Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: 4utaW9TtCN+qBhPXOXyxCYVLGfr+aG8KTVZcYbJS33U=
Subject key identifier: E5:06:56:5B:FA:FE:25:5D:44:0B:EC:D7:40:24:37:CF:1E:B2:6B:A2
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019A4DE1C1BF539526646D1FBC7A24F4D619
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1710
Signing time: Tue 04 Nov 2025 08:00:32 +0000
Manifest this update: Tue 04 Nov 2025 08:00:32 +0000
Manifest next update: Wed 05 Nov 2025 08:00:32 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: IP33xeMjWac6XCi/07CV5q5WdqifIN+xcBMvFtx/f5w=)
3: rtetBP97DUA2lCqt3_qex3wy1cw.roa (hash: wIFAeHjq7EkgeOiBpciajSkZ9QKt8Kq/92+zr7+OjbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:c1:bf:53:95:26:64:6d:1f:bc:7a:24:f4:d6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Nov 4 08:00:32 2025 GMT
Not After : Nov 5 08:00:32 2025 GMT
Subject: CN=e506565bfafe255d440becd7402437cf1eb26ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:a9:ec:e7:16:6a:28:c5:4d:c6:a3:4b:cb:
c7:d8:9e:f1:5b:2f:6c:43:ca:ec:dd:33:b8:20:3a:
60:5e:52:d3:77:19:d8:b9:b0:8f:5a:eb:61:2d:e5:
dc:be:04:b4:5d:4e:40:f7:6d:0b:07:94:29:60:85:
07:a8:f1:34:2e:dc:ae:7b:8c:d7:71:a7:22:3b:99:
2f:35:b9:3b:9c:b6:eb:4f:12:b4:77:70:80:4f:11:
d9:e6:0d:89:66:82:3b:ea:e3:c8:c1:02:67:40:9a:
36:a5:55:bb:88:81:9f:db:74:4e:af:59:bb:8e:dc:
7f:1b:a0:2d:86:22:19:4a:aa:3f:08:85:8a:31:26:
74:32:86:36:ca:f2:1a:ec:df:a0:05:2e:ce:b2:d9:
07:e0:32:d7:06:b7:61:40:60:70:54:e0:4c:42:12:
72:dd:e6:a5:06:6f:e6:50:06:16:31:00:70:1b:73:
4d:c6:bd:78:f9:3c:97:5b:a9:7e:ce:cb:8c:31:ee:
07:fd:c0:4d:c2:85:a3:c6:25:d5:dd:c4:f4:3d:01:
13:27:ee:3e:f2:58:a4:ee:c7:7d:0b:2c:8c:e1:44:
71:e4:57:32:6e:b8:df:52:e7:3b:be:5b:92:f7:e5:
a6:49:c5:ca:ed:56:0a:d2:6a:93:17:28:29:f1:58:
98:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:06:56:5B:FA:FE:25:5D:44:0B:EC:D7:40:24:37:CF:1E:B2:6B:A2
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:f7:ae:69:6e:ec:8b:d2:b3:46:a4:64:9a:2b:ab:b7:24:ab:
30:ca:28:02:9c:80:8a:a0:74:8c:d0:f3:e4:4a:29:ae:52:a1:
c9:10:db:76:c7:05:b1:ab:49:a1:b8:fc:6b:1d:cc:b2:bd:31:
a3:b4:17:98:18:dd:29:47:32:01:bd:b3:d9:7c:91:58:11:79:
f1:f3:e5:24:81:e8:77:f1:ed:b3:0a:da:ab:8f:1d:37:95:8d:
17:57:8c:8c:41:2b:3a:26:31:bf:21:b2:54:2d:ec:a5:e5:64:
d6:ff:b7:60:71:75:a7:52:3f:48:8a:1e:4d:7c:72:72:5d:8d:
82:23:fb:e2:a6:e1:c4:96:1a:53:30:2d:22:92:f6:78:f6:98:
f4:cc:1c:0c:b1:af:ac:97:bd:05:d5:4f:80:83:b5:2e:b6:2d:
dd:59:a8:06:c8:6e:98:fd:ce:18:da:f7:62:1b:e9:d5:5e:69:
5e:1c:52:f1:bd:a0:85:a5:d0:cc:a7:49:65:fd:bf:54:89:50:
d4:8d:cf:ed:5c:9d:84:0c:9b:0b:50:eb:f2:ca:2b:94:6e:03:
e5:43:60:b5:93:28:13:3d:eb:99:92:31:e6:9b:28:fc:be:eb:
42:62:ef:ad:4b:c5:dc:ba:9a:85:17:46:f0:6d:a8:bb:c1:bd:
26:70:85:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4cG/U5UmZG0fvHok9NYZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjUxMTA0MDgwMDMyWhcNMjUxMTA1MDgwMDMyWjAzMTEwLwYDVQQD
EyhlNTA2NTY1YmZhZmUyNTVkNDQwYmVjZDc0MDI0MzdjZjFlYjI2YmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj6p7OcWaijFTcajS8vH2J7xWy9s
Q8rs3TO4IDpgXlLTdxnYubCPWuthLeXcvgS0XU5A920LB5QpYIUHqPE0Ltyue4zX
caciO5kvNbk7nLbrTxK0d3CATxHZ5g2JZoI76uPIwQJnQJo2pVW7iIGf23ROr1m7
jtx/G6AthiIZSqo/CIWKMSZ0MoY2yvIa7N+gBS7OstkH4DLXBrdhQGBwVOBMQhJy
3ealBm/mUAYWMQBwG3NNxr14+TyXW6l+zsuMMe4H/cBNwoWjxiXV3cT0PQETJ+4+
8lik7sd9CyyM4URx5FcybrjfUuc7vluS9+WmScXK7VYK0mqTFygp8ViYHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOUGVlv6/iVdRAvs10AkN88esmuiMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1/euaW7s
i9KzRqRkmiurtySrMMooApyAiqB0jNDz5EoprlKhyRDbdscFsatJobj8ax3Msr0x
o7QXmBjdKUcyAb2z2XyRWBF58fPlJIHod/Htswraq48dN5WNF1eMjEErOiYxvyGy
VC3speVk1v+3YHF1p1I/SIoeTXxycl2NgiP74qbhxJYaUzAtIpL2ePaY9MwcDLGv
rJe9BdVPgIO1LrYt3VmoBshumP3OGNr3Yhvp1V5pXhxS8b2ghaXQzKdJZf2/VIlQ
1I3P7VydhAybC1Dr8sorlG4D5UNgtZMoEz3rmZIx5pso/L7rQmLvrUvF3LqahRdG
8G2ou8G9JnCFcg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:32 2025 by rpki-client