Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
File: OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft (raw, json)
Hash identifier: ydzLvzX/unfKG3ps//C4vURRefr82vHmrqGcAkZ/rKM=
Subject key identifier: 50:90:CA:21:0C:1C:59:30:A3:6C:E4:26:3E:0F:E0:80:C0:63:61:76
Authority key identifier: 3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
Certificate issuer: /CN=3a07318a1314233f5623c0f835fae18f9126412f
Certificate serial: 019A50E3B0DFF61AFBB26CE6A5EF3991F1D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
Manifest number: DF
Signing time: Tue 04 Nov 2025 22:01:30 +0000
Manifest this update: Tue 04 Nov 2025 22:01:30 +0000
Manifest next update: Wed 05 Nov 2025 22:01:30 +0000
Files and hashes: 1: OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl (hash: 2FUX1+E/Z23O3ot7caQThbs/dGKQSk7x+3rBf7MoYGI=)
2: d_S_LiTn-5JZ6QbYkJGNQlQwd5g.roa (hash: wiJdaTKeLOoOD2ZMe+ZN1Wuh3uVVfGMcp7ArG5upMbk=)
3: qBjHDY2sXPfYcFMAdrqZb0wk3qo.roa (hash: YJdVl/jAdNP388MpdOeTC60bm9oxrdjXPgN1Q6k8CnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:b0:df:f6:1a:fb:b2:6c:e6:a5:ef:39:91:f1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a07318a1314233f5623c0f835fae18f9126412f
Validity
Not Before: Nov 4 22:01:30 2025 GMT
Not After : Nov 5 22:01:30 2025 GMT
Subject: CN=5090ca210c1c5930a36ce4263e0fe080c0636176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ed:8b:a1:cb:b6:ba:55:52:44:76:96:c4:82:
af:8c:60:f7:ce:31:14:c7:6a:f1:17:02:69:eb:d6:
9e:59:e4:b1:e3:b9:4e:93:f6:d1:90:0c:18:9b:8d:
a3:73:52:ff:d3:64:ee:28:c6:c1:cc:5b:18:27:ee:
2c:03:47:bc:80:49:61:d0:34:ee:81:08:29:7b:11:
1b:a5:26:4c:7c:c5:52:2f:65:cb:d9:51:5a:ee:80:
07:48:b7:70:78:c5:98:5f:33:34:9f:8f:2a:72:92:
1b:6b:52:97:f2:9a:bf:98:9f:62:90:21:17:6b:bb:
64:42:b9:61:ee:90:ce:4e:01:dc:57:af:ec:8f:8f:
97:fc:1e:d0:f5:0c:f4:b4:6b:91:b3:3a:85:c9:89:
51:f6:39:68:f6:77:4d:86:1d:c3:71:1d:fd:50:84:
50:e6:24:d4:7e:5c:0e:32:01:e4:48:98:a6:e1:2a:
53:3e:50:1a:d9:07:8f:e5:43:a2:a9:3d:f8:dc:12:
6e:c0:59:7a:91:6a:b3:41:d6:c8:74:54:28:a9:1d:
df:97:ff:c2:f7:da:98:7b:ab:a8:70:86:7f:a7:2c:
98:73:aa:99:a1:b8:ab:a6:14:d6:f4:c4:de:69:05:
a9:ac:ea:72:c0:3a:b3:93:0d:41:36:65:05:22:88:
d1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:90:CA:21:0C:1C:59:30:A3:6C:E4:26:3E:0F:E0:80:C0:63:61:76
X509v3 Authority Key Identifier:
keyid:3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:0d:cb:99:9a:0e:35:68:02:bc:c4:47:d0:cc:17:79:30:94:
e5:d7:fc:8d:e8:6d:eb:4e:6c:44:97:19:8e:16:15:be:c0:09:
f6:b3:31:87:2c:34:c5:ee:98:ab:25:8d:6e:84:e1:ba:4c:e1:
ed:7e:0a:a9:c5:4c:6b:11:29:3f:1f:d0:b9:a5:79:41:d0:c6:
a4:3e:9a:fe:80:83:08:88:41:85:85:a3:f7:92:65:4e:bb:55:
38:2a:bd:82:dc:96:bf:75:46:35:f9:4b:b3:81:b0:4b:db:d0:
43:b5:29:dc:b9:1d:46:0f:96:18:c4:dd:bb:2e:49:ae:10:33:
3e:41:bf:db:3e:6b:88:61:05:d3:0d:24:3c:5a:fc:b0:75:a0:
3e:fc:ed:0c:9f:26:ae:ed:8e:9b:a6:ac:79:fb:bc:3e:6d:b9:
e0:92:f2:c8:7e:20:90:8a:3c:54:3b:65:e7:dd:62:07:96:8b:
cc:64:8d:ca:37:23:44:cc:70:1c:09:bb:12:9b:8d:18:8b:e5:
9b:7a:62:7e:1c:bf:01:5a:4d:c5:43:83:16:7b:5a:2a:b3:76:
79:68:5d:f3:44:7d:1a:86:52:86:23:45:d9:30:02:3f:89:43:
ea:4e:84:57:0f:c8:f7:e2:5e:74:19:1d:1b:8c:7a:59:d2:24:
d7:12:e6:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:21:54 2025 by rpki-client