Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
File: obceuN8XHmQvGyuQQZAB8fxEXk0.mft (raw, json)
Hash identifier: ueu/VSCw1JFtm7V6m/FWZf39ZU66JgxaGZojgpq1NdY=
Subject key identifier: 7E:FD:67:E3:82:32:B0:79:DE:72:31:E3:18:95:39:AD:34:94:60:D8
Authority key identifier: A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
Certificate issuer: /CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Certificate serial: 019A7225ED4D1C7216FB103D3CC71FE10D74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
Manifest number: 0FE5
Signing time: Tue 11 Nov 2025 09:01:19 +0000
Manifest this update: Tue 11 Nov 2025 09:01:19 +0000
Manifest next update: Wed 12 Nov 2025 09:01:19 +0000
Files and hashes: 1: cGMojoHA_ji4dpM9uQ1afR_tOH0.roa (hash: i1gFi8NRL0iquVx1S2o3krHyHH6AFrbXa2Ge0Nqnor8=)
2: obceuN8XHmQvGyuQQZAB8fxEXk0.crl (hash: BsVX1ifrhBJ4LvKs1i3IhhZSFbutFcK4Wyf9n8BsqnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ed:4d:1c:72:16:fb:10:3d:3c:c7:1f:e1:0d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Validity
Not Before: Nov 11 09:01:19 2025 GMT
Not After : Nov 12 09:01:19 2025 GMT
Subject: CN=7efd67e38232b079de7231e3189539ad349460d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:17:84:a5:1b:d0:81:56:c6:e4:a6:5a:68:62:
d2:e6:8b:72:f0:ea:ad:89:54:53:54:b2:a5:e6:0c:
33:01:90:d6:b3:95:24:42:41:4e:ca:d9:89:3d:1c:
d3:c3:90:d7:97:1e:0e:6f:15:d7:13:e3:34:06:69:
8c:a2:64:b8:c0:ff:e5:4d:3f:72:a2:4d:7c:9b:fc:
a3:3b:a7:35:cd:06:c6:0c:37:5e:23:16:d8:a1:fd:
06:2b:79:e2:b2:5c:2e:43:59:69:cf:64:9a:cc:85:
77:30:e0:fd:e1:b8:69:12:c0:d7:9d:d5:13:d9:28:
f6:96:22:bf:51:83:a7:9c:fd:d0:67:5d:d0:63:95:
2f:19:37:55:b5:44:5d:cb:93:b6:ed:85:43:5f:5d:
ff:48:28:a2:d7:2b:e4:32:fe:61:da:f9:46:03:30:
74:54:fe:64:fe:62:e3:ba:9f:81:2b:f4:ab:2e:ba:
36:f0:7a:08:29:4a:ea:df:7b:12:17:30:b8:2a:fa:
78:55:b7:62:a3:e5:81:ff:d3:a9:5d:b4:3d:41:83:
21:aa:43:f2:70:97:57:c5:67:4a:bf:68:1b:7f:58:
a6:7d:b0:4d:6a:d9:24:df:cf:b9:78:3d:d2:e4:f5:
c9:fd:6f:00:b5:c8:c0:dc:73:40:39:a8:cc:db:7f:
1b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:FD:67:E3:82:32:B0:79:DE:72:31:E3:18:95:39:AD:34:94:60:D8
X509v3 Authority Key Identifier:
keyid:A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:e6:8f:bc:81:0c:84:6a:03:6c:3c:b9:e7:1c:cb:7f:dd:9d:
ac:56:7a:91:09:63:9d:65:8c:22:6d:f2:f0:3a:f4:da:13:97:
81:d8:cd:8f:44:45:b3:b0:a5:a7:ed:43:f7:1a:b9:d5:0e:75:
11:42:2d:4e:64:35:ee:f7:13:cd:43:28:a8:29:e8:04:29:2a:
db:cc:5e:c1:e9:ac:69:45:e3:e6:27:ed:87:ef:f5:79:a8:7b:
01:ec:df:5d:15:a1:68:f4:8c:e7:bb:66:0b:44:81:43:7a:a8:
27:05:bc:89:7b:c5:48:7d:42:f9:a2:53:4f:d4:ee:3b:44:1d:
c4:02:58:b0:97:bb:11:91:a4:b0:fe:12:cd:ac:3c:92:95:91:
20:33:9d:9e:27:f3:af:c2:5e:51:78:98:3f:73:4e:bc:94:7a:
72:1e:e1:5e:19:d6:54:15:8b:bd:f5:51:f9:b3:b3:94:90:02:
d4:3f:ec:74:95:59:21:25:09:29:15:e1:fd:c4:d8:8d:8e:bf:
8e:26:40:a4:9f:cb:69:24:ad:3e:3b:48:81:91:0a:08:d0:ac:
7c:d5:c1:5c:33:c3:7e:dc:21:c0:b6:1c:e1:f9:2b:1a:14:7d:
b1:a9:a5:a7:1c:df:23:11:26:63:59:4b:d3:40:6f:9d:ab:16:
1b:54:f2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:21:31 2025 by rpki-client