Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: BF3YTIM6nWfPItUKv1hTCHXEFM1rXpIIvpZffT7caJ4=
Subject key identifier: 64:AF:1B:28:21:4A:82:DC:D7:D9:0A:3E:FD:53:D9:7E:DE:44:16:D2
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019A4D747CCB2EA9091A85B192212416A2E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1716
Signing time: Tue 04 Nov 2025 06:01:11 +0000
Manifest this update: Tue 04 Nov 2025 06:01:11 +0000
Manifest next update: Wed 05 Nov 2025 06:01:11 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: pHV90NvO8OOlUPHzpbK/8ZEX4BLK7qD4pwpIWbhht7o=)
2: THEjTsFNcxDVZEOdq3GfXqXC4zc.roa (hash: x5CBmcScUC+Y/Wuw5WgYT+dNtpSqSEasQSVqzZJLzc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:7c:cb:2e:a9:09:1a:85:b1:92:21:24:16:a2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Nov 4 06:01:11 2025 GMT
Not After : Nov 5 06:01:11 2025 GMT
Subject: CN=64af1b28214a82dcd7d90a3efd53d97ede4416d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1f:97:62:d2:6d:09:d2:34:b9:c7:b0:83:d3:
dd:22:0a:d5:4e:ef:b8:29:4e:d1:d0:be:78:35:c4:
93:db:c9:34:07:f3:a4:4d:06:cf:cd:e3:82:82:fd:
20:9f:e6:eb:43:7a:8b:09:e8:dd:cb:38:6b:46:e2:
c0:85:f8:76:80:25:99:51:ee:d1:96:9e:85:a8:fa:
13:72:7e:a8:74:31:dd:7d:1a:97:b7:27:a9:7a:49:
61:39:08:03:2c:41:89:a5:02:e8:c4:8c:0c:83:06:
a8:d6:a1:0c:1e:b4:ad:2f:f7:42:cb:88:1f:55:56:
91:f8:fa:c7:05:96:43:c0:03:39:6c:30:70:43:89:
63:c6:79:62:e2:ca:92:a0:de:a2:9e:64:9e:2b:b5:
2a:25:73:04:bb:35:5b:e6:bb:cc:f9:30:d9:f1:0b:
b5:9f:7a:76:eb:8a:41:5f:b4:6a:2c:6a:2c:ec:80:
44:76:95:b2:c1:8a:6c:29:12:c8:cf:6d:39:ad:a5:
e0:e4:c2:b6:dd:c3:6b:9c:d0:e1:b2:d7:7a:83:47:
a9:26:ba:93:12:7c:1b:5f:86:40:0c:c8:2a:be:2e:
68:78:4a:bb:ae:36:2a:4d:de:f3:39:25:c7:b6:3d:
4b:95:a9:db:63:fd:4e:c2:60:ad:fb:59:28:c5:a0:
5a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AF:1B:28:21:4A:82:DC:D7:D9:0A:3E:FD:53:D9:7E:DE:44:16:D2
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:dd:ce:77:b8:70:7c:63:68:86:59:10:02:37:a2:85:be:45:
8d:01:d8:57:d2:ad:59:83:3b:a4:4a:13:e9:3f:0d:51:c8:07:
3d:ea:13:fa:96:21:a2:95:fc:30:ef:db:59:e7:05:56:a7:3a:
d3:c6:10:4b:9c:2a:92:3f:a5:7c:ea:67:34:de:92:76:4d:92:
50:a5:b7:fe:1e:1f:85:bb:60:0f:6c:9f:8b:f0:4e:fa:63:4c:
db:4b:c6:a3:c8:93:1d:4c:e4:2c:37:55:fd:9d:ee:82:31:78:
89:b1:69:8a:d2:eb:31:2f:c0:ba:18:46:eb:2b:57:30:fe:41:
9a:2c:5f:b0:b3:68:97:f6:a8:b8:2b:6b:e9:02:c6:7a:ac:50:
fe:6f:97:52:fe:ba:0c:35:fb:b4:2d:46:0d:cd:38:5f:48:45:
73:7f:a0:fa:dd:b6:f1:6f:66:9c:71:b9:9f:ac:ff:48:18:eb:
42:09:3d:21:07:78:25:b6:14:34:61:06:d2:ea:de:08:7f:02:
de:bf:c1:e1:6a:e2:58:2e:eb:6a:c2:1f:30:97:0e:08:66:ec:
e1:c6:f1:c2:f0:89:d2:49:14:d8:6c:72:83:4f:f6:42:30:54:
8a:23:70:84:bf:a8:91:69:63:f4:ea:24:4c:29:c4:aa:60:18:
9d:2a:79:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:22 2025 by rpki-client