Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
File: OPnFTxkZPgZUgWP4lcOka5-L-7U.mft (raw, json)
Hash identifier: UrBfvhpOkQS80AFo9MvGoZalr7qAd6BR+dQuGh9xJQw=
Subject key identifier: CF:AF:B0:EC:27:3C:30:B7:C4:CD:B3:38:23:EA:D5:19:4A:03:7A:71
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 019A2CD64B4C3A84B0FDEE7A80A5B070A0A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
Manifest number: 1701
Signing time: Tue 28 Oct 2025 22:00:32 +0000
Manifest this update: Tue 28 Oct 2025 22:00:32 +0000
Manifest next update: Wed 29 Oct 2025 22:00:32 +0000
Files and hashes: 1: 06fKvJ6DXtLQkPRF_5x6h3y4T5U.roa (hash: pwXaDGNXY2yyDJWetIQvjmX4OTShxo8fPOC9bn7nYwE=)
2: GAcb3_GTi9es4ti94Ex9da8Yuuo.roa (hash: hXt1K6MNNmm3FVbMZur0tZVjSZe1csXYHc6pvZG31yI=)
3: IPfQIXhx-EVpYevUCH6nRlI1vEk.roa (hash: aoDfqoJzdh17Itb5jDuQwg4ZtT6PxaA9lD3xjUMRLF4=)
4: OPnFTxkZPgZUgWP4lcOka5-L-7U.crl (hash: FK2nOQ3GV2+x7BgXwvD3J2GIMtwwHHxFlXBwW25Tn/U=)
5: S7F8i1yEfNMFg3wpeOW0-FZBtwg.roa (hash: Rx3B3lYVZPumB8Nlts1azVOM9+RgsZGpcLJHsf7VfhM=)
6: nd6lHNAwUs4ZI74-h5aLN2zFa-w.roa (hash: X+qt5MDK/JQj57z8c3vd0NZATrYmJ74WqiXy7QQvbTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 22:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:d6:4b:4c:3a:84:b0:fd:ee:7a:80:a5:b0:70:a0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Oct 28 22:00:32 2025 GMT
Not After : Oct 29 22:00:32 2025 GMT
Subject: CN=cfafb0ec273c30b7c4cdb33823ead5194a037a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:8b:d3:31:4b:9d:c4:d8:37:fb:05:76:88:
8a:d4:2e:c3:61:d0:d9:6f:5f:64:d8:0e:44:a4:71:
fb:32:cd:81:ad:76:bc:ef:66:f1:e6:8f:78:59:ef:
b5:bc:f4:ac:ab:11:94:c2:ef:c9:ff:16:ba:5f:ec:
c2:60:fe:59:c5:e2:e7:6e:96:3b:b7:45:e3:e4:0a:
94:a7:06:31:6a:2f:5b:85:e4:27:76:c1:d3:45:65:
7a:f3:78:ce:b0:96:35:b1:bf:7a:61:ab:ef:24:1f:
bb:ec:1f:91:4b:69:81:b0:5a:50:6e:b5:e8:65:ae:
9a:a5:77:91:8d:e7:63:df:a5:e7:6a:d1:03:fe:6a:
7e:d6:5d:4c:b3:eb:2b:ea:da:52:c8:b3:20:42:1a:
1d:68:7f:2b:69:5e:9c:1c:a9:63:87:ee:f0:d9:b7:
ce:28:9e:a2:94:93:88:b3:b0:a9:03:84:5c:f9:f7:
ec:0b:e4:cf:ef:2a:3f:57:1e:9e:f1:e8:a1:73:4a:
c3:a7:2b:31:c7:80:eb:2f:49:63:7d:8b:25:c8:b9:
59:f4:83:b7:5e:cc:e9:c7:15:93:45:f4:15:51:7a:
3a:c1:cd:a1:a3:30:ce:d5:57:8d:77:a7:42:c4:46:
11:65:e6:ac:41:6c:34:0b:29:12:80:d3:61:d7:db:
37:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AF:B0:EC:27:3C:30:B7:C4:CD:B3:38:23:EA:D5:19:4A:03:7A:71
