Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: mhBcZDSiK09MJBx+JHhYcBhVT3Z0swvYnKw6VzJwBv0=
Subject key identifier: 17:00:43:CA:07:65:F9:17:53:7D:55:87:AE:81:13:0E:26:F9:24:E1
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 019A54C04AE715153D3F802064F2AB663EB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0AFF
Signing time: Wed 05 Nov 2025 16:01:19 +0000
Manifest this update: Wed 05 Nov 2025 16:01:19 +0000
Manifest next update: Thu 06 Nov 2025 16:01:19 +0000
Files and hashes: 1: E6bot_tKJqCzADpBxFeKtsutgCs.roa (hash: IzVVajCV/IB0bxI8d5Bqo7CZjFjDagAuPrwaJPvu9o8=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: wrx2Vr+nPHZsTwma+FItJfhd874mV3Jdeyo0+LeP07c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:c0:4a:e7:15:15:3d:3f:80:20:64:f2:ab:66:3e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Nov 5 16:01:19 2025 GMT
Not After : Nov 6 16:01:19 2025 GMT
Subject: CN=170043ca0765f917537d5587ae81130e26f924e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4f:79:c7:a6:e7:51:22:ac:47:77:31:d7:cf:
5c:df:59:ed:13:4a:cb:8c:3b:52:85:c0:b7:5d:3f:
51:e7:bf:9d:30:57:98:d0:44:00:be:02:28:44:ca:
89:db:c0:50:76:5a:27:e6:c6:4f:d1:72:47:ab:df:
56:c4:99:19:82:25:b4:f6:09:bb:d7:ae:30:ea:19:
76:b7:6e:7c:d4:d7:06:17:a7:de:bb:92:43:2b:d9:
88:c9:62:12:ff:ba:a6:e4:cd:f4:f1:ab:98:bf:86:
3a:fa:74:50:e2:26:37:35:11:ce:61:1b:b9:54:ef:
70:3b:58:b9:a3:a3:42:39:33:d6:1b:c0:fc:41:bd:
85:7a:2d:52:93:64:e9:0d:e2:42:48:40:3f:75:d5:
75:f9:3a:11:13:3a:10:d2:c8:94:4b:09:17:9d:8b:
d4:4b:52:cc:bf:28:fa:76:a7:46:6f:a9:a6:a9:5e:
b1:bf:75:69:fd:6b:9b:24:0c:3f:b5:c6:53:12:89:
35:92:40:ac:93:2c:ad:fb:85:f3:f6:c8:05:fa:87:
c4:88:00:cf:d3:c6:11:11:16:a5:87:0a:fc:67:cd:
b1:2b:ff:59:5b:6b:34:8b:6b:a9:80:17:99:e8:51:
1c:45:8c:db:32:38:d3:7c:2b:d1:8a:7e:0e:ec:35:
58:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:00:43:CA:07:65:F9:17:53:7D:55:87:AE:81:13:0E:26:F9:24:E1
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:0c:e1:29:26:98:34:2a:f2:bf:1c:b1:67:d8:10:a6:15:78:
34:16:f6:4c:4a:e6:f0:fa:25:c0:cc:83:57:a2:01:58:3a:4c:
a8:f6:8d:a2:ed:2e:79:f5:94:cb:34:c9:0b:78:a2:54:31:8b:
12:52:81:46:a5:2c:3d:3c:38:3b:b5:c8:84:26:e5:39:8d:74:
8e:90:ed:12:e1:b5:ae:52:3c:c9:c0:e0:ca:f4:c7:1f:de:4f:
75:3c:00:37:07:1a:61:23:b7:31:f6:54:e9:e8:02:dc:d0:1d:
78:1a:16:c9:7b:28:96:8a:ab:bf:44:28:07:4b:c8:a7:b5:cc:
01:cd:4b:52:72:62:bf:1f:db:4c:6c:6f:16:ee:28:d8:2d:d3:
5f:9b:19:b3:5a:15:96:2f:95:a9:83:a7:ed:46:40:d5:6b:bd:
08:08:52:b4:c1:f3:7f:e4:29:32:58:6c:49:94:19:f7:a3:3a:
11:79:72:9f:80:56:4b:d1:34:1c:45:e2:cc:b5:42:04:18:75:
4e:af:e7:b3:89:69:9a:ad:e6:36:b7:d4:0a:7e:58:57:6c:61:
e6:07:14:88:4d:34:91:09:35:e3:8f:ff:c3:4a:01:05:31:47:
a9:10:45:9d:f3:6f:1f:09:c0:6d:7d:b6:5a:8d:50:7d:55:9c:
b3:54:ae:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:21:53 2025 by rpki-client