Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: ZJgaq/bFlhCWUnizpX2TjldCllbv7iQXgl7O/SzbPag=
Subject key identifier: C9:E3:01:49:15:54:15:7A:FD:69:66:4B:3F:F2:E5:BA:92:58:F6:7E
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019A1D9A676A7D7B644361347728253F61C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 16E4
Signing time: Sat 25 Oct 2025 23:00:49 +0000
Manifest this update: Sat 25 Oct 2025 23:00:49 +0000
Manifest next update: Sun 26 Oct 2025 23:00:49 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: vHSug/QFWv1xg2IUP5sITIHZeD5KBBuN8TmLmSSiLeI=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:9a:67:6a:7d:7b:64:43:61:34:77:28:25:3f:61:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Oct 25 23:00:49 2025 GMT
Not After : Oct 26 23:00:49 2025 GMT
Subject: CN=c9e301491554157afd69664b3ff2e5ba9258f67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:54:06:49:24:b6:d0:70:35:f2:2b:85:ca:04:
8d:3f:f3:25:1e:37:f3:fd:ff:72:07:e5:8c:9e:86:
9b:84:2d:d1:1e:d1:5f:3c:76:88:47:59:f9:1b:20:
58:e6:01:5b:ae:d7:3f:05:81:7f:3e:95:c4:8f:0b:
b0:35:31:e7:6f:12:ab:cd:ea:64:7b:26:d6:55:26:
9b:43:fa:1d:b5:e3:a0:07:db:75:7e:f9:e9:5b:9c:
f9:af:9a:a4:73:fc:ae:8c:6d:95:71:96:02:6f:02:
b7:d6:b7:c2:85:e6:16:90:23:67:ff:68:e3:26:b6:
7b:ed:b9:d0:a5:8f:aa:27:1d:8a:d9:d3:63:bf:14:
c4:7b:4f:e2:60:ac:2d:68:fe:df:ec:e6:a2:d7:28:
99:69:3b:8e:0a:e2:3b:60:bf:b4:08:ac:d1:fb:ce:
6a:e0:3b:60:d8:e8:99:d0:1e:5d:20:e0:f7:94:fd:
3a:49:a9:16:81:f0:1a:38:43:ec:3f:c4:1b:18:38:
bc:3d:69:37:63:2b:3c:92:23:0c:75:69:9d:d1:26:
3a:07:c5:3e:e8:ee:f5:fd:c2:35:7d:f0:57:fa:41:
39:cf:fc:48:87:c5:5d:a0:fa:f8:92:98:a5:6a:8d:
a8:9d:bd:10:70:43:07:e0:4e:95:a7:8e:bc:5c:ce:
6a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E3:01:49:15:54:15:7A:FD:69:66:4B:3F:F2:E5:BA:92:58:F6:7E
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:85:8d:8d:ab:7c:bd:6e:ba:d0:b5:9d:82:58:0d:e4:dc:cc:
98:d3:ed:22:3c:e4:0d:55:af:3c:bb:0c:a9:9e:d7:64:0c:bd:
b4:3b:0d:23:fb:69:68:3e:ac:ce:17:dc:20:cf:c8:3e:f6:8d:
e7:d0:bc:23:63:40:59:e8:08:dc:29:ba:9c:c9:cf:65:84:12:
e7:ad:f0:fb:34:0b:a2:43:e0:e7:29:9e:2c:c3:19:ae:9e:51:
60:c9:2c:d7:e1:73:76:9b:2b:d4:ad:5c:73:b1:a9:42:53:ab:
ad:f1:fd:8e:3f:27:ba:9f:9b:1a:10:35:68:fb:8e:b2:9b:8a:
d3:0f:5c:02:f1:cb:fb:b6:b5:22:9c:7a:29:1d:50:0b:b3:01:
76:ad:3d:b4:ae:b6:72:32:ee:13:e7:ac:ca:c8:41:b8:a2:8e:
a8:6d:29:68:93:5e:dc:4b:02:a9:58:02:be:cd:d0:ae:e9:56:
1d:75:75:f7:ae:bb:ff:9c:1d:7d:ae:91:83:d5:61:69:14:03:
03:49:ec:3f:87:51:be:e6:0b:f3:40:c4:00:3b:65:57:3b:83:
5d:f4:f7:5f:ef:cb:d6:aa:01:ce:3c:71:de:4d:49:e2:10:8e:
04:bd:b5:a1:4e:d6:bc:b9:e0:c1:e0:6b:2f:61:ee:27:8a:eb:
26:11:a1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 01:19:07 2025 by rpki-client