Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.mft
File: O-lZPSkOAlAninOzE1UDKTJ71Yk.mft (raw, json)
Hash identifier: n5aG0knouKLCinBR6VRvWie92jIJ/yWDbZ9ueHpu1Hg=
Subject key identifier: 8E:34:4F:DF:54:C7:80:30:AF:CE:FE:62:66:5A:C0:D6:DD:44:EC:18
Authority key identifier: 3B:E9:59:3D:29:0E:02:50:27:8A:73:B3:13:55:03:29:32:7B:D5:89
Certificate issuer: /CN=3be9593d290e0250278a73b313550329327bd589
Certificate serial: 019A50E2F1EFF5E5FA0826EF1C8C534CD9A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-lZPSkOAlAninOzE1UDKTJ71Yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.mft
Manifest number: 170F
Signing time: Tue 04 Nov 2025 22:00:41 +0000
Manifest this update: Tue 04 Nov 2025 22:00:41 +0000
Manifest next update: Wed 05 Nov 2025 22:00:41 +0000
Files and hashes: 1: O-lZPSkOAlAninOzE1UDKTJ71Yk.crl (hash: xT+uA3AU9vZpssWsdycCCeBZnxeFIzLhi4/IzxR4nH8=)
2: bxRO7kfiXfIBzrwx6__-lx4GD-Q.roa (hash: Yl6am4vWUQXhAPFuVgrQF79QPPtS7MoD02zbAbTLBHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-lZPSkOAlAninOzE1UDKTJ71Yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:f1:ef:f5:e5:fa:08:26:ef:1c:8c:53:4c:d9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3be9593d290e0250278a73b313550329327bd589
Validity
Not Before: Nov 4 22:00:41 2025 GMT
Not After : Nov 5 22:00:41 2025 GMT
Subject: CN=8e344fdf54c78030afcefe62665ac0d6dd44ec18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:29:34:d6:dd:1f:78:ec:2c:7f:18:eb:b9:
29:27:78:ec:22:7a:ce:f5:97:8b:13:f8:62:a5:45:
c1:fe:09:ab:e2:a4:a8:73:62:41:d0:14:3f:cc:18:
e5:e1:82:9e:17:8a:2c:89:d7:7f:84:1b:8d:00:84:
23:12:cc:dc:cf:a5:dc:ea:44:b6:53:d1:8c:57:a3:
84:73:1e:61:66:a8:1d:2e:3a:ce:fe:d7:08:72:94:
ed:f7:dc:cf:46:2c:9e:ef:ed:b3:c4:c6:e2:c7:cc:
4d:17:67:af:27:ea:3f:d3:6e:9e:89:d5:8e:66:cd:
63:43:26:d2:ae:c5:8f:bd:8b:6d:cd:9d:d6:8c:1a:
90:47:35:aa:69:c8:dd:82:ba:91:e5:0b:2b:6f:ee:
c7:b2:6d:a1:f5:82:33:16:e4:47:2c:f7:a6:4f:af:
f5:bb:fb:be:16:0a:73:7e:90:d1:a0:14:97:53:a6:
56:61:ce:ab:44:7e:e9:3e:49:70:b1:ea:67:f7:35:
bd:ee:a1:32:16:b4:56:bf:c4:f7:f6:47:16:55:51:
9e:f7:8c:80:60:dd:d1:a9:32:39:15:65:2b:7f:79:
c8:c0:91:4e:c8:09:01:54:af:68:14:b4:8c:c5:0c:
ba:84:b5:e5:5c:03:7f:5a:88:7f:3c:6e:1b:0b:7e:
e9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:34:4F:DF:54:C7:80:30:AF:CE:FE:62:66:5A:C0:D6:DD:44:EC:18
X509v3 Authority Key Identifier:
keyid:3B:E9:59:3D:29:0E:02:50:27:8A:73:B3:13:55:03:29:32:7B:D5:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-lZPSkOAlAninOzE1UDKTJ71Yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/744a6e-f3a2-40dd-a02e-4eab060f15fa/1/O-lZPSkOAlAninOzE1UDKTJ71Yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:41:50:f2:3f:91:6e:82:19:8b:b1:3d:9b:c9:69:dd:b3:67:
da:10:8e:a1:a9:36:82:5a:a0:e5:7c:9a:88:f1:32:ca:7b:2d:
71:7c:99:93:03:7b:aa:19:de:c4:dc:74:12:6d:99:d5:25:32:
66:04:67:91:13:19:1e:0c:dc:bd:5e:c2:c1:40:7f:4b:98:8e:
a6:80:9a:8e:79:04:a9:62:a5:a8:b7:19:47:83:f1:98:40:ae:
0e:ab:df:b3:d2:a9:e9:c7:15:21:6b:a0:e4:db:a7:53:ed:97:
8f:89:64:4c:ca:ff:66:94:5a:48:4d:9d:c2:f1:39:59:5e:35:
32:7a:1d:92:b6:19:79:a7:0b:b8:d6:16:b9:4d:e0:97:e0:69:
7f:ff:29:6e:4b:1a:a8:9b:21:58:2e:86:31:5b:72:cc:90:a9:
f6:9c:65:76:5b:9d:2c:32:e2:11:07:59:96:f1:7a:50:77:e9:
c7:37:54:51:89:ef:63:16:6b:f3:c3:4b:44:85:e7:69:6d:a4:
14:19:70:ac:13:2e:42:12:00:ae:e2:cb:ff:80:ac:03:01:72:
20:65:7e:59:5f:d4:90:7e:fa:d1:f1:1a:b6:2f:ce:83:d1:6b:
ca:0d:a4:a0:dd:af:96:5a:13:08:94:13:b0:b9:01:e9:6f:ab:
57:df:25:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:20:06 2025 by rpki-client