Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: YoKGBUHXhsjrAT9Y5aeSkAel4kdMPVxo1R3qK2SGImE=
Subject key identifier: 26:AC:E0:6A:7D:FC:64:D4:6A:F4:E8:E4:B1:36:6E:81:26:F1:4C:0F
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019A56AE0795C1837844AB086C426D411175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0A6B
Signing time: Thu 06 Nov 2025 01:00:37 +0000
Manifest this update: Thu 06 Nov 2025 01:00:37 +0000
Manifest next update: Fri 07 Nov 2025 01:00:37 +0000
Files and hashes: 1: 5MBvIRiYFms3iGBeHF3RQe9ll34.roa (hash: ZOt4HY8JzWPIwKbCM0yXoS+siw4USQmatYhxT9gEU9M=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: 6gs7q2DYur+EYqj9NSSnwwgTe6Rn456xBCUvql9ze14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ae:07:95:c1:83:78:44:ab:08:6c:42:6d:41:11:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Nov 6 01:00:37 2025 GMT
Not After : Nov 7 01:00:37 2025 GMT
Subject: CN=26ace06a7dfc64d46af4e8e4b1366e8126f14c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:82:07:c6:8c:a7:45:e4:7f:42:10:12:70:6d:
62:18:f9:db:2d:a8:51:b7:20:73:ae:13:a9:d1:5d:
69:fe:29:71:1d:91:6d:82:4d:ae:e2:af:2e:29:97:
cc:ca:ae:75:4f:63:f2:07:06:30:f5:50:b9:6b:1c:
b6:c7:a5:6d:ca:ac:7c:bf:7f:a4:78:2b:34:ef:93:
bd:d3:fe:33:54:bb:e8:cf:be:c7:a9:99:28:2a:72:
d2:2c:d7:d1:75:4e:09:d1:13:f6:b4:f2:a5:55:fd:
09:3f:dc:f3:e3:ba:75:78:80:8a:e4:df:c8:6b:6b:
7c:eb:d5:54:e6:88:e2:72:37:5a:32:e4:69:b7:8b:
6f:3b:21:17:67:4a:24:dd:52:7b:e4:b0:9c:16:41:
c1:6b:cb:c7:4c:10:be:b2:49:1e:2a:8a:c5:dc:81:
ef:78:4f:d8:7c:48:d3:26:57:2d:73:b2:cd:c4:5c:
74:1b:1a:56:fb:5e:20:f3:74:ec:d7:25:f1:20:9d:
8d:b1:05:cc:56:01:f0:d5:8d:b2:99:7b:27:44:c5:
c8:12:fc:86:01:26:a2:00:f5:38:4f:f4:d2:e1:d6:
50:8b:3e:f6:e2:7b:70:a5:7c:73:9f:0c:ca:f4:8d:
22:9d:fa:f0:93:62:87:4f:72:03:51:65:91:8f:42:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AC:E0:6A:7D:FC:64:D4:6A:F4:E8:E4:B1:36:6E:81:26:F1:4C:0F
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:01:02:db:ca:60:cf:ae:19:5a:52:c9:4b:d3:eb:11:43:d2:
9f:52:65:67:21:bc:33:af:41:a7:62:f0:b0:f4:46:4b:88:fe:
d1:b2:f0:75:00:ae:92:c8:47:f0:2b:bc:2a:0d:1d:ae:d8:db:
a0:ec:82:fa:08:9f:58:9d:f0:55:09:ea:e0:b2:30:ac:96:6d:
18:85:2f:bd:82:cf:d2:22:81:3d:be:6c:a5:65:59:a6:4e:1c:
14:21:b7:75:cb:18:83:80:eb:38:4a:e9:45:90:a8:ae:f4:65:
85:c0:2b:76:85:dd:d6:aa:3d:98:76:f7:37:9d:97:c5:da:a1:
50:13:62:9a:d2:e2:73:7b:54:d7:9e:b0:2c:23:9a:38:7c:00:
44:36:6f:2d:1c:c1:12:f9:54:00:80:87:74:b0:fc:46:3a:75:
3e:15:88:9f:fa:ff:cb:21:70:17:4a:8d:51:ec:bd:32:45:70:
10:fe:e6:76:29:23:fc:62:27:bc:6a:13:2a:f7:fd:9d:38:8b:
60:9c:b0:9d:d9:0d:85:28:73:2a:84:10:98:ad:97:f8:71:44:
78:21:27:28:7e:d3:86:b6:f0:01:82:11:45:34:76:69:cd:2b:
77:bb:6a:e2:c7:58:8e:ae:df:b1:33:5e:a8:ba:9c:fa:01:66:
e1:b6:a6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 05:56:23 2025 by rpki-client