Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: FgkXUr+BEM1RDK3vVMaGcll3HiLnSlOKnwfMC4Ae7M0=
Subject key identifier: 2F:BF:40:51:66:58:CB:BE:2C:43:82:15:46:6D:23:E4:AA:BA:8B:EA
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019A25F86F13A6BEDBF9BBE9973184CE4B05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 14:00:29 +0000
Manifest this update: Mon 27 Oct 2025 14:00:29 +0000
Manifest next update: Tue 28 Oct 2025 14:00:29 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: Jc6+KF+aMr/oMwFIx/oeO6XUi6QOh/h6HV1V9nbgg7g=)
2: WAQz-NVz1tPP197fB-7kdlHEMDo.roa (hash: EfunuE83nVqoEWqBwZZf7jU1FPr/i4YaWTLI4hd6d6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:f8:6f:13:a6:be:db:f9:bb:e9:97:31:84:ce:4b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Oct 27 14:00:29 2025 GMT
Not After : Oct 28 14:00:29 2025 GMT
Subject: CN=2fbf40516658cbbe2c438215466d23e4aaba8bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:30:dd:bf:7b:5d:14:22:66:d7:e3:9a:9a:54:
1e:e2:2f:aa:a2:c5:d7:36:7b:89:8f:f5:72:01:76:
10:4e:7f:ca:e7:b4:95:fb:1b:7a:70:37:bf:58:18:
98:62:76:73:b2:5f:d1:af:5b:50:fe:9f:73:19:24:
25:01:c0:7e:5b:d3:b8:de:1c:50:8a:c7:6c:6b:22:
8c:50:08:79:f1:87:07:1f:c2:09:8d:7f:d6:50:9c:
fb:50:d3:16:1e:4b:d9:7d:83:dd:c7:75:55:79:bf:
0a:73:a6:ca:e0:85:68:4b:c1:f5:ae:9b:6e:7e:06:
26:5a:c6:0b:5d:a6:13:d1:15:ae:5e:1e:ca:6a:09:
f1:c5:51:05:43:a1:d3:7f:28:d1:d0:e6:c2:df:1d:
1c:7d:b7:fa:ef:75:e6:32:95:0b:38:4c:ac:ca:ed:
1e:6a:a4:51:df:ac:8c:88:be:71:ed:f4:da:ef:78:
0d:bb:a7:fc:a3:4e:6b:ce:bd:ce:e2:82:83:69:65:
b9:b3:6c:c9:a0:0a:95:c5:cd:f7:d4:14:69:a0:83:
90:05:5a:de:16:16:3c:aa:d7:26:66:24:58:a6:76:
1d:41:6b:60:55:7e:33:e7:57:38:54:ec:d9:6d:0e:
4d:0d:9a:5c:42:6e:c7:38:cf:ba:fd:c8:cf:07:52:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BF:40:51:66:58:CB:BE:2C:43:82:15:46:6D:23:E4:AA:BA:8B:EA
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d6:0f:81:62:56:c9:e1:72:cf:fa:c7:91:df:58:8b:d6:2d:
f7:d8:c5:b5:79:59:b2:f2:13:e7:0a:02:fb:39:b9:36:fd:84:
13:27:6e:53:55:7b:09:75:04:78:ff:26:a8:74:4b:78:24:13:
ce:fe:e9:80:d4:f7:52:6c:ad:b8:db:99:a7:11:6e:cd:4f:e4:
12:eb:56:5f:ed:b3:20:e3:21:70:52:e8:c9:ad:73:bd:da:21:
c0:e6:f1:63:29:a0:e2:d9:23:db:33:c8:2c:7b:81:7f:67:2e:
2c:bb:ad:7c:fb:d7:e3:01:de:b5:df:f2:e2:30:d2:e2:a2:a6:
ba:05:a1:3e:5f:a2:c5:e6:db:49:0d:65:ee:05:1b:0e:10:7f:
08:47:6c:c2:cc:47:21:72:98:86:48:e8:c8:f7:95:bf:de:da:
f9:6e:7e:9a:51:fa:a7:27:72:3d:cb:f0:4b:dc:38:db:f5:74:
ea:fc:71:37:66:f0:8b:d2:d0:49:80:d3:61:90:f5:28:ea:7b:
04:87:ef:28:63:7a:c8:0c:77:20:ee:55:1f:6c:6c:f7:87:97:
c6:47:8f:c2:b2:16:43:d8:7b:88:ce:e8:7a:15:38:cf:20:38:
74:d9:78:6c:86:28:a0:59:16:70:f8:50:c1:9c:16:03:c1:af:
cc:bd:44:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZol+G8Tpr7b+bvplzGEzksFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5
MDMzNjQwHhcNMjUxMDI3MTQwMDI5WhcNMjUxMDI4MTQwMDI5WjAzMTEwLwYDVQQD
EygyZmJmNDA1MTY2NThjYmJlMmM0MzgyMTU0NjZkMjNlNGFhYmE4YmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDDdv3tdFCJm1+OamlQe4i+qosXX
NnuJj/VyAXYQTn/K57SV+xt6cDe/WBiYYnZzsl/Rr1tQ/p9zGSQlAcB+W9O43hxQ
isdsayKMUAh58YcHH8IJjX/WUJz7UNMWHkvZfYPdx3VVeb8Kc6bK4IVoS8H1rptu
fgYmWsYLXaYT0RWuXh7KagnxxVEFQ6HTfyjR0ObC3x0cfbf673XmMpULOEysyu0e
aqRR36yMiL5x7fTa73gNu6f8o05rzr3O4oKDaWW5s2zJoAqVxc331BRpoIOQBVre
FhY8qtcmZiRYpnYdQWtgVX4z51c4VOzZbQ5NDZpcQm7HOM+6/cjPB1JxpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+/QFFmWMu+LEOCFUZtI+SquovqMB8GA1UdIwQY
MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt
ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh
LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARdYPgWJW
yeFyz/rHkd9Yi9Yt99jFtXlZsvIT5woC+zm5Nv2EEyduU1V7CXUEeP8mqHRLeCQT
zv7pgNT3UmytuNuZpxFuzU/kEutWX+2zIOMhcFLoya1zvdohwObxYymg4tkj2zPI
LHuBf2cuLLutfPvX4wHetd/y4jDS4qKmugWhPl+ixebbSQ1l7gUbDhB/CEdswsxH
IXKYhkjoyPeVv97a+W5+mlH6pydyPcvwS9w42/V06vxxN2bwi9LQSYDTYZD1KOp7
BIfvKGN6yAx3IO5VH2xs94eXxkePwrIWQ9h7iM7oehU4zyA4dNl4bIYooFkWcPhQ
wZwWA8GvzL1EOQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 23:05:32 2025 by rpki-client