Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
File: oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft (raw, json)
Hash identifier: 2DeWY37Q5l74RDzbl+h/ZJwxbOLK7v/KjgbD2xWdRbo=
Subject key identifier: 27:60:3F:73:49:F0:D4:18:B9:DF:B7:E1:1B:2B:B0:10:10:47:04:AB
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 019A50E28FA43B3A5918F5F65B9848975057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
Manifest number: 11B0
Signing time: Tue 04 Nov 2025 22:00:16 +0000
Manifest this update: Tue 04 Nov 2025 22:00:16 +0000
Manifest next update: Wed 05 Nov 2025 22:00:16 +0000
Files and hashes: 1: c7xqGqZ0KnoVgSHP1uxqIn-gcow.roa (hash: fgA4jW+G01sd+KIFTnm2o/eJLY8zge2zWEftjWqJRcE=)
2: oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl (hash: wjUH0ZlWhuY4mhVxQ9l38sjDu62Cm1AkGJN9l6urWew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:8f:a4:3b:3a:59:18:f5:f6:5b:98:48:97:50:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Nov 4 22:00:16 2025 GMT
Not After : Nov 5 22:00:16 2025 GMT
Subject: CN=27603f7349f0d418b9dfb7e11b2bb010104704ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b8:9b:d1:d0:13:73:b2:bb:15:3d:9a:66:0d:
15:eb:9e:a3:96:66:c4:41:9f:c5:ad:2c:32:91:3e:
62:6a:77:95:21:b5:37:4d:81:44:16:56:c9:1c:23:
b3:ad:f5:56:5f:55:e4:0e:97:0d:ea:15:64:6d:4d:
cd:4e:75:ab:7b:1e:51:0b:4d:79:66:b7:60:c7:70:
cf:80:63:10:3c:e0:9e:2c:71:84:00:f8:65:f0:16:
9d:b5:b5:fd:ec:65:34:78:83:9c:83:e2:9f:e9:6d:
29:89:b9:21:82:ff:f0:34:a9:dd:a0:92:5f:49:f3:
d7:62:f1:01:e3:91:26:b1:53:7f:c6:9a:f4:ba:7a:
57:70:e4:e1:d7:2a:19:68:80:20:d2:be:d6:94:de:
47:da:c2:9a:d6:35:f9:1b:fc:5f:a5:0d:a5:21:95:
95:b5:cb:d9:39:ba:1f:cf:7f:80:08:87:15:3d:1b:
50:5b:c1:89:3c:b6:03:10:bb:e8:30:de:1d:00:30:
1d:c4:2b:e7:6c:d1:f5:0f:ce:e6:da:58:f1:f6:1b:
39:4d:37:b8:6f:57:83:cb:37:9e:d9:a9:2e:94:48:
7e:27:77:81:25:e6:bd:4a:65:a6:7b:6f:70:09:6a:
3b:3d:6c:69:a2:58:a0:b3:3f:75:68:dd:88:ab:46:
bb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:60:3F:73:49:F0:D4:18:B9:DF:B7:E1:1B:2B:B0:10:10:47:04:AB
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:83:01:13:e3:91:bb:52:8d:42:27:ce:3b:00:91:3d:c0:9c:
81:15:cf:fa:e5:55:88:d2:7d:90:d1:17:c1:17:ec:f2:17:58:
96:06:f5:14:02:fb:ae:fb:89:a5:c8:38:42:1e:ad:44:7f:01:
57:b0:3d:43:31:bc:d7:3a:a3:43:b8:12:05:a0:af:d3:53:12:
bf:59:55:b4:09:e3:60:ed:e1:75:18:52:d6:9f:d1:62:c1:7a:
ec:5c:3d:12:b1:4d:53:2a:a1:78:95:ce:6e:bb:ee:6a:cb:50:
f2:61:af:75:a7:60:98:e0:bc:3a:84:ab:69:05:3f:2f:10:9f:
4d:b5:27:06:9b:cc:d9:cf:17:55:f9:57:e3:0d:7d:07:14:8d:
b0:32:ae:19:3d:ee:95:60:02:68:95:54:51:93:79:5a:b4:2b:
01:9c:f5:ee:8b:dd:2d:74:26:b1:8c:cb:61:75:1b:e9:72:8f:
1f:1b:78:ed:f6:c7:28:a9:e0:93:ed:2f:36:08:9c:b9:dd:b7:
ef:54:77:45:41:7a:59:35:28:08:ad:e2:d6:06:d9:11:2d:1d:
ee:e8:8e:d4:d2:9d:61:aa:69:78:42:5e:6f:aa:68:30:34:5f:
92:1b:e9:14:cc:20:9f:65:3b:8c:42:66:c3:4c:43:c4:bd:c2:
92:ee:9e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:23:53 2025 by rpki-client