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a7:ab:2d:16:e1:eb:b9:6f:d5:74:04:10:90:5d:b3:c8:83:
78:40:61:de:2f:6c:af:d0:22:37:28:55:83:d9:65:c4:d0:d5:
15:9e:0b:30:85:ad:67:d8:61:c3:06:53:6b:17:8b:d4:7d:6f:
84:e3:5b:10:7b:b6:15:7a:88:e3:d6:00:9f:ab:53:3c:46:b9:
56:0c:3b:f1:82:3e:f9:87:2e:cd:6d:2a:04:e9:7c:49:5c:4e:
03:7c:4d:84:16:a5:42:99:b3:1d:fd:c6:5c:b2:f1:8f:ce:cc:
f2:8a:42:b1:d8:67:da:b3:03:b3:c5:18:1f:09:29:15:01:f3:
54:9c:90:e0:1b:d7:a0:3b:c2:f5:16:f0:f5:c8:6f:b7:76:a1:
fe:bd:c2:41:55:6d:50:1e:18:35:2c:b5:52:ce:31:03:c9:a9:
a2:f1:d0:54:e4:ed:c2:e1:76:c1:a7:8a:db:30:90:5a:67:8c:
23:3b:69:34:4e:1c:c3:81:17:8a:17:4d:50:6c:a9:4e:0e:f8:
f2:af:3c:f6:9f:c5:64:aa:27:b8:05:ac:b4:13:3a:e4:58:a7:
bc:a7:8b:a6:11:68:a3:19:8e:9e:65:ec:14:0f:a8:06:f0:41:
e1:09:14:66:db:29:9c:98:26:2b:ac:e4:52:d7:5c:9d:9b:82:
b5:9b:7c:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZos1ktMOoSw/e56gKWwcKCkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZjljNTRmMTkxOTNlMDY1NDgxNjNmODk1YzNhNDZiOWY4
YmZiYjUwHhcNMjUxMDI4MjIwMDMyWhcNMjUxMDI5MjIwMDMyWjAzMTEwLwYDVQQD
EyhjZmFmYjBlYzI3M2MzMGI3YzRjZGIzMzgyM2VhZDUxOTRhMDM3YTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9iL0zFLncTYN/sFdoiK1C7DYdDZ
b19k2A5EpHH7Ms2BrXa872bx5o94We+1vPSsqxGUwu/J/xa6X+zCYP5ZxeLnbpY7
t0Xj5AqUpwYxai9bheQndsHTRWV683jOsJY1sb96YavvJB+77B+RS2mBsFpQbrXo
Za6apXeRjedj36XnatED/mp+1l1Ms+sr6tpSyLMgQhodaH8raV6cHKljh+7w2bfO
KJ6ilJOIs7CpA4Rc+ffsC+TP7yo/Vx6e8eihc0rDpysxx4DrL0ljfYslyLlZ9IO3
XszpxxWTRfQVUXo6wc2hozDO1VeNd6dCxEYRZeasQWw0CykSgNNh19s3GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+vsOwnPDC3xM2zOCPq1RlKA3pxMB8GA1UdIwQY
MBaAFDj5xU8ZGT4GVIFj+JXDpGufi/u1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMt
NzI0OTQ5YjQ2MGU5LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMtNzI0OTQ5YjQ2MGU5
LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASqerLRbh
67lv1XQEEJBds8iDeEBh3i9sr9AiNyhVg9llxNDVFZ4LMIWtZ9hhwwZTaxeL1H1v
hONbEHu2FXqI49YAn6tTPEa5Vgw78YI++YcuzW0qBOl8SVxOA3xNhBalQpmzHf3G
XLLxj87M8opCsdhn2rMDs8UYHwkpFQHzVJyQ4BvXoDvC9Rbw9chvt3ah/r3CQVVt
UB4YNSy1Us4xA8mpovHQVOTtwuF2waeK2zCQWmeMIztpNE4cw4EXihdNUGypTg74
8q889p/FZKonuAWstBM65FinvKeLphFooxmOnmXsFA+oBvBB4QkUZtspnJgmK6zk
UtdcnZuCtZt8hw==
-----END CERTIFICATE-----
Generated at Wed Oct 29 06:02:09 2025 by rpki-client