Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: rDmHpXpVbZIWBtfufXPQIMC69scKhdH90OfGMFZGAdE=
Subject key identifier: AE:3E:E9:08:52:8F:91:BB:CF:75:3F:4B:E7:84:E0:01:89:11:E0:93
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019A4B85346823C618732E83D8EB95F625C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 1172
Signing time: Mon 03 Nov 2025 21:00:12 +0000
Manifest this update: Mon 03 Nov 2025 21:00:12 +0000
Manifest next update: Tue 04 Nov 2025 21:00:12 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: guWk22mUT//kqpOxpMVexEFxHVKNmKvQWHu+LYQzpgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 20:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4b:85:34:68:23:c6:18:73:2e:83:d8:eb:95:f6:25:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Nov 3 21:00:12 2025 GMT
Not After : Nov 4 21:00:12 2025 GMT
Subject: CN=ae3ee908528f91bbcf753f4be784e0018911e093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:47:05:8e:30:86:04:de:fd:ea:b2:37:9e:
c5:4c:37:f6:ea:a9:d2:64:cf:20:ae:df:1b:3f:a1:
25:9f:ae:fb:23:05:59:90:2e:b7:10:bb:23:58:8d:
2a:e1:d9:3a:42:0f:4b:f7:45:12:8d:69:2e:38:e8:
cb:c2:34:f6:24:9a:3a:9b:83:67:e3:17:5a:4d:f5:
af:37:eb:77:14:27:df:87:c0:be:7d:35:8b:9d:ab:
9f:f9:93:7a:49:3d:fe:5e:cc:59:f4:2d:50:a1:9f:
0a:60:95:5c:1a:ec:4b:5e:5b:ba:fc:ce:be:ac:45:
17:63:c8:19:d8:0f:1c:28:04:25:3b:c9:59:03:ec:
08:0d:b2:83:ee:d7:c1:b7:e7:22:7d:bb:38:08:30:
c4:02:03:2c:07:5f:ff:28:a7:00:e0:a0:63:c3:7e:
09:e4:31:a9:9f:a9:73:a2:88:20:b4:b6:ad:ef:95:
29:6e:a2:3a:63:e5:66:23:c0:60:41:25:7e:9d:4d:
98:21:50:fa:6b:49:ba:70:0c:36:91:dd:f2:9b:4b:
ff:7f:af:ba:18:b4:5d:68:e1:c9:4d:b5:42:23:77:
dd:25:ba:bc:63:93:e8:9d:f4:61:9c:35:7c:5a:af:
96:b9:25:e2:a4:db:99:cb:f0:6b:4f:68:61:dc:33:
86:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3E:E9:08:52:8F:91:BB:CF:75:3F:4B:E7:84:E0:01:89:11:E0:93
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:d8:42:ff:05:97:18:3f:09:21:5b:c5:a5:a8:b4:09:89:5d:
f8:04:83:10:69:18:68:d1:4e:9f:2c:15:c0:22:21:46:01:4f:
00:05:0c:97:e4:6c:04:d9:d3:0d:37:a3:1a:e7:da:94:7b:31:
2d:7b:2f:8b:4f:fe:1b:3c:bf:2a:a3:e4:80:31:4c:98:15:34:
71:a5:be:c3:62:a0:ca:70:45:ee:dd:cc:56:7a:3a:f4:15:6d:
aa:e9:f3:1f:76:b4:24:72:9d:60:c1:f3:63:b8:39:dc:77:37:
b7:37:fd:f5:7e:55:52:d7:0d:0e:23:5d:d1:40:f4:eb:2c:71:
0e:5b:ac:6b:f1:a5:b7:2e:3f:ab:1b:8b:4c:8d:ac:fd:38:fa:
b4:36:5e:ac:a6:71:84:2e:3e:a4:82:8c:68:c7:97:74:1a:a6:
ef:15:40:dc:67:b4:4c:b4:11:82:a1:49:c7:fa:77:e5:26:ec:
e9:24:b6:3e:64:f3:02:3f:5b:5d:8a:1a:f4:75:9e:26:05:81:
b7:68:eb:30:8e:26:ae:7a:28:35:10:be:be:98:b4:73:2a:62:
17:c4:1b:64:04:fe:dc:56:44:f6:ac:25:26:e7:9a:41:d6:8e:
09:8e:4e:2e:06:1e:2e:b0:20:4f:6c:52:51:aa:c2:d7:5a:4e:
03:db:dc:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 04:01:15 2025 by rpki-client