Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
File: Ojz5kZosgUbJb1oUsVdFm3lLai4.mft (raw, json)
Hash identifier: qDIfXexZFM3x3UJVY95jiOmgNCmRLpTSRxvE7fBI9gQ=
Subject key identifier: 55:16:22:D6:F7:1D:77:3F:26:EF:7E:03:14:1C:F6:77:F0:23:F1:BC
Authority key identifier: 3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
Certificate issuer: /CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Certificate serial: 019A50E30170BDDA9309E04EE01F9B266B32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 22:00:45 +0000
Manifest this update: Tue 04 Nov 2025 22:00:45 +0000
Manifest next update: Wed 05 Nov 2025 22:00:45 +0000
Files and hashes: 1: Ojz5kZosgUbJb1oUsVdFm3lLai4.crl (hash: KOUeFc7cfvZ3kRMkFUpYsh0XopLpHgLXle1dyKoudNY=)
2: jm4B5paf_GVr-GpkHFsecVdl0nk.roa (hash: l8vtbC+hCoUUJ+YOCg7b9XUWVs7njLshIKLeOlHSZao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:01:70:bd:da:93:09:e0:4e:e0:1f:9b:26:6b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Validity
Not Before: Nov 4 22:00:45 2025 GMT
Not After : Nov 5 22:00:45 2025 GMT
Subject: CN=551622d6f71d773f26ef7e03141cf677f023f1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:90:7a:54:9d:8d:50:3d:cd:2e:0a:13:db:97:
0d:6b:ff:4e:9a:5f:12:2e:ee:e7:39:07:81:ac:02:
12:7c:92:11:be:20:9c:b4:56:49:f3:eb:bb:81:20:
30:f5:e2:2f:1e:3d:89:18:52:16:71:12:01:e2:66:
94:1a:71:3a:70:a4:e9:2b:41:06:e4:c0:2d:60:28:
1c:a2:09:a0:3f:4e:00:d2:3c:47:0f:d7:f4:bd:c3:
72:09:12:dd:2c:ec:39:fc:88:7c:c1:5d:84:ca:cd:
b3:18:8e:f8:0f:28:23:20:58:53:c5:ff:dc:37:e4:
05:a5:58:b2:e7:99:2a:95:31:16:84:2c:c3:b7:99:
e9:e7:60:5b:6d:dc:7b:42:42:11:c8:46:38:a7:0c:
43:be:d1:2a:39:d9:94:b1:ea:22:4c:3e:a4:8b:63:
bd:e0:8e:d0:2f:cd:4a:1d:b6:aa:e7:b6:1e:79:4d:
96:6c:3a:01:b9:56:06:e5:4e:ef:d6:ec:e7:d8:1c:
4a:0d:ea:0d:89:ce:f6:1b:f1:33:f8:1b:b5:68:09:
18:ed:7a:38:0c:6f:da:47:14:bd:41:30:e3:1e:aa:
d5:06:a0:ee:6c:9f:20:6a:e3:10:42:32:6c:e1:9c:
06:fb:4f:55:fa:c7:a1:ab:4a:bf:6d:14:46:e4:51:
c9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:16:22:D6:F7:1D:77:3F:26:EF:7E:03:14:1C:F6:77:F0:23:F1:BC
X509v3 Authority Key Identifier:
keyid:3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:d4:0b:56:03:71:68:50:ca:6c:bf:fb:ba:56:33:6e:67:f8:
97:6c:0f:d3:00:4f:93:0c:d2:a9:d4:ad:18:4a:b2:06:28:cc:
17:75:1d:e0:9c:b6:de:90:d4:f3:85:5b:3b:88:78:20:49:a9:
7b:d0:a1:52:50:20:88:63:12:53:59:12:7b:24:2a:7c:d2:60:
f7:74:7f:1f:71:d6:b9:24:c0:f2:d7:0d:a7:ce:5c:2a:ac:b0:
1f:7d:3c:d2:3d:61:14:94:47:ea:7f:6a:6b:cb:1a:5a:b2:86:
61:28:0c:9f:ec:2b:7f:62:5c:7f:40:98:78:25:33:61:2c:92:
42:32:ed:8a:21:33:84:69:09:9f:ad:78:09:c3:ca:5a:f1:3a:
f6:55:ee:17:3f:d4:d3:f9:48:ab:57:6e:1a:a3:3a:63:b1:48:
eb:32:a7:ca:e6:62:ff:10:10:a5:fd:52:bc:fa:19:0a:f1:77:
52:a2:52:8f:96:a8:29:0a:c2:8f:6c:64:0c:70:27:fc:14:43:
22:07:63:07:71:b3:96:7f:56:1f:29:7c:f8:6d:c9:a3:78:fe:
53:4d:a4:c6:73:f8:1f:52:05:d8:c0:b3:3a:3f:66:00:4d:43:
7a:31:68:8b:1f:5d:ad:e2:54:82:c5:ff:a1:8f:84:ec:fd:ca:
89:99:42:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:08:15 2025 by rpki-client