Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: FQGOhCyP9ngdmPfBZe98kioZoY1VH7fqCkRRccK00ak=
Subject key identifier: EF:CE:F6:B2:26:D7:33:6E:FF:92:D2:73:C3:5A:62:A7:0E:D8:99:9A
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 0199FC21CC36839AF388F9985BB5405686C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 063D
Signing time: Sun 19 Oct 2025 11:01:37 +0000
Manifest this update: Sun 19 Oct 2025 11:01:37 +0000
Manifest next update: Mon 20 Oct 2025 11:01:37 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: TUh3/7TcfvoJeuQpgC50rpEe2W6nyYZUgrvfz3tL30c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:cc:36:83:9a:f3:88:f9:98:5b:b5:40:56:86:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Oct 19 11:01:37 2025 GMT
Not After : Oct 20 11:01:37 2025 GMT
Subject: CN=efcef6b226d7336eff92d273c35a62a70ed8999a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2f:df:92:6f:c5:2e:86:3c:b2:11:97:17:7b:
7a:d0:7b:77:f6:b6:43:7d:3a:71:c8:60:74:e8:fd:
95:10:65:e2:ff:23:6f:25:0c:be:c9:34:c7:d9:9f:
8f:98:e3:33:e4:38:3e:b3:92:57:26:0d:18:9b:57:
cd:16:91:b3:38:fe:18:09:12:d5:08:62:15:22:d1:
ad:23:ed:e4:2a:b7:a0:79:4b:e2:bb:29:d5:2b:77:
d7:18:b0:f2:a5:29:f3:8a:1d:03:30:92:b3:f6:b5:
a0:a4:39:d7:89:a6:18:f3:d0:f8:9a:20:e9:83:02:
54:6a:ef:b3:b4:61:9d:20:f4:a9:0c:76:85:5e:69:
b6:12:3c:6f:3b:2f:df:cc:e5:48:67:5c:6a:ec:84:
a0:59:b7:91:79:57:b9:23:91:b0:5a:ab:93:ec:6e:
1d:d7:77:47:e8:0c:24:c2:11:22:bc:8c:bf:b6:ac:
96:60:e1:81:61:59:a0:73:53:8d:da:53:e7:da:e9:
ea:b1:94:a2:03:3c:c7:8c:0b:0b:41:14:1d:ee:e2:
30:a6:be:59:0e:a7:43:dd:eb:79:81:01:b1:a4:35:
af:6a:3b:c4:88:e1:e4:ca:ca:26:b0:8e:01:05:f6:
ec:07:fb:6e:10:61:13:6b:74:dc:d5:91:fa:50:5a:
c6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CE:F6:B2:26:D7:33:6E:FF:92:D2:73:C3:5A:62:A7:0E:D8:99:9A
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:d8:2d:77:d3:01:0b:a1:e3:80:ec:a3:c1:ac:cc:6e:96:77:
e4:8c:3e:68:ad:c3:2d:53:5a:78:26:0d:8b:68:70:f3:17:a0:
e0:12:1e:3f:b3:3c:dc:51:d9:ae:40:06:37:2b:2b:7d:d4:3d:
92:9f:08:48:3d:2b:9b:be:62:c8:d9:a4:02:9e:9c:15:fd:6b:
83:ae:6c:38:cd:c4:bc:9f:90:3b:92:68:e6:15:e2:9a:d1:87:
3f:5c:0e:fa:56:7f:8c:fd:79:2e:8c:b7:ae:d4:20:45:a8:9b:
03:dc:70:ad:86:9d:55:c9:8e:7f:15:ab:c2:df:a1:0a:d8:a3:
d7:cf:9d:23:83:d4:3d:7a:fb:f6:fa:09:ce:29:89:ae:71:69:
5f:6d:4c:2e:2e:b0:8f:05:a3:eb:eb:5e:25:0a:10:9d:8e:f2:
9b:79:a2:e0:c8:fb:f2:36:c8:22:95:bb:7d:c5:7a:a0:62:8c:
1b:d9:8d:8d:33:2b:7b:19:44:e3:1d:a3:3b:64:b7:f9:f3:73:
7b:5a:4f:d0:f8:ff:1a:05:5a:03:cd:cd:9e:49:45:a7:bb:1c:
23:16:f6:8a:de:b7:a6:d2:8b:c6:f7:34:f6:7a:b6:77:3e:d3:
84:86:a1:7a:30:61:6a:98:72:60:a5:5d:23:00:05:16:66:ba:
45:49:85:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:38 2025 by rpki-client