Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
File: oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft (raw, json)
Hash identifier: bxDe3q6r3Bp2J4ycxzgdZyRc8+2zr7fLuuV5NhVJ29s=
Subject key identifier: B2:3F:4F:90:93:02:EC:0A:5C:13:71:1C:1F:50:70:87:86:9E:BB:B3
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 019A51BEC1205BB9E9F617B49E363C2C787D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
Manifest number: 170E
Signing time: Wed 05 Nov 2025 02:00:46 +0000
Manifest this update: Wed 05 Nov 2025 02:00:46 +0000
Manifest next update: Thu 06 Nov 2025 02:00:46 +0000
Files and hashes: 1: QkZZT0OmyPm1U7sUIDpJIndlAn4.roa (hash: 2DQZexpqRbr1zDWnxxG0byMVlPhiUoCIJC9UgWimgPI=)
2: T8KLOt6NPvQjdduRK2LFDHFk-Ow.roa (hash: dmD7G0wa7KStRC2oIGcFu5FuaJHoaquq+ceiOTM5mGE=)
3: oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl (hash: zeeTBUHpq+HfiWW4yunBmCFsHBuOxEJQYsKvL2Xmn00=)
4: uE6sCBGadbkdNjamuV9CVt7KEu0.roa (hash: 1QH+0Q+M4LSSW1D1mW+DBLCOYwkL6R7teXBJDnbRr5c=)
5: yQrnhCAAVRdNwjOPjF1ErzWjUdw.roa (hash: wlIPSP/dxpPek11XcClQXG8X5S1Ifs5kIcm9YTpY8Rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:c1:20:5b:b9:e9:f6:17:b4:9e:36:3c:2c:78:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Nov 5 02:00:46 2025 GMT
Not After : Nov 6 02:00:46 2025 GMT
Subject: CN=b23f4f909302ec0a5c13711c1f507087869ebbb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:40:7c:cd:63:ec:51:7e:19:f0:c2:3a:e0:9f:
1b:f2:d3:1a:a4:d9:4a:a5:cc:72:67:d8:1d:40:01:
8c:3d:d7:7b:b0:66:de:5f:3f:5d:0d:b8:37:89:2f:
c6:8d:b1:fd:e3:1b:c0:f0:1e:1d:3e:49:38:6d:db:
e8:81:6b:55:75:eb:c4:6e:f8:8b:64:d9:14:e0:4a:
09:0d:25:2c:19:2b:6c:86:be:6a:f2:2f:50:fd:e6:
bc:ad:0d:7b:a7:13:4f:57:8e:fc:4e:9d:0e:63:cc:
31:72:26:2e:47:00:3d:59:c0:03:24:f4:2a:c1:31:
f8:0e:fb:fe:73:23:c7:96:3b:4c:be:a3:c2:c3:a6:
5f:e1:16:3f:6f:94:ca:d5:a7:2f:78:75:40:47:d5:
69:c2:74:61:1c:f1:14:2c:59:b1:5d:4a:4d:a6:5d:
ed:5c:57:d0:4c:5a:43:a7:b8:63:b2:04:19:84:8e:
96:58:ec:f0:3c:07:f5:0b:e7:96:e1:d4:b6:03:15:
9a:05:f0:28:93:4c:b2:71:9c:24:d5:d3:8b:2f:c3:
eb:6a:d3:8f:ed:dc:e7:d5:56:27:48:3a:05:54:6e:
f3:6c:6b:89:b9:56:39:2e:2e:b4:49:4d:23:f3:93:
54:ef:64:54:2e:9e:88:05:e3:f9:b5:b1:dd:bf:8f:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3F:4F:90:93:02:EC:0A:5C:13:71:1C:1F:50:70:87:86:9E:BB:B3
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:1e:65:86:59:32:ea:fd:8d:b9:d0:df:a1:5d:3b:e5:98:cb:
cd:19:e6:e0:77:fb:4d:53:53:69:96:09:2d:47:69:1e:9d:df:
88:a3:ac:d9:10:93:bc:df:91:33:d4:a9:a7:dd:bb:3f:9d:7f:
68:5c:f2:d8:0f:af:7b:bb:08:fd:f3:d7:da:09:87:fd:c8:54:
85:0d:6e:25:65:95:02:e2:72:ac:56:da:1b:70:10:1c:5c:c1:
8e:63:88:c0:31:49:cc:a2:9d:32:0c:97:1f:8b:7a:93:50:7f:
bb:71:b8:a9:c0:bb:80:58:41:a1:16:58:72:cd:e1:92:24:6f:
28:50:63:06:a5:35:c4:fc:38:7d:4d:bd:2b:b3:62:02:43:46:
21:46:82:e9:16:51:e4:70:b0:89:ed:5f:a1:7a:cc:6b:75:ce:
d1:01:e0:ae:b6:f2:7e:47:fa:52:fc:ec:8d:6d:1c:32:8c:a2:
7a:38:2e:10:15:15:23:b9:3b:fc:e2:42:82:19:2a:6a:9d:7e:
c4:97:97:f9:e7:c6:d5:b8:36:cf:2c:40:d0:1f:5e:9a:61:2c:
c7:08:ce:f1:e8:a8:cb:74:0e:6a:dc:19:dc:9b:e8:f5:1f:6a:
c3:45:c8:2c:ce:bb:6b:83:26:09:c2:57:00:20:a9:0a:2a:0a:
df:20:6a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:16:15 2025 by rpki-client