Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json)
Hash identifier: 2efhqApgDrrtlQ2EQVqV5EmV8DRkQ2GIpwh5yki5NPk=
Subject key identifier: DE:46:03:B8:7B:54:D6:69:91:9D:B7:0F:68:A3:9B:35:F5:92:F5:11
Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Certificate serial: 019A4D73C2EA4770AB293DE0E780B76470A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
Manifest number: 0B8D
Signing time: Tue 04 Nov 2025 06:00:23 +0000
Manifest this update: Tue 04 Nov 2025 06:00:23 +0000
Manifest next update: Wed 05 Nov 2025 06:00:23 +0000
Files and hashes: 1: 3qIWzYrkrCPP_OpSVUhC7_G6DpI.roa (hash: yygvsOn7SmxlaOZM9baJ/n8umdT0wN2hx2GnupmdeSk=)
2: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: udb8owq7q7sSX8HRKvagR7UVfTq3q5y5oWLPrpd7u/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:c2:ea:47:70:ab:29:3d:e0:e7:80:b7:64:70:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Validity
Not Before: Nov 4 06:00:23 2025 GMT
Not After : Nov 5 06:00:23 2025 GMT
Subject: CN=de4603b87b54d669919db70f68a39b35f592f511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:18:35:d5:0b:bc:dc:78:63:1a:4d:13:7b:52:
ba:d6:95:c3:72:be:bd:43:f4:ff:51:23:8e:45:19:
01:10:3c:a8:c5:ff:41:70:e9:32:f8:22:03:b3:d8:
09:de:29:44:3c:6f:dd:f7:f0:a9:99:17:6f:1c:6f:
61:2c:3f:51:d2:cc:76:a1:6a:98:12:82:e4:a1:68:
ce:a8:9c:d0:fb:fe:cf:3b:e5:7f:38:5c:24:6b:79:
3c:72:fa:e9:10:19:6a:40:cc:5d:2b:ae:3e:f9:10:
53:f1:25:eb:d2:18:a5:16:52:87:c8:58:a6:78:85:
ae:af:f9:e5:2b:89:30:10:e9:93:e6:00:65:37:be:
62:cb:1a:cc:58:e9:86:56:37:14:5e:5b:08:32:ce:
dd:bd:71:1f:f8:e9:28:ac:b3:29:48:de:12:aa:1d:
29:7a:4a:48:75:e6:8c:1d:a7:3a:45:fe:b1:2a:bd:
1b:80:41:08:b4:17:0e:17:4d:7f:68:19:a0:72:65:
64:c1:cb:73:bc:47:94:af:e7:ae:d0:28:fa:b2:32:
d5:0b:3e:54:ab:49:14:7f:01:d6:62:2b:7f:e8:1c:
b5:4d:90:29:2f:5a:1d:44:68:77:94:e1:6d:0d:b2:
42:15:19:b0:f2:60:3d:6b:87:00:48:b2:34:da:ff:
dd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:46:03:B8:7B:54:D6:69:91:9D:B7:0F:68:A3:9B:35:F5:92:F5:11
X509v3 Authority Key Identifier:
keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:7e:69:a4:b2:8e:06:38:ea:f9:f8:bc:2e:0c:5e:f2:8b:49:
de:81:f4:6c:50:a4:4a:06:c4:12:44:a5:15:a7:6f:d0:a0:40:
d3:69:c9:02:75:07:a7:08:30:98:80:d5:96:b5:b5:36:0c:3f:
53:89:7d:3c:ef:41:95:cf:f6:ed:26:6f:27:5d:71:1d:bb:1b:
e8:d0:34:ed:0e:5c:99:ea:59:59:65:e2:8f:8e:19:17:7e:e9:
9f:e0:8b:66:da:f0:1e:7a:1a:42:97:db:ec:cc:a1:23:2b:ae:
19:06:1d:81:23:17:af:a7:20:0c:7b:e2:8a:fd:4d:4f:aa:16:
99:3b:05:1e:4b:15:64:8f:5a:0f:25:be:22:71:7a:be:df:b1:
ca:50:8b:30:92:e5:84:6e:e9:37:89:e4:97:b0:74:00:4a:3c:
f6:c5:a4:27:85:84:0b:9a:72:be:10:f2:95:57:b2:cc:53:08:
b8:94:d5:42:23:0b:15:aa:a4:2d:f4:8b:d4:3c:28:ff:56:82:
ca:04:5a:70:67:1e:cf:24:fd:b8:8b:69:ef:4b:53:c1:bf:36:
cc:e6:29:35:06:18:7b:65:3d:58:47:64:c5:a6:e8:97:6d:78:
07:f3:d1:5f:12:4d:ed:cb:ae:2a:8f:3f:18:6a:af:a2:00:0e:
73:db:9a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:46:53 2025 by rpki-client