Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: 0QFt5ZIMpBCpQE3Xn7hzOvZpJyGd3/U5GlQZq0+K22k=
Subject key identifier: 46:58:F7:72:C6:EC:27:21:C5:E1:06:43:B8:ED:91:DB:6D:CD:D9:8B
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 019A52635765C302EA40DB9DB532B086C6B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0A05
Signing time: Wed 05 Nov 2025 05:00:33 +0000
Manifest this update: Wed 05 Nov 2025 05:00:33 +0000
Manifest next update: Thu 06 Nov 2025 05:00:33 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: BCPcqQgLuWqJiIyXQXpskzJsdxrugPGv6HArWosWyOU=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:57:65:c3:02:ea:40:db:9d:b5:32:b0:86:c6:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Nov 5 05:00:33 2025 GMT
Not After : Nov 6 05:00:33 2025 GMT
Subject: CN=4658f772c6ec2721c5e10643b8ed91db6dcdd98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:cb:5e:75:0d:f9:5c:8e:01:30:5d:e5:04:
11:03:c2:dd:11:9a:2c:f4:29:65:6c:01:35:b5:d6:
42:6a:50:0c:a2:4d:33:2d:ca:b5:38:c5:2b:d2:26:
24:3b:ca:bc:ee:25:f8:ec:05:10:8b:f8:e2:b7:a8:
33:8b:1e:8e:09:06:53:2b:04:a2:ca:1e:a5:83:2e:
fb:a6:23:8d:0f:72:ce:31:92:58:c2:49:68:1f:da:
88:5a:6b:27:cb:94:f9:fa:e4:7f:3a:fa:58:01:4c:
55:dc:e0:00:79:c0:a3:b4:6d:15:af:b8:0f:d0:e7:
e6:c1:90:5f:66:86:dc:f2:7e:a9:a0:c3:c1:28:a9:
14:f4:b1:a7:bd:54:bd:7a:1a:e2:56:f4:f9:5a:b0:
4c:6c:e1:46:b9:dd:55:2c:0e:58:30:c7:57:4d:50:
a7:07:a2:53:09:d4:c4:73:cd:9e:56:81:d4:f1:4b:
64:23:5c:24:b8:a8:86:f3:c4:9c:f7:0e:77:66:4e:
29:a0:10:6c:03:ca:5e:55:bf:9a:47:a7:d7:54:6a:
22:66:fa:f2:e4:29:95:3d:62:df:9c:90:df:52:b6:
92:3b:f1:5b:01:b6:51:78:ca:4e:57:6d:ba:f9:f5:
d8:05:8d:3a:cb:94:e8:69:b0:d2:74:90:f2:00:50:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:58:F7:72:C6:EC:27:21:C5:E1:06:43:B8:ED:91:DB:6D:CD:D9:8B
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:17:42:df:72:54:6e:35:a5:92:d7:d6:b0:6f:e9:3e:5c:80:
5e:b4:3a:f2:86:48:83:09:3a:2c:c4:5c:a1:b4:05:e5:f2:b6:
4d:dc:45:f9:f7:8c:6c:d5:3f:37:6e:9d:2b:32:fc:76:87:8f:
62:60:01:4a:55:1f:7b:bb:0c:5e:9c:ce:bc:12:a3:b7:42:ff:
06:6e:f9:38:98:06:71:71:d8:c3:b3:39:71:de:93:41:5d:53:
ba:db:f2:10:0a:dd:cb:0f:af:e6:b4:40:cd:0e:d8:b8:9c:70:
b7:38:95:c8:a9:41:97:16:e3:5b:a3:b4:83:1a:9f:5b:86:42:
5f:83:54:2a:28:44:21:fe:c1:b7:8a:70:df:27:52:d2:aa:33:
41:fb:43:3d:9e:28:66:a3:74:61:b7:39:ed:c4:79:93:3c:e5:
2f:1e:66:1f:2a:c7:1b:f0:74:7a:ca:94:db:f5:f7:54:e8:2e:
00:04:78:6d:40:16:4c:f5:02:2d:45:a6:a7:0c:4c:3f:da:f9:
67:57:9b:c3:a6:58:0f:da:f0:56:5b:42:59:b0:8c:0e:d7:29:
17:19:6c:bb:45:20:29:d6:1d:db:db:41:86:66:55:52:94:a2:
08:7b:9e:66:20:1a:72:a8:10:0b:d2:9f:ca:0d:68:0f:ba:21:
e8:a5:51:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:32:08 2025 by rpki-client