Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: MstCwhQ+83NR2PQsrWKkX3D16nbkccdpdOGT//KcCq4=
Subject key identifier: 3D:E5:9D:5C:55:92:6B:AC:62:0B:49:6C:C7:6D:DF:3E:4E:45:09:0D
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 019A5676C56C1746552AB0825CCDE9086DF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 0387
Signing time: Thu 06 Nov 2025 00:00:15 +0000
Manifest this update: Thu 06 Nov 2025 00:00:15 +0000
Manifest next update: Fri 07 Nov 2025 00:00:15 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: R2fpeByDOKm6pJqJXrLb7Z52viZ8n5FTAxAQlOW3CRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:76:c5:6c:17:46:55:2a:b0:82:5c:cd:e9:08:6d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Nov 6 00:00:15 2025 GMT
Not After : Nov 7 00:00:15 2025 GMT
Subject: CN=3de59d5c55926bac620b496cc76ddf3e4e45090d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:52:00:d2:f8:d4:42:bb:42:a8:65:3f:b7:68:
99:0f:21:39:95:22:72:4d:ab:68:71:98:cd:90:94:
87:43:4e:a6:68:9a:26:51:29:87:4c:8b:86:99:46:
d2:61:bf:de:7f:33:90:6f:50:ce:7f:0f:c5:b4:c6:
78:b3:df:2b:ed:15:49:b6:9f:89:a4:4f:fe:bd:bd:
88:eb:a2:8e:5e:3d:ef:e7:3e:48:bd:5f:30:2c:c2:
cf:c2:9d:ae:e8:cb:cb:bc:f4:40:22:d8:a3:57:8c:
1f:76:9a:b6:85:1a:dd:13:47:c0:5d:86:f7:f3:2a:
c5:72:d5:28:ff:98:ba:70:28:dc:80:35:12:28:3e:
79:c1:1a:3b:a3:18:3f:76:84:71:dc:f3:8d:f7:0e:
11:8f:36:e4:45:d6:a6:91:5a:c8:ef:72:56:0f:18:
7a:b8:88:76:f3:24:8a:48:5b:66:0e:54:c2:3e:fe:
e9:af:7d:d3:80:08:e4:fe:ed:71:7c:89:8d:ce:a6:
30:ef:d5:08:be:68:bc:70:b9:72:15:03:2b:dc:33:
b0:14:2b:93:78:86:80:14:b3:fc:d5:fd:b9:26:e1:
05:27:9d:e4:8c:e5:8d:bb:57:81:b9:23:c7:f5:74:
76:d0:ae:c9:be:c6:24:fb:ba:8d:50:1d:aa:a8:c3:
31:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E5:9D:5C:55:92:6B:AC:62:0B:49:6C:C7:6D:DF:3E:4E:45:09:0D
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ab:8b:b7:18:9c:a7:68:2e:80:29:33:34:46:83:bb:a8:76:
63:d4:71:98:05:5b:d4:77:cf:79:9f:ba:77:d2:f8:14:6c:ea:
b0:a3:62:85:5c:32:20:2d:fe:52:98:84:d0:b9:6d:18:79:fd:
40:32:f7:c8:de:01:2d:f8:8a:3e:55:76:b9:96:69:74:5e:cc:
3a:b8:a6:90:96:f9:5e:b5:10:2f:8f:14:d7:6e:43:5e:47:03:
bf:c5:1a:57:fe:b6:6d:79:31:14:d9:63:d0:47:a5:f0:df:cd:
d9:5d:26:ee:b2:a6:2d:cb:6d:8f:18:32:86:61:c6:8a:63:99:
75:6b:ac:e4:38:ae:65:e0:09:0e:71:60:5d:91:af:25:39:38:
fb:8f:ef:e7:65:e1:60:18:11:06:c3:ca:03:c3:ef:94:c9:e0:
8e:ea:47:86:41:94:ce:7f:da:71:dd:4d:d7:b6:3c:a8:6c:99:
19:98:94:47:50:15:85:90:2b:62:1e:a0:19:28:07:94:37:e3:
26:0d:bd:5b:5a:ee:5b:6f:ee:34:ce:39:7a:01:27:53:04:97:
4f:9d:60:c3:05:40:63:5b:62:20:65:10:81:8a:64:ee:b6:04:
e3:ac:75:85:7e:3f:04:91:83:66:8d:6e:cc:ee:aa:ae:a6:9d:
03:28:3f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 01:51:38 2025 by rpki-client