Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.mft
File: oVJWhcluMm8grjcpwDD0T9FJmwU.mft (raw, json)
Hash identifier: Q5koIMvoR4dssVLjcdr2XTgZBcRySIXjA5x3WiG6wjY=
Subject key identifier: 0D:41:F5:B8:92:D3:DD:62:82:A4:3C:E0:B6:3C:38:CA:4B:36:66:04
Authority key identifier: A1:52:56:85:C9:6E:32:6F:20:AE:37:29:C0:30:F4:4F:D1:49:9B:05
Certificate issuer: /CN=a1525685c96e326f20ae3729c030f44fd1499b05
Certificate serial: 019A5119D46E80741378F6595A5627135731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVJWhcluMm8grjcpwDD0T9FJmwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.mft
Manifest number: 091A
Signing time: Tue 04 Nov 2025 23:00:38 +0000
Manifest this update: Tue 04 Nov 2025 23:00:38 +0000
Manifest next update: Wed 05 Nov 2025 23:00:38 +0000
Files and hashes: 1: oVJWhcluMm8grjcpwDD0T9FJmwU.crl (hash: 1OsolLulebTk/8VbkoYJ7Rw9qgvzEV15BNIrosyau/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVJWhcluMm8grjcpwDD0T9FJmwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:d4:6e:80:74:13:78:f6:59:5a:56:27:13:57:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1525685c96e326f20ae3729c030f44fd1499b05
Validity
Not Before: Nov 4 23:00:38 2025 GMT
Not After : Nov 5 23:00:38 2025 GMT
Subject: CN=0d41f5b892d3dd6282a43ce0b63c38ca4b366604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5a:e0:e8:3c:f3:47:86:c8:35:5f:f3:5c:fd:
d6:8a:ae:ad:b4:61:03:a1:fa:65:8a:8a:87:72:05:
1b:a9:73:12:89:ad:47:ee:84:88:bf:c6:9d:ea:44:
a9:40:a7:f8:3e:5e:1f:0b:ef:8b:c1:25:05:2a:6a:
1f:b5:ac:b6:1b:59:d7:e5:56:b3:a2:85:fd:6f:39:
f8:87:c8:f7:f1:70:b7:09:ae:3f:4f:0a:5b:de:92:
9a:d6:86:5d:9d:71:a8:58:de:e0:39:70:b6:bf:5d:
b5:71:a0:aa:db:bf:d0:74:db:b1:bd:60:e2:40:68:
99:32:2c:65:c6:71:dc:e2:f6:59:01:4c:74:26:7a:
52:af:69:9e:8b:26:af:17:23:92:b6:d3:55:2d:72:
25:6d:cf:39:35:82:c4:96:9b:53:e8:04:8a:58:ce:
d0:87:44:7d:79:73:b3:ba:1a:1f:66:cc:9e:ff:c4:
cf:e8:c0:d1:c6:e8:2a:1a:76:27:ac:cb:1f:15:16:
65:67:c7:e1:d8:c0:7f:c7:08:25:5a:0b:53:d8:fc:
ed:30:e9:11:d3:14:2b:e1:20:99:fe:4e:fd:54:70:
ce:a3:2a:76:38:e5:c8:35:9d:f6:c3:f5:16:97:dd:
d5:c4:53:a3:40:1c:40:2e:4b:1c:fa:60:af:da:10:
2a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:41:F5:B8:92:D3:DD:62:82:A4:3C:E0:B6:3C:38:CA:4B:36:66:04
X509v3 Authority Key Identifier:
keyid:A1:52:56:85:C9:6E:32:6F:20:AE:37:29:C0:30:F4:4F:D1:49:9B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVJWhcluMm8grjcpwDD0T9FJmwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e2cc8b-8606-4f25-92d0-44371b1cc72f/1/oVJWhcluMm8grjcpwDD0T9FJmwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e3:0b:31:9c:ef:90:e8:c2:f4:11:09:61:f5:db:17:6c:3b:
07:39:47:56:48:2a:d9:1a:66:2a:57:a9:87:98:4f:00:27:9e:
89:bb:c1:41:a3:b6:20:58:3b:34:1c:96:fc:bf:5e:af:14:e1:
9f:ac:e5:47:af:cb:87:aa:a4:56:a0:58:16:0a:68:1c:86:bd:
f1:a5:52:8f:84:84:3c:a4:05:cd:a7:50:41:c4:34:37:87:d0:
06:05:62:b7:3b:34:6d:cf:56:e3:20:66:13:bc:1b:bc:dd:66:
c0:cb:33:da:a4:45:5f:eb:55:a2:0e:2e:7c:2e:9c:cd:34:95:
13:08:a6:80:8e:75:a6:c3:fd:03:67:94:f2:f3:14:a8:b5:52:
96:05:27:e3:bb:a8:26:0b:1d:52:0a:cc:f1:bd:83:a1:1f:94:
23:38:29:8d:bc:88:1a:6c:b6:8e:1c:93:a1:6d:33:78:8a:c1:
34:42:01:3e:e5:db:43:6b:18:5d:e8:28:fb:12:cc:62:73:f0:
4d:b3:b3:00:2e:fa:39:f9:33:2a:ac:af:c0:fc:de:63:a8:07:
e3:3d:e9:03:94:ff:99:93:07:10:fa:a9:fa:85:3d:23:8e:64:
b5:a2:1f:56:34:35:f1:29:f0:3c:99:38:eb:a5:cf:90:1e:19:
90:53:13:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:58:54 2025 by rpki-client