Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json)
Hash identifier: bCJbPigYIsJCAnwpufrTm7v2DZL6+5gJ9wtxyBvj5sw=
Subject key identifier: EA:66:78:56:7A:A2:0D:C8:1D:9A:80:A3:22:25:85:C1:96:B3:33:CC
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 019A52635884448B81ABEDFB19D3BF0EC904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
Manifest number: 06D2
Signing time: Wed 05 Nov 2025 05:00:33 +0000
Manifest this update: Wed 05 Nov 2025 05:00:33 +0000
Manifest next update: Thu 06 Nov 2025 05:00:33 +0000
Files and hashes: 1: GgU4V3exF_KMsbXxFhlxd1M5pl8.roa (hash: l8v1ZDd4kP5GR80G/4+UL0QS/Pev1eqpTKkPGhrjSW4=)
2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: Vs9+am7X1Fef9XgntpNZTX037SMZhoPvrluxIzPrz0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:58:84:44:8b:81:ab:ed:fb:19:d3:bf:0e:c9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Nov 5 05:00:33 2025 GMT
Not After : Nov 6 05:00:33 2025 GMT
Subject: CN=ea6678567aa20dc81d9a80a3222585c196b333cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c5:bc:fd:ce:0f:92:80:c2:8f:ae:d4:07:4d:
ec:1a:71:1a:91:8e:53:c2:0a:c3:96:30:42:7a:7a:
6b:b9:23:d2:41:dd:8c:8a:24:8c:a1:81:7c:d4:cb:
5c:8e:a7:f2:ab:63:a6:04:50:d5:3c:fe:9d:59:ea:
52:9b:3c:e0:74:c2:07:d2:af:cd:09:e3:82:bf:b1:
f3:6b:35:65:35:8b:88:87:12:c9:4b:4c:46:f7:90:
bb:41:cb:04:ba:57:e1:b8:84:97:fa:36:27:03:16:
a1:9c:5d:1f:6a:35:aa:f1:b7:a5:6d:d2:e0:63:a0:
05:b5:52:70:6f:a4:63:dc:77:d8:1a:7e:e6:7b:08:
cf:7d:a3:68:d0:bb:55:93:be:15:b7:ad:74:99:72:
f6:0c:a4:bd:95:ce:ed:e7:26:de:c4:0d:70:2e:57:
2f:80:78:94:1a:5e:19:9a:f1:54:fd:2a:be:1a:b2:
ba:9b:5a:5c:3f:69:eb:f9:b8:eb:a4:a5:1e:31:3a:
0b:6e:10:ea:22:37:4f:1d:91:74:36:53:3e:15:3f:
0a:69:39:38:e3:2f:0b:93:76:05:52:f3:ab:ae:22:
5a:f6:61:65:61:ca:f3:f2:ff:ca:f1:fa:9e:e9:f1:
8f:6b:fd:ed:0f:a3:3b:2b:dc:cd:20:1f:08:fc:b2:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:66:78:56:7A:A2:0D:C8:1D:9A:80:A3:22:25:85:C1:96:B3:33:CC
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:30:a9:1c:78:37:bb:63:b7:48:e7:32:42:a3:b2:15:11:85:
e8:11:72:66:6c:9e:8d:36:14:09:d6:22:08:06:28:c0:74:e4:
1e:fb:55:df:13:e4:bc:61:f8:10:90:92:c3:0f:11:9b:af:b9:
6d:76:0e:0b:9f:ca:5b:5b:51:16:33:f3:a1:1e:69:fa:da:86:
1b:8f:bf:d6:18:ce:1a:9f:da:d5:3f:74:5e:f0:8f:bf:4b:ac:
5c:53:20:67:5f:cb:46:8f:27:93:73:c8:4a:83:58:23:24:0b:
0a:89:85:f1:dd:fc:16:9f:6a:b8:22:09:ed:da:dc:b8:10:08:
a1:6f:12:8d:69:16:f9:41:60:03:6e:5e:7e:16:e9:db:b8:0c:
31:59:87:08:07:f9:0a:3b:74:56:9d:22:76:82:68:25:12:4d:
b7:21:31:2e:6a:91:fb:55:18:da:91:d7:d8:c8:5f:c6:4d:91:
42:9b:5c:4a:b0:19:a8:2b:d9:7e:16:79:f4:f1:64:f6:97:48:
20:53:4a:c0:bb:ba:50:d0:fd:fc:df:b4:38:9d:85:45:cb:b6:
38:11:b3:6e:14:20:51:e8:80:1b:7a:ed:ec:a2:2c:7a:88:e4:
04:46:b7:e8:84:07:c7:2c:96:2f:7d:b8:1e:8a:57:6f:0a:01:
4e:01:a4:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpSY1iERIuBq+37GdO/DskEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjk1ZDU1NTgyNDFlMDRhODcyZGMxMzQ2ODk4ZjJjZWE3
MGRmZTcwHhcNMjUxMTA1MDUwMDMzWhcNMjUxMTA2MDUwMDMzWjAzMTEwLwYDVQQD
EyhlYTY2Nzg1NjdhYTIwZGM4MWQ5YTgwYTMyMjI1ODVjMTk2YjMzM2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcW8/c4PkoDCj67UB03sGnEakY5T
wgrDljBCenpruSPSQd2MiiSMoYF81Mtcjqfyq2OmBFDVPP6dWepSmzzgdMIH0q/N
CeOCv7HzazVlNYuIhxLJS0xG95C7QcsEulfhuISX+jYnAxahnF0fajWq8belbdLg
Y6AFtVJwb6Rj3HfYGn7mewjPfaNo0LtVk74Vt610mXL2DKS9lc7t5ybexA1wLlcv
gHiUGl4ZmvFU/Sq+GrK6m1pcP2nr+bjrpKUeMToLbhDqIjdPHZF0NlM+FT8KaTk4
4y8Lk3YFUvOrriJa9mFlYcrz8v/K8fqe6fGPa/3tD6M7K9zNIB8I/LJkpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOpmeFZ6og3IHZqAoyIlhcGWszPMMB8GA1UdIwQY
MBaAFKFpXVVYJB4EqHLcE0aJjyzqcN/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYt
ZjViYTRmZTJiZjU0LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYtZjViYTRmZTJiZjU0
LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAODCpHHg3
u2O3SOcyQqOyFRGF6BFyZmyejTYUCdYiCAYowHTkHvtV3xPkvGH4EJCSww8Rm6+5
bXYOC5/KW1tRFjPzoR5p+tqGG4+/1hjOGp/a1T90XvCPv0usXFMgZ1/LRo8nk3PI
SoNYIyQLComF8d38Fp9quCIJ7drcuBAIoW8SjWkW+UFgA25efhbp27gMMVmHCAf5
Cjt0Vp0idoJoJRJNtyExLmqR+1UY2pHX2Mhfxk2RQptcSrAZqCvZfhZ59PFk9pdI
IFNKwLu6UND9/N+0OJ2FRcu2OBGzbhQgUeiAG3rt7KIseojkBEa36IQHxyyWL324
HopXbwoBTgGk7Q==
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:35:27 2025 by rpki-client