Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: mLordlQdqCX1yY0vnD22iYCLX2kW/vbBz30EJB7zGOE=
Subject key identifier: 5D:4E:6A:CE:0F:E0:4E:80:FD:41:B8:1F:77:80:B7:18:9E:33:B5:02
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 019A4DE201C50B4CA4919CC566D7251EBA8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 0A9D
Signing time: Tue 04 Nov 2025 08:00:48 +0000
Manifest this update: Tue 04 Nov 2025 08:00:48 +0000
Manifest next update: Wed 05 Nov 2025 08:00:48 +0000
Files and hashes: 1: 5-5dw7BQUILpSuBDRasWi_TUWvo.roa (hash: hm9ysYElh3sbrH5I7xkNigsOqhpocQkIVZkL8ahr+uU=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: 5CLEWBwzzqsqB6m1MopLTeC34sIolRuZP3/s6cDGjwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e2:01:c5:0b:4c:a4:91:9c:c5:66:d7:25:1e:ba:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Nov 4 08:00:48 2025 GMT
Not After : Nov 5 08:00:48 2025 GMT
Subject: CN=5d4e6ace0fe04e80fd41b81f7780b7189e33b502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:94:9e:35:e5:aa:f4:62:59:3d:e7:f6:98:
1a:cb:d7:1c:c3:19:c0:e2:bb:85:d6:59:2c:a0:ba:
61:0e:4a:c5:80:c0:f4:bf:89:35:96:7c:c3:59:90:
eb:3a:d2:a8:b7:b2:fb:28:3a:e1:92:8d:9c:ce:f6:
57:0a:d5:e0:5a:3d:c6:8c:07:0e:b4:a1:18:cc:04:
dd:e5:a2:39:69:fa:bd:4c:c7:6c:f4:3b:cc:bb:51:
42:d1:b9:38:4b:cb:26:92:12:2f:64:e1:de:d3:0c:
0d:4d:5c:dd:4f:30:8a:81:6b:4b:71:92:b8:aa:9a:
46:b6:66:de:01:a7:77:ad:13:65:9c:75:3f:9f:2d:
b4:25:78:86:36:4f:fc:fe:92:13:69:1a:8e:b9:fa:
15:9f:6c:8a:4e:44:a0:81:2d:cd:14:84:17:1b:f7:
bd:53:89:c8:3e:bf:a3:0b:d1:30:86:14:05:06:09:
49:99:52:57:78:2d:ea:1d:81:4c:69:ed:9e:af:00:
f0:84:8b:6b:88:1c:2d:8a:58:b2:28:6b:ac:c8:5e:
27:89:44:96:c8:32:3c:ce:33:2f:40:9c:22:98:b5:
6a:38:43:59:6c:d7:80:3c:6b:fd:e0:d2:f2:29:16:
1d:a3:87:13:00:eb:ad:90:70:b8:bf:07:d3:b5:d1:
e7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4E:6A:CE:0F:E0:4E:80:FD:41:B8:1F:77:80:B7:18:9E:33:B5:02
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c6:cb:2f:80:bd:36:78:7a:e6:c7:93:04:4e:99:12:7b:22:
28:af:35:e9:23:79:31:fa:07:7c:39:0d:fc:78:62:f0:fa:4e:
14:dc:e5:33:59:e9:dc:f7:4f:e3:71:2e:89:34:99:92:4f:80:
b0:dd:74:a2:01:43:3c:e8:ff:3f:c7:b5:e9:3a:f8:cd:6d:a4:
dd:c1:7f:d8:d8:ad:61:62:c6:d0:bf:3d:07:49:69:2d:b3:95:
8b:b0:60:11:77:15:3d:1b:4f:df:fb:d8:4c:e5:d4:28:53:77:
14:9a:0a:dd:b8:eb:23:90:a7:02:a6:16:c0:7d:f2:48:15:2b:
17:d0:4c:65:fe:6e:19:c3:07:43:a0:e4:9d:f4:12:5f:6f:da:
60:e8:98:09:46:1c:dd:52:d2:92:9d:64:32:56:7a:65:ec:d5:
b0:0e:e2:ed:8f:7e:f7:53:aa:58:a6:3b:a2:ea:50:5f:91:89:
5c:44:09:36:77:59:f7:e8:05:e7:ac:79:89:e1:6a:0d:85:14:
99:00:24:a4:1a:cb:86:5e:0c:2c:d7:4b:17:85:30:7a:8c:f0:
15:5a:dc:c0:02:4a:36:af:81:a5:6e:50:8e:6e:14:1c:fe:89:
5c:ef:b5:18:85:1f:56:61:6c:0a:4f:34:0f:bb:77:1a:90:56:
93:22:80:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4gHFC0ykkZzFZtclHrqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NTNhOThhNzQ5ZTU2OTc0NGExZWRlMmM5NDBmMmU0MzNj
NDQwOGEwHhcNMjUxMTA0MDgwMDQ4WhcNMjUxMTA1MDgwMDQ4WjAzMTEwLwYDVQQD
Eyg1ZDRlNmFjZTBmZTA0ZTgwZmQ0MWI4MWY3NzgwYjcxODllMzNiNTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2WUnjXlqvRiWT3n9pgay9ccwxnA
4ruF1lksoLphDkrFgMD0v4k1lnzDWZDrOtKot7L7KDrhko2czvZXCtXgWj3GjAcO
tKEYzATd5aI5afq9TMds9DvMu1FC0bk4S8smkhIvZOHe0wwNTVzdTzCKgWtLcZK4
qppGtmbeAad3rRNlnHU/ny20JXiGNk/8/pITaRqOufoVn2yKTkSggS3NFIQXG/e9
U4nIPr+jC9EwhhQFBglJmVJXeC3qHYFMae2erwDwhItriBwtiliyKGusyF4niUSW
yDI8zjMvQJwimLVqOENZbNeAPGv94NLyKRYdo4cTAOutkHC4vwfTtdHn6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1Oas4P4E6A/UG4H3eAtxieM7UCMB8GA1UdIwQY
MBaAFHZTqYp0nlaXRKHt4slA8uQzxECKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEt
YjlkYzJmMmIwMDJjLzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEtYjlkYzJmMmIwMDJj
LzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP8bLL4C9
Nnh65seTBE6ZEnsiKK816SN5MfoHfDkN/Hhi8PpOFNzlM1np3PdP43EuiTSZkk+A
sN10ogFDPOj/P8e16Tr4zW2k3cF/2NitYWLG0L89B0lpLbOVi7BgEXcVPRtP3/vY
TOXUKFN3FJoK3bjrI5CnAqYWwH3ySBUrF9BMZf5uGcMHQ6DknfQSX2/aYOiYCUYc
3VLSkp1kMlZ6ZezVsA7i7Y9+91OqWKY7oupQX5GJXEQJNndZ9+gF56x5ieFqDYUU
mQAkpBrLhl4MLNdLF4UweozwFVrcwAJKNq+BpW5Qjm4UHP6JXO+1GIUfVmFsCk80
D7t3GpBWkyKA2w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:12 2025 by rpki-client