Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: JR7kIPO5dRg6GGB8SbjNf8C+VOH4pd4IDn9PmmHyRTk=
Subject key identifier: 75:4D:6E:3F:86:4A:B8:DC:DF:98:AA:FD:F1:9B:F4:3B:62:71:06:F5
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019A4E86CDED99D9A2BE882695D1F8300095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 16A1
Signing time: Tue 04 Nov 2025 11:00:48 +0000
Manifest this update: Tue 04 Nov 2025 11:00:48 +0000
Manifest next update: Wed 05 Nov 2025 11:00:48 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: kMcX6PzGebqxzpi57uGUpXVmtjgJi+0NDrj3mvhiJls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:cd:ed:99:d9:a2:be:88:26:95:d1:f8:30:00:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Nov 4 11:00:48 2025 GMT
Not After : Nov 5 11:00:48 2025 GMT
Subject: CN=754d6e3f864ab8dcdf98aafdf19bf43b627106f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a5:83:1e:e6:df:5c:78:c0:c1:c3:37:62:bf:
58:52:5c:6f:0d:ba:72:a5:99:ea:16:38:44:a2:47:
50:a0:7f:76:e5:3f:ba:41:08:24:e6:ad:01:84:6a:
3c:73:df:19:cf:04:a9:93:9a:07:22:5e:e7:37:6e:
f0:55:6b:33:6c:26:b0:5f:5d:20:df:01:9c:73:54:
79:f0:95:3a:69:47:27:b5:16:36:a9:f9:8c:5c:ec:
58:0a:29:85:c8:f4:72:d1:f8:27:18:85:10:21:36:
63:67:58:20:36:e6:29:e9:ff:0c:33:df:32:12:66:
4b:e0:d5:f2:55:f2:62:01:b2:08:6c:c2:32:d4:82:
29:9d:e4:e7:39:b8:56:94:df:0a:d1:5e:29:12:40:
d9:09:c9:f4:59:f0:1a:e2:3b:be:0f:f6:5a:3f:18:
66:0a:3b:90:8a:81:3c:5c:79:ca:43:ed:10:f0:b5:
ed:5d:8b:4c:04:b1:3c:c6:3e:4e:f0:8a:fe:89:ab:
68:f0:77:ff:39:98:b2:4a:56:32:9b:4c:c8:2b:d6:
56:17:ef:b0:39:53:53:b7:d8:35:b2:24:6b:cc:4d:
60:61:e5:c1:3d:96:99:94:dc:a8:f8:b0:e6:ec:bd:
20:9e:1d:81:47:24:62:5f:44:d8:3d:fc:42:21:53:
ca:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4D:6E:3F:86:4A:B8:DC:DF:98:AA:FD:F1:9B:F4:3B:62:71:06:F5
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:57:8d:68:81:0a:8d:33:ce:8a:5f:3a:56:ea:d5:b7:68:cf:
15:e0:9d:e7:ae:53:54:6a:94:dd:9f:1d:ca:8a:c0:77:a3:ab:
38:62:44:ae:f6:eb:8e:32:87:3e:c7:b7:a5:50:77:71:f6:dd:
fc:fd:2f:40:45:67:e0:35:65:58:cc:6d:96:c1:a9:ea:d3:08:
c6:5c:a7:64:a3:82:66:e4:ae:89:38:f2:73:98:43:f8:80:a3:
3b:92:5e:ce:07:66:b4:c2:58:21:3f:e9:f8:6e:e1:f0:49:71:
95:56:4d:e0:4e:dd:32:58:6d:1c:9e:10:39:f4:b3:a5:f6:47:
69:f2:18:0d:79:c3:bb:b7:58:87:6d:df:c3:cf:f6:65:78:3f:
18:99:64:4c:a0:b2:07:86:8e:69:34:2f:34:6e:6c:6f:d2:65:
57:43:b7:a4:d9:7b:0c:b1:16:09:c5:42:84:c0:db:23:a4:8a:
0d:27:30:2d:35:d7:90:c4:f7:44:f9:36:7d:8e:a2:fb:44:66:
d4:bb:8f:8d:d9:88:f1:17:43:6d:e9:74:d0:84:66:44:5f:83:
1c:c9:be:c4:78:ee:b0:35:da:c8:3a:37:9b:a2:18:12:5a:80:
be:c0:2c:94:25:bd:64:7e:6c:24:ba:f0:9b:58:1d:6c:aa:6a:
ec:dc:c8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:24 2025 by rpki-client