Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: M29BNifh/eylTveKC8I1HZJ68vdgmmHMn5KzbgrJu60=
Subject key identifier: D7:72:9A:B9:B9:38:C2:65:E5:E7:64:46:EE:CB:DC:42:51:BF:F1:50
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 019A72CA690CACBCA7797E9F27E21045D703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 12:00:59 +0000
Manifest this update: Tue 11 Nov 2025 12:00:59 +0000
Manifest next update: Wed 12 Nov 2025 12:00:59 +0000
Files and hashes: 1: SxgKNPaYJVhAK36SOSTuyxJmYzI.roa (hash: iBEUhnRScZ+rajzC9bqU9rcXbnYIQMvrpQOY+tW8FQc=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: 4d30FBC9MQL4YDjzxNIvcW3I5R5QUGWmlqG/vbBD2lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:69:0c:ac:bc:a7:79:7e:9f:27:e2:10:45:d7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Nov 11 12:00:59 2025 GMT
Not After : Nov 12 12:00:59 2025 GMT
Subject: CN=d7729ab9b938c265e5e76446eecbdc4251bff150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1b:24:88:e0:8e:05:59:9e:ea:50:33:f1:4a:
cf:2f:da:46:13:ec:96:5f:23:eb:02:28:36:e9:54:
e3:03:e3:ce:73:ba:19:1c:6a:af:ea:38:4a:96:6b:
45:3b:f4:28:2b:9f:28:c5:87:1d:ca:f1:0b:7c:fb:
97:71:c5:e6:f1:3d:b9:17:01:53:8b:47:37:c8:3d:
47:14:0f:eb:e8:eb:47:64:1a:95:49:e4:2a:6d:b3:
8a:81:f3:12:59:9a:52:21:9b:55:74:f7:24:db:d8:
26:d4:88:12:7b:79:ac:0f:a2:64:12:8f:89:fb:93:
c5:e9:0c:1e:ec:c9:45:aa:eb:21:47:78:53:85:1e:
e3:4f:9d:ba:7a:ea:ae:b8:aa:58:27:31:70:b1:70:
10:e0:40:c1:f3:70:f6:ea:05:6c:14:e4:3b:5f:fb:
d8:50:8f:2c:8a:01:3b:aa:23:e4:a2:63:8c:6c:0a:
3f:45:a0:29:13:7d:15:50:43:72:7f:43:58:ad:5c:
f6:08:b0:25:1c:65:da:2b:35:d6:74:ba:0a:3d:e4:
3c:4b:bb:f3:5f:66:32:27:99:fe:71:7e:dc:4a:f6:
78:74:19:42:97:ed:02:4f:cd:e5:1f:8b:85:f1:f5:
9b:58:9b:e4:3f:8e:95:cc:0c:a5:96:bb:8d:75:56:
37:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:72:9A:B9:B9:38:C2:65:E5:E7:64:46:EE:CB:DC:42:51:BF:F1:50
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:c5:11:2a:30:32:22:12:5a:31:dd:4f:2c:7e:2b:b5:44:31:
b0:7c:4d:22:9d:39:2e:03:55:c6:a6:34:19:93:00:94:0c:82:
c8:34:d8:43:61:1d:84:de:5e:77:7b:7b:aa:65:19:b7:79:86:
97:8d:d6:6f:ac:3c:49:0f:46:6f:3e:17:67:7e:66:90:ff:be:
27:46:4a:0a:cb:22:bb:07:78:dd:54:aa:9d:dc:f1:03:8b:b8:
27:4d:4e:38:82:e2:e2:9e:29:cb:49:3a:d6:c2:3e:73:44:9e:
6b:a1:00:aa:65:02:d3:e2:05:1a:98:1f:4e:c7:c6:1f:5f:9b:
6b:60:01:87:ad:24:6c:7f:20:de:09:04:e9:98:f0:14:93:3f:
3f:1f:c0:70:8e:ae:25:4b:50:77:33:44:52:69:b0:f9:46:0b:
2a:9b:09:15:0e:10:1f:82:62:8c:71:60:65:eb:00:7b:34:7a:
ef:13:ba:40:d5:56:a5:fe:92:92:02:33:5a:33:53:77:9a:4a:
8c:51:b4:bd:41:22:e4:89:98:a9:5a:ac:eb:48:19:38:1e:29:
7d:ef:93:07:b4:0d:57:34:3d:de:94:cc:91:96:c8:62:0a:44:
f5:7c:bd:f6:e4:25:1b:f7:29:ea:3a:cc:8f:e6:1d:7b:dc:b4:
bb:33:a3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:39:25 2025 by rpki-client