Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: GYdKnb0guihfGou3z+/9GmL3ivI25oAb61NVapkWzOA=
Subject key identifier: 2D:C0:CD:E9:7F:78:92:04:A8:7F:13:51:0C:CF:99:1B:1E:86:AD:FB
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019A52D2C7719A6256DE9269E6586BDBA1EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0A69
Signing time: Wed 05 Nov 2025 07:02:16 +0000
Manifest this update: Wed 05 Nov 2025 07:02:16 +0000
Manifest next update: Thu 06 Nov 2025 07:02:16 +0000
Files and hashes: 1: 5MBvIRiYFms3iGBeHF3RQe9ll34.roa (hash: ZOt4HY8JzWPIwKbCM0yXoS+siw4USQmatYhxT9gEU9M=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: 5JOtyOj2iEbE+iljKZoN6Qf9QS4LXdshsfFqkNEXnOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:c7:71:9a:62:56:de:92:69:e6:58:6b:db:a1:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Nov 5 07:02:16 2025 GMT
Not After : Nov 6 07:02:16 2025 GMT
Subject: CN=2dc0cde97f789204a87f13510ccf991b1e86adfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6a:fc:48:de:05:4c:c6:10:9a:62:c2:eb:f5:
1a:c5:ad:08:a3:78:bd:0b:33:6c:c9:8a:05:ca:ca:
05:74:e3:ca:0a:ae:ac:9d:38:25:4a:6c:67:84:17:
ba:d3:46:73:0d:c4:b9:dd:2d:4e:48:ea:f9:01:d9:
41:bf:ac:38:9d:aa:cb:fc:1d:ab:6f:07:68:04:1b:
3b:b0:57:d4:67:1e:77:d2:50:84:73:9e:8f:84:56:
43:32:4b:5d:e7:33:64:9b:75:10:8a:38:de:ca:c5:
72:3f:f7:98:45:d1:f6:d2:fe:15:06:7d:85:94:ce:
2f:a4:3e:79:1d:9f:5e:65:1f:35:9e:9e:f8:46:ea:
78:76:10:04:10:66:09:8e:0c:c6:13:29:8d:46:3e:
0d:0c:e1:91:40:79:a9:88:19:99:c3:91:f8:e3:5e:
05:1b:3b:7d:d4:82:c3:29:83:fa:22:00:15:af:3f:
be:11:58:33:94:5b:91:a4:80:87:9b:76:0e:9f:38:
79:7f:f3:2d:11:72:69:a1:ff:51:77:79:cb:b2:04:
36:ff:27:d7:35:49:d2:81:07:ad:6e:3f:c4:42:54:
41:4f:6c:29:d0:d2:a7:0b:e7:1d:ff:d1:8f:8f:f4:
16:91:fd:d0:d1:73:f2:b8:d7:c5:3d:bd:50:e7:11:
54:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C0:CD:E9:7F:78:92:04:A8:7F:13:51:0C:CF:99:1B:1E:86:AD:FB
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:46:39:9b:02:98:ce:da:bb:85:f5:e1:b5:a9:48:1f:31:b0:
60:2f:c1:0c:98:ef:6e:74:43:ee:1f:76:13:c0:2c:82:8d:6a:
e6:25:76:4f:f2:5b:55:93:93:de:40:d9:81:eb:ef:b8:40:4b:
5d:0e:f5:89:0a:4c:59:e7:36:4c:1c:2f:c3:bf:01:1a:8f:6a:
aa:51:53:09:a3:cc:65:92:ea:38:be:99:7b:82:ab:74:66:8e:
d5:34:b0:94:1e:1f:c1:54:c3:ca:cd:17:bc:0e:50:a9:38:71:
fb:46:96:31:2f:21:08:cf:fd:5c:96:b5:f6:7a:44:de:a0:70:
df:7a:e3:8e:89:30:5a:08:2c:2e:17:9b:95:b8:14:5b:f5:a2:
11:80:ca:a3:cc:19:d4:f7:e0:de:fa:1b:ed:93:42:ac:e1:d4:
fb:45:be:25:7e:b5:3d:13:c6:84:fe:4c:98:e2:b6:f1:28:c3:
aa:d9:ae:f9:d8:9c:86:08:aa:57:f5:73:28:a3:68:54:43:e0:
4d:a0:c6:20:33:55:d5:a6:7d:d0:c5:d3:e7:43:bf:5b:da:91:
80:70:a9:6c:68:e1:48:91:24:61:41:3c:ad:97:99:a7:ff:ea:
2a:45:54:4a:07:83:5e:02:0d:60:79:fc:0a:a7:6e:18:e3:df:
cd:7d:38:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:35:51 2025 by rpki-client