Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
File: oN9_W2YYvaI8g77RG0QgQfH7RW0.mft (raw, json)
Hash identifier: nNnPYQHckDkGfnZZ9xtbHBVldOqG6ivbKlNTrwzkp/U=
Subject key identifier: 11:1F:45:8D:3A:2B:70:BE:F1:2D:58:EB:F1:65:07:32:4E:88:4A:0B
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 019A49CDD9661185E3D0F97FF3F9B890AED7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
Manifest number: 0FCC
Signing time: Mon 03 Nov 2025 13:00:18 +0000
Manifest this update: Mon 03 Nov 2025 13:00:18 +0000
Manifest next update: Tue 04 Nov 2025 13:00:18 +0000
Files and hashes: 1: M6-0ilcboil8V3qdXWtXp8FSrwU.roa (hash: WRf8o79b0NMGHVx92f3msPfTUcZhCgsvW5xiza5z8ZI=)
2: alnV74vFSam3rQx6Dmd1DNDuigc.roa (hash: MKKETCkbJ8gLUuVxMB/kJlGwLoMwUcWOoOci82/CtNA=)
3: dMb0PjxW_FKRnnqCOxhUGiKYQfU.roa (hash: SEn9C8PYQsCWBmkbIckjpQRAnohpBTNoR7109sqhxa8=)
4: l5fucFsRI8YqdsxQQ1gM3icDFgY.roa (hash: F8cwyE/KovnNrO6uesrwG6iPrTntm+Jn5JO1juTZFLQ=)
5: oN9_W2YYvaI8g77RG0QgQfH7RW0.crl (hash: PiTi2TGR4KVz/CaNqq+ofK8qzl1q82I53JG3Lu6nTXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:49:cd:d9:66:11:85:e3:d0:f9:7f:f3:f9:b8:90:ae:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Nov 3 13:00:18 2025 GMT
Not After : Nov 4 13:00:18 2025 GMT
Subject: CN=111f458d3a2b70bef12d58ebf16507324e884a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:72:1a:52:f0:a2:c5:6c:d0:f4:89:be:df:e2:
87:d7:d8:08:d4:da:a4:f5:11:05:05:ed:0d:2e:26:
37:6e:bf:2a:5b:23:f1:0a:8d:4a:6a:85:6c:50:0f:
83:16:69:3e:59:ea:e2:06:d1:f6:6e:d5:69:d7:58:
d1:d3:33:02:a6:e0:a3:06:7a:48:4a:13:65:1c:6b:
0e:ec:ef:b0:87:49:21:17:67:97:3b:56:0c:90:cd:
b8:ea:e7:ac:4b:62:d7:fb:f7:6e:41:00:5c:e1:92:
bf:8e:6e:e7:d7:1f:de:84:e3:0e:1a:77:d7:12:ae:
4e:ed:66:37:0c:3b:2c:2d:01:39:79:85:d1:cb:80:
5a:27:9c:01:4d:11:39:60:0f:d7:63:98:55:ba:33:
5f:6f:b2:dc:0a:31:ca:2f:c7:cf:f3:b4:59:2e:d3:
66:2f:0f:b7:6d:30:3d:e7:23:e3:7f:42:6f:2e:1d:
59:13:c9:80:02:03:59:06:42:31:55:f6:2b:07:88:
df:55:bb:42:e6:c3:4d:d5:b4:3a:b0:1c:7f:66:82:
71:dd:6c:b1:7a:09:d7:4c:c4:6a:21:db:65:a2:ec:
7a:73:25:c3:53:fb:53:95:69:18:7e:70:ab:61:da:
94:38:bc:52:cf:1e:03:1d:ba:18:4e:c4:97:98:23:
80:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1F:45:8D:3A:2B:70:BE:F1:2D:58:EB:F1:65:07:32:4E:88:4A:0B
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:22:ab:c9:6c:19:1f:cc:55:f6:69:fe:a6:f5:f0:6e:b6:82:
9f:08:5a:e7:36:9b:a1:01:1a:c6:4a:09:8c:89:5d:08:4f:53:
b8:77:23:5d:e6:dd:28:2f:1f:b1:60:cc:dd:76:b8:3b:92:d7:
b0:b0:ad:41:0d:e7:0d:77:7e:41:f1:bb:ab:ec:fd:8b:29:0b:
f2:f2:61:b5:08:8a:a5:11:70:3c:e8:81:fa:b9:11:31:f3:db:
95:a7:f5:25:ae:6f:8e:60:26:19:b9:8f:da:de:bb:2d:2e:36:
89:a8:cd:a3:a2:37:89:38:b3:c8:f4:2e:ec:f0:27:70:7e:01:
9f:0d:13:cf:e9:ae:a4:5c:ea:6f:68:c9:3e:2f:2f:3b:46:2d:
34:84:0d:ca:37:ed:36:6b:18:35:4c:84:0e:6e:9c:0a:67:c3:
83:77:43:f1:08:12:5f:8d:76:56:a4:ae:48:c9:fc:de:3b:dd:
29:49:a8:6b:e1:3b:ee:eb:e9:3a:22:68:a9:0f:0d:cc:4d:45:
ad:cf:07:9b:10:8d:67:c0:7e:e7:43:9d:92:e2:d7:2d:d3:2c:
e3:3a:80:8b:b3:9a:16:b3:d1:c2:e4:0b:e8:fc:e3:e0:32:52:
da:d4:2e:b9:37:46:4c:b4:c3:3d:00:82:7f:a1:c5:14:07:85:
ab:e4:0d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:40:14 2025 by rpki-client