Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: frFEwrbzrNbt0OUGPoAWpSOP5V3TWny/lEES944j41g=
Subject key identifier: 03:03:7C:1B:9A:33:D3:23:B5:7F:6F:5E:BD:3E:A8:50:BE:63:B0:6D
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 019A515110B786D15C9B4536D2F8F41FBA91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0EAA
Signing time: Wed 05 Nov 2025 00:00:58 +0000
Manifest this update: Wed 05 Nov 2025 00:00:58 +0000
Manifest next update: Thu 06 Nov 2025 00:00:58 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: 4axJ/ROW0cwZB3JA+P5QxSvEfVvg/h+4kqNDHnNLq/c=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:51:10:b7:86:d1:5c:9b:45:36:d2:f8:f4:1f:ba:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Nov 5 00:00:58 2025 GMT
Not After : Nov 6 00:00:58 2025 GMT
Subject: CN=03037c1b9a33d323b57f6f5ebd3ea850be63b06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:10:30:6e:86:85:a5:c8:fe:25:ff:e1:fb:c2:
86:c1:de:2b:ce:f7:6b:23:b0:6b:6b:9f:80:6d:b8:
75:b3:4d:7a:cd:15:64:5e:18:62:58:93:13:d6:d0:
5a:6f:25:70:fa:a9:15:cc:4a:bb:89:0c:72:4d:b1:
54:20:70:d5:c1:77:2a:d8:e6:90:8d:ab:8b:b7:91:
18:0b:f9:f9:86:2e:06:3b:71:37:1b:94:93:42:e5:
0b:60:7f:a5:f5:e6:3d:15:e4:fc:c2:78:c6:ee:83:
b4:eb:46:69:a3:69:dc:41:40:43:2d:1f:80:ac:69:
ff:08:db:82:4c:d3:f3:a8:f3:13:96:95:11:6a:f7:
e1:48:c6:7b:ee:3f:00:6e:4b:c1:21:21:7d:c4:8c:
9a:02:df:b0:9a:ab:6f:29:cc:be:5f:72:25:40:e6:
a8:d1:61:e1:eb:4d:de:a3:63:3f:74:18:a7:5a:33:
78:03:1c:24:d7:1b:03:04:9a:8f:79:d5:dd:80:cd:
7b:a9:21:1f:18:9e:0f:6b:b4:90:8c:09:ac:bd:c6:
88:59:bf:8b:6f:fd:e8:de:17:83:4b:21:0e:9c:d0:
74:48:94:60:81:a7:03:6b:2c:1d:6d:7a:32:9b:d0:
c1:96:ab:f0:e0:f8:01:6e:76:de:cf:cc:4e:60:ef:
42:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:03:7C:1B:9A:33:D3:23:B5:7F:6F:5E:BD:3E:A8:50:BE:63:B0:6D
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:47:2d:a2:25:45:21:c7:2b:42:93:62:23:96:25:34:26:f2:
13:29:07:bd:d4:a9:89:70:c9:c5:df:06:07:36:be:00:1e:34:
d0:58:b8:92:77:04:5f:a1:75:41:82:76:cb:98:08:2e:ff:31:
17:5f:16:84:03:66:94:61:9d:9b:85:0d:c3:29:b4:ce:11:13:
6e:fd:dc:fe:03:16:ed:c2:61:4d:d6:5c:6d:26:30:9a:07:d3:
9b:94:fc:03:23:93:36:1c:19:a7:8f:6a:6e:44:d9:bc:a7:56:
65:c1:fa:de:a0:66:6a:86:00:9e:62:56:38:e6:58:ba:a9:cb:
af:1f:76:35:15:fe:7d:14:5a:d2:b2:7a:8c:c3:b8:f4:99:05:
c1:a6:2c:6f:18:8c:eb:8f:0d:54:59:cf:df:7b:46:a1:ca:48:
ce:4c:51:3c:21:4c:68:93:14:0c:87:b3:c9:bf:1a:ed:65:86:
18:80:98:af:6b:3a:0a:71:e7:d4:76:7b:f4:15:64:fd:54:12:
a5:4b:af:c6:4d:82:8e:a3:b2:c3:83:7c:a6:92:13:d4:91:1a:
ee:91:67:89:32:0f:3f:c7:df:b6:bc:03:ec:ac:dc:fd:df:ae:
c1:03:9f:d2:30:bd:d2:e5:15:d4:68:d8:1a:f1:99:81:6b:1d:
67:0e:78:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:04:51 2025 by rpki-client