Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: bJtGr5jNQ0g6sg9n/1T+4tAoHxzjTLrAAiRSDqi1nWg=
Subject key identifier: B6:E2:16:28:8C:EC:B6:0D:39:75:F2:AD:14:43:82:45:6D:27:88:35
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019A5150ED1B47F5EFA14A44773FDA556CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 1175
Signing time: Wed 05 Nov 2025 00:00:49 +0000
Manifest this update: Wed 05 Nov 2025 00:00:49 +0000
Manifest next update: Thu 06 Nov 2025 00:00:49 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: LIiWk7BztR60FuZ4u8ksE84oxf1i2Zd973znKEDH/pU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:ed:1b:47:f5:ef:a1:4a:44:77:3f:da:55:6c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Nov 5 00:00:49 2025 GMT
Not After : Nov 6 00:00:49 2025 GMT
Subject: CN=b6e216288cecb60d3975f2ad144382456d278835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:28:32:7a:3d:ef:14:50:be:b6:ad:57:9a:
96:27:07:1b:fa:cb:4b:b2:01:14:24:bd:43:f1:b5:
e8:5f:c1:5c:11:69:bb:d1:4f:5c:4a:4c:2d:32:78:
4c:20:45:7d:3f:a9:d9:b8:dc:e7:1a:72:6f:bf:b8:
91:16:c7:cd:ed:25:7a:a7:46:1a:3b:9a:2b:68:1c:
51:48:7f:b5:c0:ae:35:b1:b7:5d:5a:34:8f:7a:c4:
2a:7a:1e:0e:66:9b:9e:09:83:21:6c:b5:a1:05:39:
37:3d:f3:81:4a:f3:eb:fc:52:e6:91:cd:48:31:b2:
aa:43:8c:ab:d4:db:83:6d:ba:0f:03:48:02:8c:3b:
f6:cf:4a:c5:90:ba:52:5d:79:23:84:6c:0f:c4:46:
25:25:db:ca:ac:56:8e:93:20:20:fe:32:16:f7:ef:
f6:bf:da:35:55:6a:12:ab:42:4a:46:7d:14:23:eb:
6a:9d:d0:b3:85:f7:70:c1:b4:99:15:6e:5e:8e:cb:
dc:c5:19:b3:d2:2a:0a:b2:5f:de:04:85:fd:57:04:
ec:2b:a9:91:d8:1e:02:af:9f:44:6c:c1:14:ce:18:
1e:33:22:4f:0e:76:c1:0b:30:cf:2b:83:b7:3e:86:
b0:ed:5b:49:f5:0a:57:b1:4a:ca:53:7c:04:09:87:
13:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E2:16:28:8C:EC:B6:0D:39:75:F2:AD:14:43:82:45:6D:27:88:35
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:f9:b1:60:9c:59:93:4b:26:99:d5:37:45:f2:93:87:5b:8c:
6d:fa:6c:67:65:96:58:9c:2f:39:9f:06:86:be:39:46:51:df:
64:a1:41:34:e0:0a:c9:78:f2:a3:54:54:4d:85:68:5b:58:9c:
b4:31:73:35:0f:0a:a1:88:05:1d:d5:1c:44:9a:96:c4:6d:2a:
ce:98:57:ea:4c:16:b5:73:fa:08:ad:e8:2c:59:56:21:b3:12:
50:c5:17:bd:32:84:c6:9b:80:41:da:b6:ce:09:2f:d0:79:f3:
cf:6d:c2:c8:9b:bf:4e:29:a7:8a:54:58:f4:43:85:c6:c7:66:
d2:0a:ad:0d:e3:fe:7d:70:5f:10:71:a7:f9:ed:df:7c:6b:30:
91:5b:55:67:5f:5d:74:f4:16:ec:c9:6b:d4:0c:57:ef:55:07:
37:35:b6:28:80:5c:c4:98:4e:b4:9d:ad:c7:df:98:8d:4f:aa:
17:a4:fb:5c:fd:2a:0d:4a:44:53:68:92:3b:5a:11:f2:bc:e7:
e2:27:d4:42:4e:52:3d:3f:ce:b9:c1:17:7a:fd:c8:42:57:0c:
60:1e:4e:e3:b5:42:f6:20:8d:4a:83:69:42:49:3d:8a:60:4b:
58:bb:71:5f:ea:80:88:da:c5:ec:44:28:70:2f:d8:97:43:46:
ac:95:b8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:58:35 2025 by rpki-client