Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: It0vG19nixyWboLbclLlyyOuN9GFFGvucilkGjNMZFU=
Subject key identifier: 24:CC:2A:BF:3B:46:50:96:24:FC:A8:40:B1:E9:0C:76:11:90:32:80
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019A51F5C9333B2CF95003D5DA7DB4C24A8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 0881
Signing time: Wed 05 Nov 2025 03:00:53 +0000
Manifest this update: Wed 05 Nov 2025 03:00:53 +0000
Manifest next update: Thu 06 Nov 2025 03:00:53 +0000
Files and hashes: 1: RgkGs56a3wBSH0Yhny04eNJEX3I.roa (hash: 1WUdRWIGnTtyys0okmGp0iV2hIZohfzABaDiV/G7uDo=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: AAaBTmHZ/TYWU7dx1rXMmQ+Ft6X5FTopCoH5FxJPLBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:c9:33:3b:2c:f9:50:03:d5:da:7d:b4:c2:4a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Nov 5 03:00:53 2025 GMT
Not After : Nov 6 03:00:53 2025 GMT
Subject: CN=24cc2abf3b46509624fca840b1e90c7611903280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0a:e7:4d:c2:8c:7d:23:82:2a:b2:3f:12:79:
37:54:dd:a0:7f:aa:6a:a6:4e:d1:8f:9e:37:01:b1:
c7:63:95:b5:30:8a:6a:75:73:28:a5:86:e9:ff:f1:
e2:7f:5a:4c:36:51:ad:c0:f6:b7:35:d5:78:1c:cd:
5e:02:aa:ed:2a:6f:d1:22:2e:4b:9e:a6:5d:07:8a:
27:9b:c2:f5:92:1e:da:43:bf:53:8b:97:99:a2:1b:
ac:bb:f4:7b:05:0d:ef:5d:ea:d4:c3:9a:1c:d6:69:
a7:80:93:7c:88:5c:9b:45:04:79:67:87:58:09:e4:
e3:56:90:a7:99:69:5f:4b:57:df:67:ec:89:41:78:
95:62:4e:d5:15:1f:92:72:04:e6:54:49:94:56:17:
30:fe:0a:94:ba:42:e8:f8:7e:c3:d6:33:36:90:bb:
46:c1:0a:fa:3d:55:8b:b0:9e:3d:28:3b:a6:ba:18:
c9:96:b0:85:c0:83:1b:08:b2:ed:74:84:6d:44:bd:
48:d1:75:03:99:96:30:b8:a0:55:1f:11:8f:be:5a:
49:67:c3:5e:7e:6c:66:49:b0:62:7e:3d:4a:63:e0:
5e:cb:ef:45:d4:50:36:b0:2e:54:f4:76:06:65:7c:
65:9d:ec:81:86:b0:fb:f9:d9:05:8e:2f:84:7a:2a:
e2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:CC:2A:BF:3B:46:50:96:24:FC:A8:40:B1:E9:0C:76:11:90:32:80
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:90:ce:0d:eb:b0:d5:e2:d9:b1:94:38:6e:67:be:51:ab:52:
bb:48:f4:ff:6e:8e:db:29:59:2f:f3:96:06:1e:07:50:f5:d2:
30:ff:9e:41:0b:e8:e3:b1:4c:44:3a:ae:c7:b4:43:a4:19:1b:
73:77:c8:f3:96:0f:be:0d:f0:7f:2b:39:52:73:02:36:41:fd:
fe:37:4f:fd:ad:d7:5f:15:59:0e:95:b5:b7:79:b9:72:81:d8:
bd:c0:47:18:43:1d:d3:9e:fa:36:8a:1a:23:8c:28:b2:5e:f3:
21:44:be:28:a3:4c:0f:8d:24:d5:49:3a:cc:5f:01:56:82:f4:
82:a9:26:9c:f5:02:f9:89:9c:df:99:27:b6:36:2b:24:25:37:
75:7f:57:b5:02:3a:03:85:3c:37:31:90:0d:1f:8b:ab:0a:c4:
6d:a2:6c:9f:26:a5:e5:c2:8b:08:c4:1f:80:45:f8:ab:15:75:
09:02:81:44:81:07:e6:2f:93:27:f3:b6:5c:f8:3a:5e:46:f6:
66:15:df:0d:99:72:41:b6:d1:8f:67:3e:13:86:23:89:0d:1d:
75:ad:6f:9f:4c:3e:1f:09:1d:8d:31:71:c1:d1:f7:da:64:58:
cd:4f:f4:60:3f:fd:35:3a:fc:d9:37:77:70:ef:82:d9:6d:d8:
d7:f7:e6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:29:13 2025 by rpki-client