Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
File: OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft (raw, json)
Hash identifier: XCHg80KN39U/1xa2poVlx5D3uaqlrjE0GI4Eh5s+eV4=
Subject key identifier: 89:B0:9A:46:A0:D8:E5:8F:43:B9:D8:BB:73:A0:F7:6A:BC:79:80:9E
Authority key identifier: 38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
Certificate issuer: /CN=389755423f832a528c93136110f0fe4b10453582
Certificate serial: 019A54BF28E7CBF91CC982BF6D072A54DA1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
Manifest number: 0DA6
Signing time: Wed 05 Nov 2025 16:00:05 +0000
Manifest this update: Wed 05 Nov 2025 16:00:05 +0000
Manifest next update: Thu 06 Nov 2025 16:00:05 +0000
Files and hashes: 1: Gn-kDrXRDHHv43q56kRDHjj8q1w.roa (hash: Tu0d5Ny8jllovtj2b3OGyqwDSE7dzSUuYk4aE5120L8=)
2: OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl (hash: +KEjLzZgjHH1xuqrkevA7RE/srAwImGoBMAPe2OT5Hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 16:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:28:e7:cb:f9:1c:c9:82:bf:6d:07:2a:54:da:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389755423f832a528c93136110f0fe4b10453582
Validity
Not Before: Nov 5 16:00:05 2025 GMT
Not After : Nov 6 16:00:05 2025 GMT
Subject: CN=89b09a46a0d8e58f43b9d8bb73a0f76abc79809e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:81:87:1c:85:98:04:54:47:fd:af:3c:f9:
2c:b2:0a:79:de:f8:34:4a:f2:a1:aa:14:3e:df:1c:
56:00:33:fa:c4:f0:2e:49:7a:8d:c2:00:2e:45:c5:
e3:5a:57:b7:d4:41:5c:95:d4:ac:67:55:28:56:6c:
1e:ba:fc:ea:0c:b4:2b:db:e5:06:52:25:0e:f1:cd:
a4:e8:8e:d1:db:ac:6a:06:31:f0:0a:11:c1:36:6f:
d3:fb:4d:af:5a:98:0f:47:25:21:83:04:0d:bb:7c:
f8:da:46:db:9a:14:77:e9:49:41:05:ff:34:8c:cb:
a2:6a:13:67:44:73:7d:f7:d0:0f:98:e1:72:de:b0:
9d:c3:a6:9c:31:e5:e0:c1:d4:5f:c8:cb:72:19:d2:
d0:88:bf:4a:e8:ed:6e:fb:2d:6e:31:02:6c:88:e2:
20:f1:47:1a:a6:b8:e7:42:58:d7:7a:9c:44:56:06:
e3:42:51:80:35:55:8b:97:b1:8f:a3:05:78:94:19:
80:40:6e:4d:9b:b7:a9:75:d6:96:35:d6:8a:73:3a:
59:27:83:5a:60:2e:6c:4d:2e:42:d5:41:83:71:ad:
fe:49:1a:f4:45:c9:7f:1f:2a:3f:88:0d:90:e9:e5:
94:01:c4:e8:0f:05:9f:1d:66:e9:aa:62:ac:73:44:
ed:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B0:9A:46:A0:D8:E5:8F:43:B9:D8:BB:73:A0:F7:6A:BC:79:80:9E
X509v3 Authority Key Identifier:
keyid:38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:8d:d8:79:1d:62:61:c2:e3:86:62:d3:7f:09:7b:8d:29:b0:
07:3a:c9:0e:d6:98:0b:ac:af:43:e6:5a:71:10:4d:79:cc:d9:
d7:41:97:d7:aa:2f:83:a7:79:7f:8a:a4:35:22:c9:9b:5e:1d:
d5:81:3d:08:6d:92:59:f8:52:27:f3:bf:f5:da:f2:49:f6:34:
ed:d9:23:be:46:2c:20:18:b1:67:8a:42:64:24:be:06:bf:c0:
8c:b5:63:b3:40:83:c4:ec:e9:91:6c:21:3a:21:63:16:26:47:
21:ac:d4:bc:14:88:18:f2:01:b2:3c:2c:ee:f0:75:f0:b3:6e:
35:15:c9:96:20:7e:fe:8b:24:23:13:43:8e:7a:c3:0a:26:75:
e2:d0:10:d3:ed:86:44:fd:2f:78:5f:0b:75:da:28:1d:87:1c:
3a:2c:8f:07:2b:cd:48:3e:d5:96:18:e7:30:50:30:49:46:ba:
2a:51:88:ce:9d:6d:6b:68:7b:03:e4:83:e0:af:bc:ae:86:38:
55:67:bb:60:c6:39:d9:1c:7b:c0:f0:ad:bd:fe:32:20:1d:a0:
94:23:82:d7:c9:97:46:80:a7:9f:fe:87:89:2f:8f:b3:e1:c0:
f5:ac:0b:c7:37:b8:40:36:19:8a:91:da:5a:7f:2d:06:51:db:
93:b5:82:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 22:31:33 2025 by rpki-client