Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: IbHoOBEDQY6tU+0w4TWMkNDPRLv+yPG/lmHTbWz8dqs=
Subject key identifier: 67:58:B3:2A:CF:7C:39:F3:77:C2:16:39:69:DC:E6:77:55:B7:51:1A
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 019A1F51EDB07FF2542243CF17DFDC8EA24A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 06D4
Signing time: Sun 26 Oct 2025 07:00:54 +0000
Manifest this update: Sun 26 Oct 2025 07:00:54 +0000
Manifest next update: Mon 27 Oct 2025 07:00:54 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: oBIamK8PXJC5KyeQ1V0bmrsl7pFATfUV+rpcQhaK/lA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:51:ed:b0:7f:f2:54:22:43:cf:17:df:dc:8e:a2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Oct 26 07:00:54 2025 GMT
Not After : Oct 27 07:00:54 2025 GMT
Subject: CN=6758b32acf7c39f377c2163969dce67755b7511a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:e5:a7:52:53:eb:84:62:be:29:16:07:3f:
07:b9:a2:a3:f4:01:1a:d3:b2:f8:51:47:88:ee:ff:
32:bf:24:01:fd:e9:d3:85:2d:4e:a0:7c:00:5e:01:
c8:8a:a4:c0:e0:5e:ef:0c:89:9d:79:35:d7:72:fb:
07:06:e7:5b:ee:e0:cc:fc:fd:47:41:89:06:6d:6c:
c3:56:7b:66:07:1c:bf:3b:05:57:6f:da:41:b6:5d:
3e:86:8e:b7:20:79:6e:b8:ab:d9:98:61:9c:d8:c0:
1c:bf:a7:9c:15:45:37:59:c0:51:d3:5a:6a:bb:8b:
17:3b:82:b8:c0:0e:74:69:5b:8f:0a:1c:91:7e:17:
83:60:67:2a:b5:e4:69:50:a1:ca:5c:e5:b9:4d:e4:
45:9d:dd:af:61:c2:68:cb:03:12:08:17:ed:2c:7a:
5e:54:d5:f2:72:00:c8:43:b2:1d:4a:94:84:04:cb:
b1:9c:01:f9:ed:1b:a5:20:92:86:13:94:6d:be:55:
8d:61:f5:1a:8c:78:2b:72:30:81:44:2b:35:20:96:
1b:88:bd:ed:09:91:2f:73:b2:d1:c6:7a:df:d5:83:
96:94:48:f1:17:cb:97:1e:1d:06:89:e7:5f:5c:41:
5b:47:b5:02:8a:f0:1c:b4:72:7c:06:c0:31:d5:51:
b5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:58:B3:2A:CF:7C:39:F3:77:C2:16:39:69:DC:E6:77:55:B7:51:1A
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:91:b8:23:f5:26:74:f6:61:ae:6d:35:00:9c:b9:cc:f5:e8:
de:b3:ef:c0:7d:27:44:e7:d6:db:18:84:62:c2:20:a5:2d:54:
f0:ed:6e:d6:2a:de:7e:20:32:65:3e:20:fa:42:70:86:ec:74:
c8:cc:00:0e:28:e2:c9:61:12:35:36:a1:e8:67:69:ad:2e:fb:
c4:7a:d4:df:91:e1:bb:4d:c0:28:e1:42:31:49:81:c4:08:94:
ad:e2:06:64:2d:ae:64:25:3d:e2:5a:c0:06:af:d6:63:21:5e:
68:d4:59:c1:21:33:77:e7:7e:e1:9f:2a:46:3a:79:a1:50:c2:
71:82:71:05:0a:82:f4:0a:14:3f:55:ab:ef:50:c1:77:69:dd:
1c:72:38:42:b3:3d:8f:e7:1e:25:d5:bd:a8:86:3d:1f:80:83:
ef:e8:b8:c1:e4:ae:27:df:fd:4b:e7:ec:a2:a2:23:01:ef:dd:
82:92:0e:7f:37:4d:c9:e0:74:e6:e8:a7:3a:61:af:ff:07:56:
6a:bc:58:fa:7c:d3:4b:05:f6:94:51:08:76:39:63:3d:bb:70:
f9:fd:ab:db:de:52:b3:16:53:d0:ba:50:32:4e:50:99:be:47:
33:ac:00:4b:2d:de:7d:ed:c0:44:02:0e:57:1c:90:25:0b:cd:
f9:a7:ff:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 17:21:16 2025 by rpki-client