Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
File: o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft (raw, json)
Hash identifier: Jm8nMmJnFkRd9Jblz3tc63k7m+9sG+IO1MvvzhT2/Wo=
Subject key identifier: F6:E9:DB:19:25:80:77:63:7C:A5:2A:49:23:C6:10:73:6A:8A:A7:E6
Authority key identifier: A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
Certificate issuer: /CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Certificate serial: 019A71EEF83C524EA16B36158F906DA52772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
Manifest number: 087D
Signing time: Tue 11 Nov 2025 08:01:17 +0000
Manifest this update: Tue 11 Nov 2025 08:01:17 +0000
Manifest next update: Wed 12 Nov 2025 08:01:17 +0000
Files and hashes: 1: borZkxzd7Q70fU1OWvln2Q1-HRc.roa (hash: WT5cBwBGRYqcO3GRfgSJfVkJ2Niz57/GzD/KCZQzgos=)
2: o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl (hash: lrSa5+BfN5Gq9Lmz7wVyFoEyQk7Mzoj4TwNXwxZnphI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:f8:3c:52:4e:a1:6b:36:15:8f:90:6d:a5:27:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Validity
Not Before: Nov 11 08:01:17 2025 GMT
Not After : Nov 12 08:01:17 2025 GMT
Subject: CN=f6e9db19258077637ca52a4923c610736a8aa7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0e:c9:65:a7:8e:ee:d0:9a:ff:68:26:68:9d:
a7:f3:fa:9d:22:79:0b:84:ac:80:f2:15:ed:66:9a:
91:41:33:b9:13:27:53:15:05:da:68:2a:4c:4f:7f:
28:ab:52:61:82:8f:57:5d:9c:0a:a6:4c:3b:aa:5f:
53:c9:75:37:37:c3:8a:54:09:55:8d:9f:fa:c7:a2:
dc:5f:b2:eb:0d:bb:b2:16:66:4d:0a:36:c8:1b:e2:
da:a6:99:b1:09:8e:3d:0b:e6:9c:35:bc:0e:fa:90:
ef:96:56:cf:6c:1c:4d:d6:9a:56:69:95:fe:76:a2:
6e:12:b4:22:f3:6e:20:be:ed:f8:a6:ba:c7:c5:6e:
0a:04:d7:2c:d8:fe:c8:4a:3c:d3:50:97:9c:cc:b7:
0d:11:5c:8f:d5:49:48:f2:c4:72:0c:de:66:d1:0d:
66:c0:48:29:bd:55:5b:8f:0f:ab:1f:35:a5:b6:37:
63:fe:71:51:23:f1:42:13:a1:62:34:37:3f:18:ca:
6e:e8:f8:9d:8a:1d:5f:f5:87:6f:bd:fa:73:a5:85:
44:70:1d:63:98:db:5d:a6:97:e8:b4:4f:d4:c5:96:
57:ef:88:e2:ce:17:5a:34:93:ae:4f:17:75:0a:b2:
c7:bc:28:88:0b:e5:64:40:d5:77:c3:2c:31:ea:70:
26:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E9:DB:19:25:80:77:63:7C:A5:2A:49:23:C6:10:73:6A:8A:A7:E6
X509v3 Authority Key Identifier:
keyid:A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:58:da:98:cf:54:5b:31:8e:5e:30:39:8b:23:49:95:45:f2:
3e:af:e2:5a:10:4f:74:e5:d7:d7:bc:cb:4c:6f:fa:9e:2d:6e:
ed:83:c3:48:c3:93:69:2a:a2:b7:5a:df:68:c7:8c:c7:0f:9e:
a7:96:d4:54:32:c9:74:13:08:0b:bc:3e:28:7f:0e:5e:34:2c:
62:80:66:cf:25:90:7a:44:0e:28:c4:8a:7b:b3:e1:0c:6a:d9:
09:ba:72:0e:69:18:a2:e9:77:33:d9:dc:09:d0:7e:2d:45:57:
a1:75:9d:be:79:16:f4:f8:b0:ae:c5:6e:ca:c2:ca:c8:1f:b1:
f2:b6:09:c6:55:06:ed:f9:71:20:78:33:07:b0:0d:54:13:31:
2d:fc:1e:c9:8f:9e:8a:2a:ff:1b:04:66:df:bb:9b:ce:b8:ee:
6d:4f:2e:04:1f:fd:11:93:98:9e:55:df:f9:bc:e7:ed:aa:cc:
4e:8e:c3:66:46:67:0d:53:b2:eb:fe:6e:cc:49:a4:7c:43:d6:
e8:d3:ba:13:5b:09:25:a7:ab:19:f0:26:05:95:f2:24:5b:66:
a6:6f:5b:af:a9:8c:37:cf:6f:d1:17:cf:ab:80:05:61:85:98:
a5:b6:82:d6:2c:f6:8c:d8:cd:49:4f:b5:50:27:98:2a:d1:11:
37:4c:49:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:46:42 2025 by rpki-client