Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
File: OQW37By46JWiW9SsZ7wxZmFdi2I.mft (raw, json)
Hash identifier: byMq6LhV8AV22UUQL/hfQW5pj7xHMy9flG98uD8+h/o=
Subject key identifier: C1:0D:D5:A7:B8:39:05:09:C1:E9:1E:DE:6F:FE:45:19:0E:82:9B:D9
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 019A4D74260B357A1526144404CF64EAF855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
Manifest number: 07F0
Signing time: Tue 04 Nov 2025 06:00:48 +0000
Manifest this update: Tue 04 Nov 2025 06:00:48 +0000
Manifest next update: Wed 05 Nov 2025 06:00:48 +0000
Files and hashes: 1: GzEFY4FMaNIn9ALjdEIyqJJseSE.roa (hash: A0TZx6QvZikNrmKwA+Q10TiJHkrQxZ4XZGZdjheoj80=)
2: OQW37By46JWiW9SsZ7wxZmFdi2I.crl (hash: cQusDZ4zae0O82bI/MNjrkE7tX2IW2nVuKYKU6fS/hY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:26:0b:35:7a:15:26:14:44:04:cf:64:ea:f8:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Nov 4 06:00:48 2025 GMT
Not After : Nov 5 06:00:48 2025 GMT
Subject: CN=c10dd5a7b8390509c1e91ede6ffe45190e829bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a0:f3:a1:0d:d9:ca:7c:cd:4b:72:a3:b0:1c:
9f:99:46:11:4c:8a:ec:b7:98:72:60:f8:71:0b:41:
e8:ab:49:e6:fd:d9:eb:fd:76:ac:bb:e1:05:a0:cd:
ec:8f:35:fe:b8:0d:b7:dd:01:1b:18:2d:71:17:40:
91:26:9a:64:33:35:0d:f0:b8:97:44:cc:43:90:d0:
3a:5f:1f:cb:a0:35:f0:76:f9:52:26:8d:69:0a:53:
94:e0:03:b2:f9:6f:71:87:04:f0:4c:ee:df:c2:a0:
37:35:77:0c:b2:a7:ff:34:86:4c:b2:6a:60:24:a0:
6e:04:c7:c6:cb:56:4f:86:17:e5:f8:c7:d3:68:4e:
d5:ce:db:89:2c:a7:d5:8e:b9:e2:09:3d:7b:e4:9f:
1c:aa:8f:93:93:bd:e9:b8:1a:74:79:6f:9e:e4:32:
bb:bf:ca:24:fa:e6:b3:02:ca:73:65:bb:bc:5d:6f:
f5:e3:a9:b5:aa:4c:59:65:cc:9b:08:6b:ee:45:48:
71:87:d4:2e:b4:cf:05:48:f3:30:1b:c1:2a:ac:1b:
da:f9:4a:ca:ec:22:5b:fc:d7:03:81:04:46:52:d1:
52:4d:b0:4a:c8:c9:19:d7:fc:96:e0:cf:8f:8c:78:
b4:fa:a2:93:52:20:8d:8b:13:9e:ef:55:73:dc:76:
11:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0D:D5:A7:B8:39:05:09:C1:E9:1E:DE:6F:FE:45:19:0E:82:9B:D9
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:0f:90:d7:03:a3:06:77:ae:6f:46:b7:72:b1:d2:a8:ba:07:
de:78:1d:59:62:fc:18:0b:ab:2b:bd:92:a3:45:2f:5d:23:29:
d1:99:b0:35:ff:68:7f:4b:98:9e:26:d9:f3:97:15:cf:51:92:
25:8c:57:f6:54:f1:59:d1:69:13:42:21:63:da:1a:ad:63:08:
be:3e:f8:0d:67:c6:9f:2a:51:47:9c:6e:5a:dd:1f:ee:6c:e3:
3f:48:5f:81:34:31:5f:49:08:45:f2:33:6b:83:9f:03:3e:1e:
18:cd:33:23:cd:49:64:50:00:e4:67:18:0b:d5:a1:c2:e5:5b:
10:b8:cf:c0:a6:00:9a:f2:7d:d7:0d:3a:c4:2f:52:ef:7a:18:
c5:11:52:ac:31:3a:1f:e9:47:7b:23:f1:20:87:5c:5b:53:b6:
14:b8:d5:9b:85:da:55:a9:66:46:4d:84:71:42:4e:ef:12:9a:
f0:1b:1b:1c:5d:e0:27:32:cf:26:ef:bc:a4:7a:0a:cb:18:1f:
e7:b6:65:c5:6a:fb:3f:58:33:18:4f:ca:c6:4d:31:b3:2f:4a:
e0:88:69:87:ef:71:5d:a2:29:ed:7f:37:e8:a5:a9:a5:74:54:
19:ff:6f:fe:f8:9f:1d:01:f8:39:ca:db:31:fe:a7:df:5b:38:
23:ac:20:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:48:21 2025 by rpki-client