1prr849pfp8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH23RS3CK/jed8PEhasR3GcB7CaGMB8GA1UdIwQY
MBaAFKGf1jOk09IQ3s99tX0SK2SLmO0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMt
YzdjYWQ1MDIwZWVmLzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMtYzdjYWQ1MDIwZWVm
LzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk+Wo8Y7b
I9IzTIqYMrc7Uk51FZ0MgKa/mjsBRLFfKCXY0+g+sv1av+kMy9KwgaIMM6EWZWaU
B2QbVkWtYTxcbV6J0nZqCM91P9ZaoPLw5iUWFWWDbvUo7BRb4hevytTF3IG7WWzT
+YdgxiFn4jzGUhAYDONtKPxTawA2UEO+7HcrV15Zzs90XV+Goa8FkB23oKAftFRc
gtZpjioS01Ja0HIu6qNjOPZ6kiynVdozMLZVB5qAw1SEU3M0kP3Hiay50wNVhIQH
sYFwQTfG+uLSJrFqtbU2C7AhH0bj5LlCQJIZDsAcpv8ZXYGbjZRxIg6vfmP+QKOa
eYJTxp4i8HMgSg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:14 2025 by rpki-client