Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: i+ciKJ5Sw6AhNfys/h/CoVkaX3FXeZ2rd4SYph8D9Sc=
Subject key identifier: 04:1C:04:D2:12:67:A4:97:25:FB:95:56:F6:7D:C4:9B:AA:1D:59:5C
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019A4D3D0C54BDD21D3C478DCCFD0AFF7B35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 06D6
Signing time: Tue 04 Nov 2025 05:00:37 +0000
Manifest this update: Tue 04 Nov 2025 05:00:37 +0000
Manifest next update: Wed 05 Nov 2025 05:00:37 +0000
Files and hashes: 1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=)
2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: LIgyMKUyMT2BAaTVBAFAsl5PCWZuPSpQgBysUZG45N4=)
3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=)
4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:0c:54:bd:d2:1d:3c:47:8d:cc:fd:0a:ff:7b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Nov 4 05:00:37 2025 GMT
Not After : Nov 5 05:00:37 2025 GMT
Subject: CN=041c04d21267a49725fb9556f67dc49baa1d595c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3c:6b:cd:75:cb:c1:db:96:8f:30:2c:c9:89:
33:60:f9:b1:9e:e2:2f:7e:d5:72:64:c2:e5:3a:19:
a9:23:a7:a3:ca:58:06:fc:85:e7:50:05:8e:00:cf:
9e:97:c9:49:33:26:e6:93:77:be:98:0b:bd:d3:28:
4e:bc:7b:3d:be:86:89:7a:88:2b:24:61:b7:43:de:
12:02:cd:b3:b4:fc:c0:64:1e:a3:d6:dd:bd:75:c9:
da:0b:5f:92:c7:7c:90:29:7a:93:bd:97:80:d4:c3:
e9:fb:f7:13:49:b2:7f:00:52:9c:48:f2:e2:a0:03:
71:b3:42:ea:66:fd:af:7b:17:44:00:cf:de:de:20:
40:00:a4:66:4a:12:49:b0:b8:c8:16:3d:ce:4e:50:
64:43:b5:c2:92:5f:22:0f:01:43:6b:f6:3b:ad:46:
70:10:e2:b3:77:c7:81:4d:ec:94:93:ab:74:56:4f:
b2:b5:7d:5e:6e:75:f3:34:20:1b:77:14:b4:01:dc:
ec:63:57:3e:2d:2d:04:fe:62:26:31:bd:41:5d:b2:
fa:38:73:3c:e7:24:cb:68:a2:52:96:1f:7e:f3:be:
55:6f:aa:e3:bb:b2:04:c9:23:62:ee:cf:20:2c:de:
5b:79:ef:5d:87:06:cf:9d:4e:25:81:27:48:71:84:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1C:04:D2:12:67:A4:97:25:FB:95:56:F6:7D:C4:9B:AA:1D:59:5C
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b7:c0:b3:c5:2b:67:37:34:65:d0:50:0d:85:3c:3a:f9:77:
58:54:5b:b2:0b:e7:83:3c:c7:c4:a0:15:07:df:aa:5e:f5:a4:
11:ad:4a:d0:fc:0c:6d:e3:05:39:25:8c:88:a2:e5:bb:1c:8f:
8c:db:16:aa:28:ff:c8:98:a7:58:2f:d8:44:71:44:ef:e6:19:
f1:ae:65:95:29:13:28:27:14:b4:dc:56:c2:b7:97:d0:d2:82:
fb:98:42:d0:a4:df:4a:ab:04:09:c1:e6:d1:b4:bd:95:82:ed:
5b:ea:7e:2a:3b:ae:6e:7c:37:1d:7e:97:e8:ff:67:ea:c5:66:
97:1d:99:d7:69:a4:72:39:36:e1:3a:08:b9:f6:d8:7f:77:a9:
6f:b3:08:0d:84:67:18:fe:3e:4e:5c:34:6f:a0:fc:b5:77:ea:
63:a0:3e:0b:b1:12:b0:35:f5:2c:4b:5c:09:8a:0c:f8:70:f6:
94:06:ce:b1:5c:44:9b:c9:55:64:6c:04:11:47:c5:86:da:27:
96:77:75:79:7d:72:39:d0:f7:14:a3:de:62:64:7d:83:02:70:
3e:c0:51:cd:37:49:47:a0:ed:01:6e:c2:71:24:81:0b:a7:9c:
1b:bf:3f:31:ec:30:5f:c2:9e:7f:c9:9a:a5:2b:31:0e:6f:f8:
9c:4e:ac:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNPQxUvdIdPEeNzP0K/3s1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli
ZDljZjIwHhcNMjUxMTA0MDUwMDM3WhcNMjUxMTA1MDUwMDM3WjAzMTEwLwYDVQQD
EygwNDFjMDRkMjEyNjdhNDk3MjVmYjk1NTZmNjdkYzQ5YmFhMWQ1OTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzxrzXXLwduWjzAsyYkzYPmxnuIv
ftVyZMLlOhmpI6ejylgG/IXnUAWOAM+el8lJMybmk3e+mAu90yhOvHs9voaJeogr
JGG3Q94SAs2ztPzAZB6j1t29dcnaC1+Sx3yQKXqTvZeA1MPp+/cTSbJ/AFKcSPLi
oANxs0LqZv2vexdEAM/e3iBAAKRmShJJsLjIFj3OTlBkQ7XCkl8iDwFDa/Y7rUZw
EOKzd8eBTeyUk6t0Vk+ytX1ebnXzNCAbdxS0AdzsY1c+LS0E/mImMb1BXbL6OHM8
5yTLaKJSlh9+875Vb6rju7IEySNi7s8gLN5bee9dhwbPnU4lgSdIcYSofQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAQcBNISZ6SXJfuVVvZ9xJuqHVlcMB8GA1UdIwQY
MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt
ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj
LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7fAs8Ur
Zzc0ZdBQDYU8Ovl3WFRbsgvngzzHxKAVB9+qXvWkEa1K0PwMbeMFOSWMiKLluxyP
jNsWqij/yJinWC/YRHFE7+YZ8a5llSkTKCcUtNxWwreX0NKC+5hC0KTfSqsECcHm
0bS9lYLtW+p+Kjuubnw3HX6X6P9n6sVmlx2Z12mkcjk24ToIufbYf3epb7MIDYRn
GP4+Tlw0b6D8tXfqY6A+C7ESsDX1LEtcCYoM+HD2lAbOsVxEm8lVZGwEEUfFhton
lnd1eX1yOdD3FKPeYmR9gwJwPsBRzTdJR6DtAW7CcSSBC6ecG78/MewwX8Kef8ma
pSsxDm/4nE6sqg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:00 2025 by rpki-client