Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: RvEYWyrELReVm9UV4My9TN9IMZfKyffxzi2LJMKGdHQ=
Subject key identifier: 71:65:DF:13:2B:44:3B:21:C3:E1:F8:37:23:D4:C5:81:F5:4A:C3:37
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019A53ACB2BF2136AA73DCA17E991E8DDA55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 1700
Signing time: Wed 05 Nov 2025 11:00:18 +0000
Manifest this update: Wed 05 Nov 2025 11:00:18 +0000
Manifest next update: Thu 06 Nov 2025 11:00:18 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: YhWiu2ahToxnFPwWX32Y8u/zs5hRH939nIjFO8EuLLY=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ac:b2:bf:21:36:aa:73:dc:a1:7e:99:1e:8d:da:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Nov 5 11:00:18 2025 GMT
Not After : Nov 6 11:00:18 2025 GMT
Subject: CN=7165df132b443b21c3e1f83723d4c581f54ac337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:97:51:2c:bf:2b:48:09:dd:16:04:4a:d6:2e:
7a:c3:74:3e:37:0a:d2:74:2f:00:cf:5b:ec:55:16:
6f:e1:65:af:e8:b5:0f:81:da:02:e4:4f:a8:0f:6e:
a5:40:ce:5a:58:05:14:37:ea:58:f5:32:a1:63:6e:
4a:6b:85:bf:0a:17:57:f6:8d:d3:43:9e:cb:66:22:
34:e4:31:17:4d:42:bd:00:b6:1b:5e:be:37:5f:3d:
7b:98:c2:f6:71:a4:dc:e1:cf:e0:46:c6:81:8a:d3:
ee:0b:35:7a:b6:73:aa:fd:52:42:62:30:1a:96:a0:
e3:a7:22:05:e6:dc:71:45:30:43:64:8d:5e:e8:73:
1c:d2:c1:22:77:5f:a2:be:77:73:18:d0:8c:39:f8:
5d:2d:76:7f:2c:0b:0b:a0:6a:e5:ce:ee:b7:1e:f1:
4e:2a:5a:7e:b9:d6:03:f1:2b:43:d3:b2:4a:97:1b:
bb:3d:73:c7:80:6c:78:0a:d3:9d:c2:e9:f8:d7:f2:
9d:8f:96:6e:a1:6c:24:f1:a8:9d:ad:a3:71:19:91:
71:70:1b:e8:78:bc:af:31:11:af:d8:24:ce:7b:17:
fa:6b:2c:44:5d:c0:29:12:e4:a5:b1:57:96:0f:54:
e8:15:17:a9:f5:75:29:91:df:77:eb:2c:a5:08:11:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:65:DF:13:2B:44:3B:21:C3:E1:F8:37:23:D4:C5:81:F5:4A:C3:37
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:0a:5f:eb:07:da:32:df:ca:1b:bc:b2:65:51:62:16:b1:b5:
b1:02:ba:75:f7:21:f5:19:b5:ef:5d:6b:a4:2e:35:7c:ca:fb:
b5:44:4b:c6:cc:99:17:1b:09:2a:35:6a:b8:f4:d1:ee:dc:d7:
04:7e:e8:2a:db:d1:e3:69:02:8f:d9:33:51:f3:29:54:5d:4c:
8d:52:14:6d:8d:87:66:0c:46:17:b7:a1:5a:dd:9d:c8:0e:00:
2a:69:48:66:27:c9:ac:ad:c1:9f:8f:43:f9:a9:f7:52:60:4d:
dc:95:7c:d8:e6:1e:ac:e1:70:21:45:d7:8b:9d:9a:fb:d6:dc:
f7:79:18:81:6e:fc:91:64:4a:ce:d5:d4:7a:72:76:77:90:6f:
30:50:b8:94:c0:a6:4b:64:b1:80:64:6d:4e:15:71:39:5b:70:
7d:c6:ed:75:3f:8b:6c:95:4f:4c:db:a2:8b:4b:48:c6:ae:35:
db:62:23:1e:5c:44:11:6c:98:1a:7e:3c:09:a1:4b:b6:37:15:
e4:11:34:31:d6:ba:c8:31:9f:7f:11:9b:f0:a6:37:64:9b:cc:
95:b8:6f:2c:0f:bb:ad:d6:c7:f6:e1:bd:a4:50:fa:5d:d8:60:
ae:91:91:fe:c5:63:06:36:4f:97:f9:00:65:80:3e:d9:ae:a0:
9a:ff:e5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:17:48 2025 by rpki-client