Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: C7Hcml2F461QZm19cLxsifD1KdaYTtGcFuBWf7ffP60=
Subject key identifier: 88:76:20:1B:9A:5F:36:7F:05:B6:F2:D4:42:BA:4B:C3:BF:6F:E2:FF
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 019A71B8B009CA99A5EE882C08F4F9983779
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 0C69
Signing time: Tue 11 Nov 2025 07:02:00 +0000
Manifest this update: Tue 11 Nov 2025 07:02:00 +0000
Manifest next update: Wed 12 Nov 2025 07:02:00 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: QhEmC3agOxFBx97W28oDvF2TfX8ekuJ7xN73MfClorQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b0:09:ca:99:a5:ee:88:2c:08:f4:f9:98:37:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Nov 11 07:02:00 2025 GMT
Not After : Nov 12 07:02:00 2025 GMT
Subject: CN=8876201b9a5f367f05b6f2d442ba4bc3bf6fe2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6c:50:e7:5e:77:3c:ef:7f:2b:b1:f3:22:90:
3d:74:25:ed:c5:86:1d:52:50:6b:9c:8b:c3:60:ab:
2f:13:2b:6f:61:2f:c7:92:db:9c:fe:0f:eb:ec:43:
60:cf:21:7b:4a:16:0b:c7:58:78:1c:52:db:5b:e4:
8c:3c:aa:d1:4e:5c:35:7f:cc:1b:e4:e3:d4:fb:b9:
b1:39:48:7e:e5:62:2b:b8:3c:39:d3:d1:c1:e6:7e:
4e:3e:b5:3b:97:0c:ed:a9:dc:cf:e6:9d:d1:89:c1:
2f:4d:ff:39:4d:d1:e0:95:29:97:99:8f:38:32:3d:
10:60:f4:ca:52:e7:89:78:b6:20:72:b1:d1:c0:88:
0d:00:14:99:7e:46:26:cb:e8:8e:95:2e:8a:51:13:
be:32:6c:4e:c6:f3:fb:73:91:82:ad:56:17:b0:cd:
be:1d:5a:2e:5d:8a:d1:0d:54:7b:7b:f8:cc:c1:50:
c4:92:f2:87:f1:20:92:c2:7f:6e:23:75:3d:e2:99:
7e:8e:06:14:df:ac:b7:83:cb:6c:d4:d6:49:9c:b7:
8f:4e:85:1e:5a:4f:c6:9d:5d:ce:ee:79:1a:bb:92:
0e:1b:e1:ed:20:4a:8e:59:98:11:18:13:a0:fa:1c:
b1:e0:60:18:50:39:42:16:0e:e2:5c:06:f3:a3:1b:
a1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:76:20:1B:9A:5F:36:7F:05:B6:F2:D4:42:BA:4B:C3:BF:6F:E2:FF
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:6c:6a:f0:bd:f5:c8:c6:3f:dc:6e:b6:29:27:12:a0:ff:10:
fd:30:ec:f5:9b:ae:b7:02:d7:c8:f9:2b:1b:07:bf:43:1b:83:
fb:b0:d6:65:93:6f:84:11:2d:fe:8a:f4:08:d9:da:50:2e:47:
18:14:4c:45:65:2f:3d:d5:db:5e:2d:60:aa:e1:c0:ab:30:90:
d7:cc:c0:5d:b2:fb:4b:35:f9:08:e9:56:ec:f7:28:fa:10:3f:
99:55:65:02:33:b5:4c:b7:37:96:43:7c:08:0e:fa:85:75:75:
a7:86:7b:8b:cd:d4:67:3e:f4:f6:ac:9c:a5:c7:82:16:aa:e3:
eb:bc:6f:88:ac:49:02:2a:4c:23:3c:46:79:01:dd:1b:da:56:
74:22:8c:7e:fc:83:65:de:78:94:de:b1:07:b5:7b:45:82:7e:
ec:b3:2f:32:fc:ed:89:02:c7:fc:2c:ba:ca:02:0d:51:61:ea:
27:05:3c:6a:13:07:87:f0:b4:15:dc:f4:21:ca:ff:0e:ef:75:
d3:22:ee:05:0f:a4:a5:d5:66:07:a6:01:cd:45:d2:88:81:75:
70:55:83:ce:79:2a:46:f1:cc:89:99:53:73:33:55:cd:52:4c:
5c:2c:15:ed:63:43:3e:87:12:cc:a0:48:68:48:0d:c9:d1:fb:
4d:7d:53:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:52 2025 by rpki-client