Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: 517xjLa5F9HCxmrxrUrgyypNmtWSvqO88/xnB/KEevw=
Subject key identifier: E4:6F:28:8C:E0:1C:D5:3A:25:71:2D:5C:4C:89:58:E8:7C:9C:9F:9A
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 019A4EF4C3B30205AE3EF60CABBA984525FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 16FF
Signing time: Tue 04 Nov 2025 13:00:54 +0000
Manifest this update: Tue 04 Nov 2025 13:00:54 +0000
Manifest next update: Wed 05 Nov 2025 13:00:54 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: hrFLIcAvdMbuwUZ1UEMInoXC4QkYBWjZsKL9W+/DavY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c3:b3:02:05:ae:3e:f6:0c:ab:ba:98:45:25:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Nov 4 13:00:54 2025 GMT
Not After : Nov 5 13:00:54 2025 GMT
Subject: CN=e46f288ce01cd53a25712d5c4c8958e87c9c9f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2d:f3:d2:c8:f9:63:dd:ed:d4:33:9b:8f:b8:
68:62:eb:59:2e:c5:70:1a:e2:0d:fb:59:5d:0e:b8:
ed:74:cd:94:a5:89:76:e0:73:8a:4f:df:7e:0c:d7:
c9:4a:b9:18:04:1e:00:b5:9e:fc:c8:18:a3:61:3f:
11:be:7e:b4:52:30:3d:68:52:cc:8c:2a:4d:a8:82:
12:23:10:15:3c:dc:d9:81:12:9e:30:8d:f1:f5:8f:
17:d5:44:e4:a5:1a:13:57:45:4c:a7:21:99:ad:c2:
e3:5b:f3:08:a7:35:85:77:8e:c0:ed:ea:fc:66:91:
7f:b3:4c:52:8b:7b:14:db:4e:e7:d0:17:bb:f1:7c:
1b:1f:2d:eb:a7:a8:e2:6c:9c:75:f0:8e:e0:a6:c3:
a9:ce:bb:07:21:ad:93:9f:a7:b8:26:94:e5:b8:62:
8c:79:42:32:b8:0d:ba:73:4e:8b:b5:31:68:4c:4a:
5a:d1:bf:fc:e8:76:bd:25:1d:6b:b3:b6:d6:d6:6c:
f6:cd:3c:5a:10:91:82:f3:96:a0:14:f9:ce:9c:02:
be:71:c3:8f:da:86:11:8d:0f:84:ed:8e:f9:69:0e:
da:30:40:ab:38:7a:f9:87:19:f8:f4:29:da:34:5f:
25:1b:f9:b6:d1:61:0c:4c:5a:5a:01:57:a4:a3:8a:
7d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6F:28:8C:E0:1C:D5:3A:25:71:2D:5C:4C:89:58:E8:7C:9C:9F:9A
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:0e:4f:3e:a6:bb:2d:b7:68:2b:e5:19:bc:ae:8a:e1:8b:bd:
60:04:a9:b3:1b:18:6b:ee:64:78:63:b5:b8:10:d7:cf:93:fb:
3f:11:1f:f1:ab:53:a3:95:2e:c9:9e:7e:46:ae:70:03:62:91:
77:17:8a:60:5d:35:4e:ba:7c:ab:d5:32:a5:6a:66:b0:71:b1:
02:bc:ba:b6:ed:0a:08:34:0a:83:47:59:15:de:aa:c5:92:00:
5c:97:de:c6:a5:94:c7:09:de:5b:0c:8c:26:2a:c2:f3:e3:98:
f4:14:1a:d8:e4:e7:23:a9:e1:30:75:13:99:ec:bf:ce:db:0b:
06:5b:7a:b8:dc:c7:f4:fd:f4:d6:a1:67:08:d7:ff:fe:17:fa:
47:4d:9a:52:ba:74:63:4e:ab:5e:4e:ef:be:d3:de:a2:39:06:
39:44:6c:eb:d9:c9:f5:32:95:21:31:90:75:3c:8e:f8:ba:cc:
cd:ef:44:d5:17:55:7d:17:85:73:c8:f4:6f:a3:9c:92:fb:17:
3e:53:d4:f9:46:62:85:3c:e5:7d:24:00:b4:83:57:e2:c7:67:
4e:eb:cf:ea:10:b3:99:21:50:74:0a:3d:23:85:4e:81:47:e9:
91:52:36:e2:fd:86:d0:03:c7:de:c4:be:12:a2:0c:02:bb:d4:
30:e5:10:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:51:49 2025 by rpki-client