Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: H7q26RIpPlEaKDoy3OF3HwxPHX+CreYtjZYrEyYYJgk=
Subject key identifier: 1E:31:6C:39:0C:E2:FE:7F:3A:A0:BC:3E:E6:DD:CC:86:1F:5C:46:C0
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019A51BE422C7C039ACB5D61CA2A9E4900F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 12F1
Signing time: Wed 05 Nov 2025 02:00:14 +0000
Manifest this update: Wed 05 Nov 2025 02:00:14 +0000
Manifest next update: Thu 06 Nov 2025 02:00:14 +0000
Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: 7FcK0/faTEUFPrdJ1g2tjLZGcBBBCjwwVOQ8y3jhuQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:42:2c:7c:03:9a:cb:5d:61:ca:2a:9e:49:00:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Nov 5 02:00:14 2025 GMT
Not After : Nov 6 02:00:14 2025 GMT
Subject: CN=1e316c390ce2fe7f3aa0bc3ee6ddcc861f5c46c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:89:e6:ce:6e:0f:d7:82:57:83:39:eb:d6:
65:7b:dc:14:c2:be:39:ed:74:6d:a5:e4:cb:eb:a5:
d2:cd:34:f6:f7:01:f4:ca:90:67:ff:18:19:bc:6d:
6d:27:ea:0d:6e:d8:ae:fa:4e:d4:f0:71:55:67:45:
39:10:22:39:a0:b4:36:ca:45:20:ca:57:37:ec:3d:
50:d2:40:cd:80:10:7b:59:1b:a2:f9:66:ea:c6:85:
37:4a:eb:55:93:5c:ba:16:06:b9:df:c9:47:9a:40:
08:2b:d8:1f:53:98:df:bf:1f:68:d7:03:d6:1b:8e:
ee:c3:0f:f9:1d:21:19:e4:d3:a6:51:4b:2d:98:13:
b3:7b:35:7a:b4:69:38:c9:59:d5:c6:69:e7:e0:8c:
2e:29:4e:47:42:02:b7:36:25:b3:db:44:c8:90:4c:
24:64:45:97:18:8c:d6:37:cb:1c:bf:3d:19:15:73:
b8:77:8c:6c:a6:cc:47:03:b2:4c:40:0a:34:59:e3:
1e:7e:cb:97:3d:29:e9:d7:e3:a3:f5:91:ea:43:fe:
cf:c6:0e:72:50:ea:3c:8e:3d:67:31:ac:31:84:5d:
d5:ba:02:44:75:37:02:ee:bf:cd:51:4e:15:f9:9b:
7c:0c:6a:44:e4:a3:b7:9b:f4:ef:c6:f7:29:e8:66:
33:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:31:6C:39:0C:E2:FE:7F:3A:A0:BC:3E:E6:DD:CC:86:1F:5C:46:C0
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:5c:ba:df:04:18:8c:1d:79:6a:8f:7c:f5:c9:2f:1f:ba:64:
d9:5e:e9:ae:cf:df:80:d1:4e:74:b3:91:a0:50:60:a2:d0:78:
d0:46:24:72:0f:b6:d7:31:65:73:09:38:95:36:e2:88:06:96:
be:4c:d0:1c:a8:56:b1:73:03:b6:89:f8:a6:24:4f:ff:c0:90:
29:2b:76:fc:5c:3c:33:81:18:82:76:e9:e7:a5:03:2b:79:8d:
1c:f5:20:bf:88:b9:3b:26:be:a3:53:bc:87:38:ce:be:fd:fb:
8a:ba:35:94:d5:5b:fe:8f:c7:a0:4d:18:4a:7b:89:27:37:e4:
e4:52:b3:91:1f:95:ad:32:63:98:32:a9:ad:59:60:23:48:0e:
38:a6:ba:23:18:58:3b:b5:ad:88:c2:fc:c1:10:2b:6a:b6:c1:
4a:0c:f0:39:2d:ee:55:23:03:6c:11:e3:49:16:89:55:f3:06:
2d:65:9e:37:4e:e6:88:2c:e3:92:64:1e:36:94:ad:37:a5:37:
4d:25:66:e2:25:17:dc:0c:5f:82:a8:70:aa:8e:9e:b3:e3:89:
e5:af:a4:78:fe:fe:03:9f:eb:e6:98:ce:36:2f:ca:1a:da:a0:
f6:95:af:d3:4c:1a:85:ea:73:73:77:38:14:fb:87:5d:f1:07:
f9:3b:99:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:28:28 2025 by rpki-client