Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json)
Hash identifier: hAMJgGcrBRKuB/SALxkWOfjUfak3SZOarxfi70w3zPw=
Subject key identifier: 7F:03:96:D1:1E:E9:CD:03:F2:5B:8E:F5:5C:1F:65:F6:D4:99:2A:48
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 019A4E867897B28992AB7B8DC2DB3592392D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
Manifest number: 0EFE
Signing time: Tue 04 Nov 2025 11:00:26 +0000
Manifest this update: Tue 04 Nov 2025 11:00:26 +0000
Manifest next update: Wed 05 Nov 2025 11:00:26 +0000
Files and hashes: 1: Om-V-EmCFMGXb43s9fZ-DXbAF08.roa (hash: S2SC8pR//ywuBG9ZV7ZWtalhcLPclQLz9j+fN0Z1bo4=)
2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: ctMUE93/oKsa/ktZ72MkR2wxafc8xnX4TN9xVcj1YH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:78:97:b2:89:92:ab:7b:8d:c2:db:35:92:39:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Nov 4 11:00:26 2025 GMT
Not After : Nov 5 11:00:26 2025 GMT
Subject: CN=7f0396d11ee9cd03f25b8ef55c1f65f6d4992a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:12:21:89:1e:e6:33:28:16:5f:f1:53:81:
0b:29:bb:d0:10:a9:3c:57:a6:40:3f:2b:e1:07:7b:
49:af:76:41:c1:82:00:cf:ba:70:63:87:f1:3a:2c:
3e:d1:a3:56:7b:9a:d5:dd:63:cc:02:e8:ef:20:16:
c6:52:10:05:20:e6:ca:75:07:6c:16:d1:02:5f:3f:
ab:5a:71:c2:dd:02:b4:af:2b:5c:26:dc:eb:5b:7e:
16:f2:23:94:be:f1:ea:ff:4a:09:89:c4:72:62:d2:
bf:51:6e:26:b8:d2:da:00:dd:48:e9:89:31:a4:32:
d5:da:9c:8e:0a:52:03:2d:35:c0:d8:e9:06:5f:47:
c0:6c:eb:23:91:3a:af:73:f8:61:19:be:b1:12:b5:
de:9d:36:e8:6b:0b:7f:ab:02:23:e8:a7:c5:4e:b8:
14:95:ce:cd:86:81:86:30:68:57:57:e4:34:7c:3d:
33:e4:bb:60:84:d0:e4:ee:b7:82:ce:95:ac:1c:b6:
37:77:10:19:4a:10:24:76:61:61:ee:6c:8c:d4:fa:
85:d4:ee:7f:05:6d:cc:0b:cd:56:d0:fe:20:ae:6d:
20:f7:9a:17:e2:65:fc:a0:fa:84:d1:d1:b9:25:71:
40:3b:4f:49:51:c6:12:f3:bb:cd:0b:60:9b:80:db:
b2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:03:96:D1:1E:E9:CD:03:F2:5B:8E:F5:5C:1F:65:F6:D4:99:2A:48
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c3:40:d3:79:32:53:32:fa:d5:d2:84:03:d0:6a:ad:88:ec:
4e:c0:b6:7c:dd:96:66:34:c7:c5:6e:a5:90:b2:39:8d:27:69:
dd:5c:ac:cc:48:b1:56:23:95:00:75:8b:69:ee:89:53:59:43:
52:f9:bd:35:79:0e:ee:2f:52:f2:ef:46:df:b6:5f:5a:9a:72:
43:16:42:ea:91:76:bb:de:65:f7:c8:b5:fe:d0:7b:c0:65:f1:
d6:c3:b4:ea:64:a9:37:a1:dd:65:93:61:ac:4c:e3:42:76:33:
55:85:54:b0:5e:f2:b3:f2:59:13:8d:b4:c4:f4:7d:06:de:75:
ef:30:c6:6b:6f:29:3c:25:e2:5b:0e:be:1d:30:24:57:fd:b7:
9e:72:a1:97:0e:5b:f7:28:e8:19:7b:59:fe:ec:5c:c2:c2:81:
5a:a6:a3:b8:c1:f0:b1:e2:85:0d:df:d3:ee:ec:2b:08:a5:82:
bf:ec:9d:b9:13:b2:b3:40:c5:c1:d4:73:93:37:bb:1b:a5:19:
80:d4:99:af:c6:27:07:8e:46:0c:1b:2c:e0:b5:a5:4f:2c:06:
66:43:24:04:7d:1e:78:71:7c:d5:5a:3c:64:1f:59:37:57:ab:
fc:3a:5a:2a:d5:6d:59:3c:e9:06:0f:d9:f0:1e:85:db:cb:5a:
06:a1:85:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:48 2025 by rpki-client