Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: KJ45dmYhQ2QkFmno4hXQJiLrmwKv5XRMtVGXJgys4xQ=
Subject key identifier: 43:3F:4C:55:4E:7A:11:C7:12:52:F6:58:6A:F6:12:E7:E2:4B:56:F0
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019A559B6FE1F8076A03EE4A5C036D7D845F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 1701
Signing time: Wed 05 Nov 2025 20:00:41 +0000
Manifest this update: Wed 05 Nov 2025 20:00:41 +0000
Manifest next update: Thu 06 Nov 2025 20:00:41 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: K/j5EDwR0PheMKGoc0zyq7+nlHurYgYnG2EnXjOjTMw=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:9b:6f:e1:f8:07:6a:03:ee:4a:5c:03:6d:7d:84:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Nov 5 20:00:41 2025 GMT
Not After : Nov 6 20:00:41 2025 GMT
Subject: CN=433f4c554e7a11c71252f6586af612e7e24b56f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:be:6a:5d:5a:3a:a3:6b:16:6d:2b:d0:c5:09:
62:5d:bc:46:f7:2e:ae:a7:7a:1b:80:0f:01:93:c9:
94:92:25:5a:8c:a5:4c:1b:7f:4f:bc:ea:53:5c:8e:
31:b2:92:f6:17:66:4c:82:a5:e7:e2:3c:12:59:d1:
82:90:b8:8c:e7:01:5b:ef:d3:c8:b1:f2:f7:bc:5f:
33:e8:49:14:24:d1:12:22:35:bd:25:36:95:1e:02:
c5:e4:64:2c:3c:30:60:69:8e:67:ae:d0:18:2f:73:
f9:27:e0:7a:5d:b4:f9:ba:b7:66:ba:50:0f:1f:9f:
2f:51:ae:b7:b3:cd:81:c0:f2:cf:cf:e2:29:57:83:
a0:ab:67:82:ac:39:ae:d2:b7:95:a4:3b:ab:59:1a:
34:c1:3a:03:56:d1:ac:33:c6:b6:b9:c5:5d:c6:5c:
41:0e:1c:ee:bc:3e:cb:cb:0c:ea:4c:96:7e:1c:e7:
b7:0c:62:f8:f5:bc:dd:f6:02:1d:30:7e:77:6f:a4:
ad:b1:39:86:98:85:cf:92:1d:c4:51:2f:07:50:72:
e8:2e:e0:3a:1f:b6:c1:1b:32:b1:20:29:82:ac:b2:
3c:fe:a1:1e:7f:dd:55:83:7d:4c:e6:97:1f:a0:bb:
04:94:81:c6:0c:0c:29:12:a5:ad:e8:fe:ac:62:48:
cd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3F:4C:55:4E:7A:11:C7:12:52:F6:58:6A:F6:12:E7:E2:4B:56:F0
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:90:9e:0d:1e:ab:6d:32:a8:07:52:8a:bb:23:22:93:99:59:
33:80:3d:6a:c0:c0:27:c1:df:47:e4:9d:e0:e5:e4:ec:0b:3b:
30:9e:fc:15:ce:ae:0d:41:a9:e9:d3:55:35:4b:f9:e7:0b:6d:
b4:d0:d2:b4:0d:ab:09:14:e8:a9:8f:9f:4c:78:d8:af:bd:6b:
29:48:83:64:89:71:a7:b7:30:bb:17:56:e4:e9:69:b9:0f:c1:
3e:4d:fb:6e:a7:94:6f:ec:93:95:13:a3:c7:05:5b:d2:f5:e9:
ab:d2:9f:12:08:c7:63:b8:65:5f:6f:8a:99:de:27:c9:54:5d:
b8:b7:66:b9:5e:34:1e:09:5c:54:4d:7d:56:df:7c:96:73:f8:
52:c2:72:b9:f4:74:79:1c:a3:a7:c6:48:44:2a:29:ab:55:4b:
41:8b:8b:96:93:0e:f1:35:89:8c:31:f5:15:70:9b:36:74:81:
98:da:8c:e2:f5:fc:7b:13:55:48:b7:8b:e2:c5:d2:ef:a3:e7:
af:fa:ad:b9:dc:be:5f:bc:d5:ec:93:76:27:ac:30:e2:59:b1:
a6:62:d1:95:cd:7d:4a:cc:ea:8e:d8:3f:55:20:e3:c4:f1:3e:
b7:4c:b7:58:8c:8b:e4:0b:93:ec:2e:f8:32:34:5f:c0:66:05:
15:60:62:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 00:41:41 2025 by rpki-client