Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
File: OZPVTmOQgKRsP-PViqh-MF22mtE.mft (raw, json)
Hash identifier: +f9KvVRLe94QUTXdQzoO4Iq4SjNb1Vfb39Di3uEiLrk=
Subject key identifier: 92:61:5E:CA:A6:CE:1B:10:D7:B3:0C:81:BE:19:BB:00:71:15:EB:B0
Authority key identifier: 39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
Certificate issuer: /CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Certificate serial: 019A4E18A4DE576A06E4328F9FE8A2D81C65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
Manifest number: 13CE
Signing time: Tue 04 Nov 2025 09:00:29 +0000
Manifest this update: Tue 04 Nov 2025 09:00:29 +0000
Manifest next update: Wed 05 Nov 2025 09:00:29 +0000
Files and hashes: 1: LzOPFVwwlI3xLKXD4eUrmAY0yQU.roa (hash: FOOM9kMpwPkSzslFZMnKyIoaQBQCR3WyFVCTjxN9D/4=)
2: OZPVTmOQgKRsP-PViqh-MF22mtE.crl (hash: z7x+NbHbs9J3oMdes1oeTrVSd+KsbUsaC9GtqSnCQmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:a4:de:57:6a:06:e4:32:8f:9f:e8:a2:d8:1c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Validity
Not Before: Nov 4 09:00:29 2025 GMT
Not After : Nov 5 09:00:29 2025 GMT
Subject: CN=92615ecaa6ce1b10d7b30c81be19bb007115ebb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:91:45:50:0a:10:37:00:63:6e:60:e8:1b:05:
69:29:01:83:5a:02:07:58:10:ef:5d:47:65:26:46:
95:23:b4:08:d4:4b:99:ec:fc:15:7c:34:1f:a2:3c:
c5:03:f8:9e:bf:79:21:e7:69:3b:ca:a4:7b:41:ce:
e6:53:7e:8c:5f:ef:a0:fe:87:e8:e1:a4:0a:ab:b9:
2c:41:79:ce:e2:5b:bc:7a:75:20:c5:ce:61:d8:5a:
6a:89:19:47:85:9d:2b:3c:2f:ed:27:53:35:66:92:
8c:4e:10:8b:7a:a4:fa:55:d9:f9:da:ec:e0:a7:d8:
c8:5d:d5:c5:37:c5:b3:52:31:0d:1e:a6:7e:2a:8d:
c8:fc:78:04:e1:99:58:3d:b9:de:ef:20:4d:dc:2d:
9f:ce:41:08:3d:6b:62:f6:55:41:37:e8:0f:e5:9f:
7e:62:7b:7f:2b:90:6c:b3:bd:60:3d:d6:da:00:0d:
0c:25:10:4d:20:41:c1:63:00:0a:08:ed:98:4c:9d:
1f:00:ba:06:d0:1d:65:02:ac:70:e3:70:f7:dc:d0:
41:1c:9c:fa:1d:43:06:54:cd:66:ed:41:e9:02:b3:
b0:6f:05:a6:e0:47:9d:26:d9:f6:0e:f8:78:df:3f:
73:37:5e:d9:09:08:1e:27:2c:1b:3b:17:e7:da:3f:
1d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:61:5E:CA:A6:CE:1B:10:D7:B3:0C:81:BE:19:BB:00:71:15:EB:B0
X509v3 Authority Key Identifier:
keyid:39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:dd:63:d9:27:35:f2:6f:c5:7e:61:5d:b9:1c:ac:27:db:ed:
59:a9:d0:8b:ea:95:57:a8:a3:ca:ac:3c:0a:84:f1:52:81:5a:
bb:4a:51:98:03:d4:3c:a9:95:c5:49:2a:aa:f7:c9:6f:43:fe:
f0:ed:e2:55:ad:0d:9b:74:c3:7b:ed:6f:1b:d1:a0:5b:67:b5:
22:2a:e1:df:b4:77:48:73:8b:ca:b6:05:12:90:6a:9d:1a:aa:
fb:59:30:54:b3:65:b9:aa:e7:55:11:2e:37:e6:9c:87:96:7d:
a4:b7:9d:e4:62:47:46:2e:3e:b9:18:46:27:ea:f9:7d:a6:f5:
1c:46:b6:2b:d6:20:42:f5:10:05:7e:a2:32:4a:ab:88:d9:b4:
3a:70:2b:06:bb:37:11:d5:ae:16:c8:30:39:2f:fa:9c:56:d8:
a4:6b:52:21:4b:1a:1c:5b:f5:1d:28:3c:95:1e:0d:68:b5:83:
88:bc:d3:b6:64:88:0e:ee:d1:04:34:9a:38:20:13:b2:bc:1c:
3d:c5:07:65:b9:8c:fd:b2:90:05:7e:25:16:cf:3b:b0:a9:92:
f6:29:c0:ee:fc:61:23:98:6a:72:80:13:ec:fe:7f:88:dc:ba:
05:b4:48:b0:a6:bb:30:39:30:57:3b:e5:79:f4:93:7b:26:c7:
d0:e9:2f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:02:10 2025 by rpki-client