Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
File: osiREA5QD7XGTzDxYD_lRdq0kBY.mft (raw, json)
Hash identifier: lVj0ka0T7jTcsTyj2RJ8ecu5viSnguf+vAKBFHUsRxE=
Subject key identifier: 97:B4:9E:70:36:51:66:F4:22:38:FF:34:41:45:44:A6:02:6A:0C:6C
Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016
Certificate serial: 0199FDD94C661805B6BD5F9EF44BCFE54073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
Manifest number: 0AD5
Signing time: Sun 19 Oct 2025 19:01:40 +0000
Manifest this update: Sun 19 Oct 2025 19:01:40 +0000
Manifest next update: Mon 20 Oct 2025 19:01:40 +0000
Files and hashes: 1: 2r58NpxvTCdcnNGrjt0v-zkeUtY.roa (hash: TkXA680kjgu+5bXWMHrgD9kPPHcPEiisIsJWWTeRFzw=)
2: osiREA5QD7XGTzDxYD_lRdq0kBY.crl (hash: fIrvAKq+U2GD52WGhKWuByvQfkzkDNnYpD8PwkBiBW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:4c:66:18:05:b6:bd:5f:9e:f4:4b:cf:e5:40:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016
Validity
Not Before: Oct 19 19:01:40 2025 GMT
Not After : Oct 20 19:01:40 2025 GMT
Subject: CN=97b49e70365166f42238ff34414544a6026a0c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:41:3b:7c:f5:af:13:9d:6b:34:7d:3d:06:ea:
5b:fe:00:67:84:d1:d2:97:3a:ba:3e:c4:b4:52:9f:
17:d9:ae:a5:6a:3f:2e:a2:99:38:f2:c3:13:5c:ca:
73:eb:33:88:a1:75:da:c1:a2:5c:16:f0:46:3a:35:
6e:4c:c9:ba:b8:3f:ec:ee:0c:5e:ac:df:37:f6:70:
03:af:b7:0a:1f:c1:47:fb:8a:ec:92:bb:21:3b:ec:
66:c0:e2:d3:ad:4d:7b:4d:05:74:0b:39:bb:e7:33:
56:48:9b:75:b8:aa:09:25:97:19:b1:e0:d8:8d:d2:
b0:cd:ff:37:8a:b3:c9:be:3e:c4:5a:ff:d2:fb:fa:
53:1b:d5:19:a4:21:05:da:68:74:21:14:0f:29:72:
e4:87:77:f3:d1:d0:db:48:63:f2:6b:25:4e:df:41:
6b:66:53:cb:66:23:7e:ee:38:7f:fa:72:58:98:d8:
06:cc:89:85:d1:7d:1a:34:5d:33:48:4c:70:aa:ee:
05:9c:89:fc:9d:a0:5b:3b:20:fe:e3:b6:29:b3:cf:
46:bb:6f:7c:31:93:1a:6d:75:02:8d:62:5d:f0:57:
59:0f:e4:8e:b5:7d:b9:7c:c2:73:42:1b:52:bd:8d:
02:cd:45:d7:99:d5:df:19:ed:ee:c6:91:51:77:c7:
7d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B4:9E:70:36:51:66:F4:22:38:FF:34:41:45:44:A6:02:6A:0C:6C
X509v3 Authority Key Identifier:
keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:52:f4:7f:32:e1:d6:a2:84:a4:c4:4f:5f:ef:01:50:63:e0:
96:dd:a1:13:4e:bc:95:8a:70:15:57:62:e4:79:b9:b3:92:38:
98:73:d7:0c:6d:22:e7:93:5e:60:ee:4a:9d:af:ee:71:b3:02:
71:60:c8:66:ce:cc:50:ea:97:ac:49:a5:97:b6:53:6d:5e:37:
7e:a4:24:9f:13:a1:e7:18:55:68:a3:78:b5:d9:e0:7e:51:11:
82:c3:ea:74:fb:02:59:b0:7e:8e:ae:68:ac:73:4e:ab:c1:8f:
a8:62:54:15:f3:a0:3a:ce:ff:3d:78:c1:4b:4e:36:f2:a4:f4:
95:ac:ad:2b:a5:e6:ea:53:a4:05:1b:fd:cd:ab:75:bd:32:41:
67:37:06:62:33:bd:0e:24:d8:bd:30:e4:e9:4a:b9:43:02:af:
4b:c9:df:ef:3a:f4:b1:02:99:e0:4d:23:69:5c:af:b9:6d:60:
2e:07:13:79:24:55:9e:09:5a:25:28:f0:8e:73:51:56:d9:46:
c6:20:78:0a:3d:ff:8c:4a:3d:40:47:01:50:9b:38:2b:1a:cc:
f0:a8:c8:83:8d:72:00:e2:1f:9a:c2:ec:99:63:ff:54:c7:30:
b3:6e:a7:df:f7:e7:1e:be:46:b5:85:99:bb:4d:09:59:07:61:
45:08:ac:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:37 2025 by rpki-client