Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json)
Hash identifier: b5INVpBgtesrBT3BwrDHOFvsuOEIrYat+y1HpUTSG2I=
Subject key identifier: 9B:5A:B9:86:D0:7A:27:48:2C:46:1B:33:21:6C:88:EA:E0:D4:60:F3
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 019A34C6FD8FEC2BE97E7FEA257BEF9E551B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
Manifest number: 0C34
Signing time: Thu 30 Oct 2025 11:00:47 +0000
Manifest this update: Thu 30 Oct 2025 11:00:47 +0000
Manifest next update: Fri 31 Oct 2025 11:00:47 +0000
Files and hashes: 1: c6Nj79I3Har3nGytaNZUrH4rLp8.roa (hash: pFirwTzGIzOGXK1Oft6HDqGlSVO899FoeQfzjWxGxFc=)
2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: cEerXstIBMPD9M8/xNXoflAtCGRod8l9WmD9x11OWLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:34:c6:fd:8f:ec:2b:e9:7e:7f:ea:25:7b:ef:9e:55:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Oct 30 11:00:47 2025 GMT
Not After : Oct 31 11:00:47 2025 GMT
Subject: CN=9b5ab986d07a27482c461b33216c88eae0d460f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:d2:9a:1d:31:d2:4b:ec:53:cf:ed:7b:95:
9c:7e:72:03:f4:71:37:12:ba:64:34:33:a2:7b:83:
a0:0f:6c:a3:5e:63:1e:54:dc:96:df:4f:5b:d4:95:
d7:e8:fc:e1:db:85:52:85:ac:65:bb:1a:01:3a:2f:
5d:c7:23:8c:77:ae:68:ff:cc:d7:9a:af:b5:8f:f9:
9e:29:e7:c7:92:47:a0:85:fc:a5:bf:ff:fa:88:48:
90:94:4f:18:1b:b5:1a:ac:10:12:6d:2d:2e:52:c2:
0d:22:d3:7d:a2:ec:41:d3:1b:0a:17:a9:44:9d:4f:
0a:31:37:6b:0e:05:45:59:5f:99:5d:bf:fd:70:e6:
6a:e0:f2:bc:24:fe:d1:8e:ad:c8:1b:ba:5a:ba:33:
5d:53:ac:84:fe:8a:9b:c8:7f:0f:22:28:a3:a2:3d:
2f:59:91:56:2b:6a:65:fd:c9:78:7b:74:cd:99:0a:
75:32:3c:b5:da:3b:77:a6:7d:a5:b7:bf:1b:9b:94:
ed:f8:1b:7e:db:85:1d:e2:95:ce:c6:df:11:bd:55:
04:c4:24:e3:d8:93:d6:c5:a1:04:44:06:7d:4f:43:
6f:44:32:5f:60:95:5c:5a:22:d8:a3:a1:b6:3a:fc:
d2:9f:f0:94:f7:33:d4:36:0e:bc:46:c3:86:51:47:
3d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5A:B9:86:D0:7A:27:48:2C:46:1B:33:21:6C:88:EA:E0:D4:60:F3
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:82:89:e8:5d:6c:17:96:c5:c8:26:c7:d0:2d:a3:6f:2c:de:
d3:7b:08:5d:cc:d6:3f:70:66:a7:03:b2:aa:b6:31:d0:e2:7c:
17:c6:b7:59:9f:a4:77:8b:83:df:32:dd:68:27:85:71:8e:a4:
ac:db:88:d9:44:99:26:36:13:97:72:30:61:2f:c0:e1:db:b9:
df:76:fd:e8:7a:cb:64:8f:0a:ea:50:ba:da:a4:ab:a1:c9:6d:
d2:d8:e0:31:a7:56:a0:cd:c6:2d:0c:27:70:55:d5:e6:ec:cc:
cc:ee:dd:46:6b:2a:9c:84:6b:07:d9:47:c4:c6:17:fc:5c:2f:
0f:14:4c:9b:c5:69:46:bb:05:47:9a:82:8f:54:f7:73:45:a1:
f4:83:d6:bb:6f:90:88:f9:1a:e3:b7:fd:7a:a2:2d:ef:f5:96:
ca:7c:63:7d:27:e8:16:50:6b:e5:0e:07:e6:89:55:1d:19:98:
53:8f:2a:29:14:b1:c5:b3:ec:45:c6:4e:b9:0a:fb:ef:df:ab:
79:04:61:ad:f2:b4:e2:01:41:5d:b9:32:c3:25:8a:9a:b6:04:
27:3e:57:7c:ad:49:a7:56:37:f1:31:91:eb:76:61:7c:44:df:
05:1b:a6:92:09:d9:e0:20:1e:f9:f9:b4:4b:d6:f4:9e:49:55:
e4:00:df:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 15:10:15 2025 by rpki-client