Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json)
Hash identifier: tvFReO4jKITuWprQhWcBUha7t97dhU/WQfKDlLCLrYI=
Subject key identifier: 7E:99:43:77:94:7A:FD:F4:72:8F:FF:26:53:D0:0D:7C:63:60:FF:E9
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 019A22C0739297FF51FFFFF1F1E4364D31A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
Manifest number: 16FD
Signing time: Sun 26 Oct 2025 23:00:29 +0000
Manifest this update: Sun 26 Oct 2025 23:00:29 +0000
Manifest next update: Mon 27 Oct 2025 23:00:29 +0000
Files and hashes: 1: cqMIZbZG_XjFMjyio64LoSb9JEM.roa (hash: xBYH5ZrjKUuPI62l0z0GQBA4FW4u95fkTkxgETr+i9Q=)
2: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: brDLWZvVDIgYkt75I0JG9j8lNpsclILnb1nvNIcZNq0=)
3: wlqxE5iuLQB304PN7hVNM4_5h14.roa (hash: xdHQ2e13Tky6CrFmxy2+w5Er25IzDfQGHtx/iyo+wSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:73:92:97:ff:51:ff:ff:f1:f1:e4:36:4d:31:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Oct 26 23:00:29 2025 GMT
Not After : Oct 27 23:00:29 2025 GMT
Subject: CN=7e994377947afdf4728fff2653d00d7c6360ffe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:d1:8b:f4:37:66:86:2c:d9:e3:0d:ba:55:
30:95:f5:b6:b9:65:89:91:c8:b3:17:08:00:54:43:
f4:4b:b0:14:56:d6:cd:8b:e3:9f:05:fe:f0:66:05:
b6:d2:c7:08:94:c1:73:16:71:9d:21:23:a5:6e:0d:
70:2d:ce:39:3b:ec:9b:7e:ab:13:1c:07:be:a4:af:
c1:cb:23:b1:07:91:01:52:76:3e:0b:15:6c:ce:8c:
34:90:8f:c7:bd:16:55:1b:25:d8:2b:40:cc:d5:5f:
b8:bb:ff:09:7d:9b:3c:56:ed:2f:17:c7:df:c7:99:
47:e1:54:ce:5c:62:88:e7:ca:b7:ff:ab:80:75:3f:
f0:0e:fc:1b:32:3a:6d:e1:1a:f6:5c:9f:c4:bc:73:
24:fe:7f:87:14:64:cf:2e:fb:ed:ec:61:40:54:63:
ef:c7:3c:ec:ed:5d:0c:7b:2c:85:cd:5f:46:e4:89:
56:7f:d8:a8:86:44:24:c2:1a:1a:f7:bb:34:e7:ea:
5b:d4:dc:c7:89:15:72:b7:60:8c:8f:61:0a:f5:f2:
19:d6:f9:22:b9:84:b0:ea:c9:fd:f0:e0:f5:20:04:
58:62:e1:eb:86:c4:11:a3:bf:fe:0b:75:04:2e:38:
7e:96:3f:66:ed:78:93:59:2f:1a:af:0a:79:55:a7:
a6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:99:43:77:94:7A:FD:F4:72:8F:FF:26:53:D0:0D:7C:63:60:FF:E9
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a3:9b:18:71:2b:ef:27:44:0c:bd:02:7c:85:3b:c0:55:a9:
bb:d5:ad:39:6c:41:7b:63:4d:7a:30:94:2c:9c:56:3c:f6:5b:
0e:f0:de:c4:ee:52:c2:86:19:42:df:58:b9:ce:66:c4:6b:1d:
af:04:5d:03:44:33:6f:b3:ce:5e:d2:7b:53:b5:5c:3a:f9:cd:
2a:99:99:d0:28:ce:09:ed:56:a6:18:48:17:d7:43:cf:c7:18:
ae:0e:e7:58:40:04:51:84:e1:b4:0a:84:14:7e:36:ab:5c:3a:
e1:8d:3f:fb:11:12:5e:03:19:dc:14:e7:97:ac:32:55:e3:b3:
76:7a:b8:99:eb:c0:d7:2b:c4:87:28:28:c5:af:dd:b5:ea:e0:
28:80:7f:24:84:e8:89:75:2d:2e:6a:0a:4a:09:64:1c:82:02:
5e:bf:db:00:bc:77:d1:96:d3:76:f8:b8:1b:7b:b2:b0:ea:18:
ef:cb:c6:48:61:3a:46:2e:0e:34:a2:bb:9d:34:74:5c:9f:7f:
26:5c:80:4b:d0:65:a5:9d:5e:e8:b1:6b:d9:af:49:14:ef:72:
ec:1f:ee:7d:6b:a3:93:59:fb:ba:ac:68:78:49:a5:6e:1f:18:
a4:3d:37:04:60:6e:de:60:b1:73:91:43:71:19:3a:76:c3:12:
0a:39:b4:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:41:42 2025 by rpki-client