Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
File: OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft (raw, json)
Hash identifier: 9XJl+M2Bv0JTadByKHicukZL0J1cj2xsFiMAToKnhpc=
Subject key identifier: 2B:89:56:88:10:AE:87:92:9E:5A:2F:4C:E8:17:8D:FE:63:AC:6A:F2
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 019A72CA74DF9873773C24DA4969F2F7BE13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
Manifest number: 0E13
Signing time: Tue 11 Nov 2025 12:01:02 +0000
Manifest this update: Tue 11 Nov 2025 12:01:02 +0000
Manifest next update: Wed 12 Nov 2025 12:01:02 +0000
Files and hashes: 1: OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl (hash: T4+82vt3iZ17MSNmwWjSL2rr0doVxS+Icuuxzg376uE=)
2: dxC4OOVdD7y8lzmmwGYNpdpf-D0.roa (hash: 1F32hSGI4pbAFMDzlkPoS+O8tvJxdYgPLvmfvhN+IXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:74:df:98:73:77:3c:24:da:49:69:f2:f7:be:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Nov 11 12:01:02 2025 GMT
Not After : Nov 12 12:01:02 2025 GMT
Subject: CN=2b89568810ae87929e5a2f4ce8178dfe63ac6af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0e:0e:55:9d:bb:04:50:55:40:32:58:0e:3b:
db:d9:40:29:43:1a:a2:68:0b:01:e2:80:28:e1:49:
6b:be:97:16:65:27:34:6e:2f:83:e4:e0:f0:dc:3a:
7a:2f:18:ee:5c:8b:c4:d6:6c:94:ed:9e:e7:32:ae:
be:58:fd:ff:0a:3f:a2:4d:aa:77:5d:23:4f:bc:38:
4b:71:82:3c:8e:4d:38:83:3d:24:a2:4a:6c:9a:0a:
ed:c0:2e:25:da:2c:cb:a3:76:12:99:4a:0f:81:9b:
48:cf:1a:3d:a0:5f:bb:f5:98:4c:7a:41:7f:84:ea:
c4:d9:c6:f5:2a:54:3f:67:63:53:ad:4c:7a:97:9f:
81:68:b4:15:6c:02:5a:d4:6c:43:dc:6b:19:05:67:
23:0c:29:f6:82:72:92:d7:59:11:0c:56:4f:91:4a:
45:d0:16:97:44:6e:a4:1d:93:87:5b:b4:87:3c:f4:
5e:b0:3d:67:07:91:55:75:4e:fe:69:b4:8b:7f:d6:
e1:6c:bd:b7:8c:39:2a:61:e2:e1:34:fb:83:c8:5e:
36:3a:e7:67:ab:4a:9e:e1:f8:d0:66:b8:b1:1e:55:
f2:c3:4f:3b:c0:47:60:16:d4:57:19:ef:ca:98:b4:
f0:33:58:43:29:68:36:ec:e6:7b:ae:57:10:c2:b0:
6b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:89:56:88:10:AE:87:92:9E:5A:2F:4C:E8:17:8D:FE:63:AC:6A:F2
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a9:fb:8f:fd:d8:8f:b8:31:08:ad:88:7a:76:31:ab:f0:b4:
37:cf:a2:47:28:72:1b:ec:f9:6b:26:a1:0b:60:9f:87:15:20:
78:4f:41:18:fd:4a:88:a1:65:d8:1c:2b:d1:cb:e4:30:29:8b:
d5:19:1b:3e:83:24:0b:d3:09:c5:1b:5b:23:e2:93:3d:6a:ed:
c9:84:5c:18:ba:39:36:ba:f6:07:7e:4e:9f:bc:24:02:e1:55:
f5:dc:dd:34:ee:14:62:f9:5f:93:83:8c:e9:03:b7:02:b8:50:
9e:f2:80:24:5f:9d:29:2f:3e:e4:ae:f6:36:49:e0:ea:c5:1e:
32:06:15:da:48:ca:44:5f:cf:f6:9d:a0:0d:b5:95:16:a8:44:
56:37:a1:80:6f:cc:8c:53:eb:98:20:bb:13:5b:fa:d7:80:c3:
59:d1:4e:be:19:77:0c:b5:0f:6e:72:c7:49:c8:f3:e4:c6:a7:
13:aa:83:c8:11:5e:86:74:51:fc:75:6a:98:51:67:26:53:a7:
76:20:ff:48:be:66:b4:97:14:4c:06:44:80:4c:8b:25:87:21:
df:0e:26:6e:08:3c:25:93:87:61:5d:74:11:5a:a5:61:ae:b7:
40:14:ba:7c:5f:76:60:63:1f:ce:85:80:0b:15:84:67:22:a5:
89:03:97:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyynTfmHN3PCTaSWny974TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjlkMTMxYmU1MjgxMGU0N2M5Y2JiZjgzYTNmZmJkNGY3
Y2JkYmYwHhcNMjUxMTExMTIwMTAyWhcNMjUxMTEyMTIwMTAyWjAzMTEwLwYDVQQD
EygyYjg5NTY4ODEwYWU4NzkyOWU1YTJmNGNlODE3OGRmZTYzYWM2YWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhw4OVZ27BFBVQDJYDjvb2UApQxqi
aAsB4oAo4UlrvpcWZSc0bi+D5ODw3Dp6LxjuXIvE1myU7Z7nMq6+WP3/Cj+iTap3
XSNPvDhLcYI8jk04gz0kokpsmgrtwC4l2izLo3YSmUoPgZtIzxo9oF+79ZhMekF/
hOrE2cb1KlQ/Z2NTrUx6l5+BaLQVbAJa1GxD3GsZBWcjDCn2gnKS11kRDFZPkUpF
0BaXRG6kHZOHW7SHPPResD1nB5FVdU7+abSLf9bhbL23jDkqYeLhNPuDyF42Oudn
q0qe4fjQZrixHlXyw087wEdgFtRXGe/KmLTwM1hDKWg27OZ7rlcQwrBryQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuJVogQroeSnlovTOgXjf5jrGryMB8GA1UdIwQY
MBaAFDgp0TG+UoEOR8nLv4Oj/71PfL2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYt
YjAzOGRiODk4YjdlLzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYtYjAzOGRiODk4Yjdl
LzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALqn7j/3Y
j7gxCK2IenYxq/C0N8+iRyhyG+z5ayahC2CfhxUgeE9BGP1KiKFl2Bwr0cvkMCmL
1RkbPoMkC9MJxRtbI+KTPWrtyYRcGLo5Nrr2B35On7wkAuFV9dzdNO4UYvlfk4OM
6QO3ArhQnvKAJF+dKS8+5K72Nkng6sUeMgYV2kjKRF/P9p2gDbWVFqhEVjehgG/M
jFPrmCC7E1v614DDWdFOvhl3DLUPbnLHScjz5ManE6qDyBFehnRR/HVqmFFnJlOn
diD/SL5mtJcUTAZEgEyLJYch3w4mbgg8JZOHYV10EVqlYa63QBS6fF92YGMfzoWA
CxWEZyKliQOXDA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:40 2025 by rpki-client