Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: j+rtDw48o32yTLE9niNrlyr/PHu884lcO/bTBLRMWLs=
Subject key identifier: A5:58:01:A2:70:4B:D2:43:15:5D:CF:57:9B:FD:6B:E4:07:3F:1C:0A
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 019A518757D7ADC139880F104A16C040EF8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 08E2
Signing time: Wed 05 Nov 2025 01:00:15 +0000
Manifest this update: Wed 05 Nov 2025 01:00:15 +0000
Manifest next update: Thu 06 Nov 2025 01:00:15 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: F9ZMmXu+b+t6bS2OEtxFo1laKy2/kUD3eBhSqCqB7yY=)
2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:57:d7:ad:c1:39:88:0f:10:4a:16:c0:40:ef:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Nov 5 01:00:15 2025 GMT
Not After : Nov 6 01:00:15 2025 GMT
Subject: CN=a55801a2704bd243155dcf579bfd6be4073f1c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a9:63:83:e7:56:bb:0d:24:c4:06:5c:28:9f:
77:f9:69:e6:94:64:72:ce:a8:ac:f4:d1:36:d8:da:
02:e8:54:ab:3f:96:38:d1:02:37:de:9d:55:c4:5c:
61:21:f8:86:50:98:cc:bf:57:73:b8:fa:38:bc:31:
8c:c1:f3:7d:ea:b4:fb:9e:3f:2b:1a:12:ac:0e:3d:
d6:c7:37:c4:58:f7:7c:01:17:1f:a1:eb:74:64:43:
22:52:b5:8a:fc:5d:de:1c:73:52:87:3e:26:02:a1:
d1:99:91:6c:ba:d1:28:b0:ac:39:68:e2:f5:8c:c5:
41:f9:cb:4d:c9:2e:5a:5d:72:96:f9:00:04:d4:7e:
fe:cb:b8:1b:12:18:1d:2d:f2:38:e1:23:54:9f:44:
bf:6c:4f:4d:72:1d:d3:2c:4e:a1:f1:ef:dd:9a:02:
9c:04:ee:93:88:c5:68:eb:87:ad:7d:63:0b:c2:cf:
57:5d:30:27:04:81:d8:27:09:e0:31:9d:7f:51:a6:
e0:6e:36:46:a8:7b:e4:a5:6e:33:26:76:cf:05:22:
8e:78:7e:c7:eb:96:d0:f4:4b:11:e2:73:0f:02:7e:
0f:b0:60:d5:e4:67:4e:40:40:15:3d:e2:5d:13:e2:
29:c9:41:0f:f1:0b:00:ec:13:92:21:91:e6:b7:02:
10:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:58:01:A2:70:4B:D2:43:15:5D:CF:57:9B:FD:6B:E4:07:3F:1C:0A
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:64:af:63:93:7c:cc:8b:8e:ce:b1:17:f7:a6:78:fb:f1:a0:
7b:15:18:03:93:0f:3c:cc:5b:b8:9b:5e:1c:08:96:37:6d:a4:
09:b6:04:fa:98:96:65:79:03:8b:5d:61:2d:f5:6f:52:e3:bd:
ba:94:ca:37:c9:f0:97:1a:df:ae:28:ef:9c:14:53:e5:f2:8e:
97:3e:da:5a:cd:c3:9e:07:6e:aa:78:2d:12:12:1a:09:1d:b5:
d8:70:98:19:65:7c:d2:de:55:9a:a7:4a:06:98:a0:2d:9f:90:
09:d3:01:eb:1a:4b:66:34:cd:e1:61:41:43:1e:46:34:f9:26:
dc:59:15:98:4a:67:4b:98:97:ad:95:0c:7d:b7:56:42:72:48:
69:b1:df:46:ea:bb:bd:75:d4:ba:6c:63:f1:3a:59:7e:03:a6:
98:50:bf:38:35:5f:68:d0:3d:60:16:d1:2f:fe:6d:b1:c3:e2:
99:9c:05:b0:c3:88:2b:3d:be:07:93:ab:f0:aa:9d:1e:c9:42:
39:7f:35:f6:14:fd:74:c0:0e:7a:11:16:2e:ea:5a:30:95:be:
f9:cd:77:cc:f9:4e:c1:a0:65:e3:26:3d:22:55:d7:0e:fd:66:
47:1b:44:17:20:54:c3:3c:9d:04:60:eb:f2:a9:2a:fc:8b:10:
b9:0f:46:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:04:32 2025 by rpki-client