Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
File: oNxs0zNOAmkDIjc8O1BuQYT67H8.mft (raw, json)
Hash identifier: 4q9JOUgL7d43KA9QORBWuUcWK32ZOr8z/rSspv6pGpk=
Subject key identifier: F7:31:A2:A5:ED:2E:1C:EE:3C:45:7A:09:4F:EC:3F:10:E4:7F:AA:9D
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 019A51BE37544FD12BB06A4FE3EE2F4C24B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
Manifest number: 053B
Signing time: Wed 05 Nov 2025 02:00:11 +0000
Manifest this update: Wed 05 Nov 2025 02:00:11 +0000
Manifest next update: Thu 06 Nov 2025 02:00:11 +0000
Files and hashes: 1: L2QPsEXXxjypDuteGOkuNir3lUA.roa (hash: mcJaTh3VxTTNDuoHtoju+OCGdo4jk9ztR2/hlQRPaNY=)
2: oNxs0zNOAmkDIjc8O1BuQYT67H8.crl (hash: x+PwCUayfDmZcvF/IGct7PYu+uinmeKWepDs1BcWKdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:37:54:4f:d1:2b:b0:6a:4f:e3:ee:2f:4c:24:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Nov 5 02:00:11 2025 GMT
Not After : Nov 6 02:00:11 2025 GMT
Subject: CN=f731a2a5ed2e1cee3c457a094fec3f10e47faa9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:d6:9c:bf:3e:08:cf:07:a6:ca:bb:3c:21:
0c:85:02:4f:0d:a8:68:26:ae:47:f9:3c:d0:be:1c:
5b:85:ec:9c:66:cc:9e:df:09:94:59:48:40:98:d6:
e0:2e:c4:d4:11:d8:fe:b7:40:95:d2:17:20:b6:6f:
09:7e:8e:93:3c:28:19:78:af:d5:85:86:3b:ff:34:
97:dd:3d:31:e8:f6:0d:ed:1e:8e:12:48:6e:d9:f1:
ac:f4:3e:45:bb:b1:09:c7:e7:57:bd:67:35:8d:dc:
76:f0:5e:c0:56:34:c0:bc:56:d6:57:a4:67:40:27:
d4:1a:2f:11:7c:21:83:ff:41:7f:e7:27:94:7b:b4:
23:fa:19:15:7d:c6:5d:a5:58:93:b8:bc:f3:5e:a3:
a7:4c:22:b7:cc:d8:71:b6:75:26:6a:e1:2e:0e:aa:
41:4c:d7:5b:f9:9c:5b:ac:6d:ad:13:b9:22:7c:22:
40:f8:56:33:12:66:c0:d7:e2:5a:89:65:b8:a3:22:
cf:45:9e:49:f4:b1:f0:a4:2c:b3:b8:65:4b:13:49:
bc:b4:b8:10:8b:c7:46:ca:80:a0:1c:7c:58:a0:4d:
ee:3d:d6:ef:bb:97:fc:8f:e3:bf:86:8a:03:b4:44:
dc:da:54:3c:03:75:7f:09:67:9e:ec:57:de:7d:18:
19:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:31:A2:A5:ED:2E:1C:EE:3C:45:7A:09:4F:EC:3F:10:E4:7F:AA:9D
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a3:b3:e2:3e:80:a8:74:d9:69:e9:40:55:18:61:7c:74:3f:
b7:15:a1:fe:50:fe:4f:d5:e4:62:5c:9e:db:e0:21:f8:0e:6a:
92:58:85:d9:03:05:ae:b2:20:80:73:94:30:ed:af:82:6c:bd:
1e:0f:df:8f:4b:62:fb:69:5a:08:69:36:ba:d9:ef:a6:c9:94:
28:17:4a:d7:9f:07:a4:08:ac:5e:48:2b:84:fa:49:ea:a0:06:
f0:e7:b6:de:3c:e8:2c:13:58:08:e5:e4:0e:73:e7:30:cb:83:
28:4f:88:cd:d4:b0:3b:f3:32:00:f8:33:97:cb:0e:4f:a4:c4:
24:19:6e:48:5b:f0:e8:d3:45:c1:eb:b9:32:fb:7f:45:d7:4a:
fc:f8:b1:37:ae:cc:f7:fd:95:91:30:4d:39:d8:0c:b9:e9:48:
04:09:6f:e0:3c:e3:0d:c5:a6:96:54:c9:19:2a:20:b7:25:a7:
bf:8a:5f:73:95:b7:c9:92:00:b4:24:85:a2:c7:81:7e:1b:dd:
02:99:b1:4e:3b:bf:19:c7:42:46:5d:61:17:2b:ab:74:3f:78:
39:27:0f:b0:ed:11:87:b9:b7:63:80:ed:c6:ca:6a:37:a4:eb:
79:2e:8f:1e:68:63:b9:62:30:06:53:30:b9:a9:b0:55:f1:21:
e5:c7:de:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:09:21 2025 by rpki-client