Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: T0z/OQaa2v7N5LvLbDEH9ycJnB7sQjTYiiOhJ9yJybA=
Subject key identifier: 76:BB:E4:7C:6A:31:B8:32:44:32:B4:BE:AE:4C:7D:24:5A:35:FE:B7
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019A02FE70877A4FBE9F8D5E63C395613177
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 19:00:20 +0000
Manifest this update: Mon 20 Oct 2025 19:00:20 +0000
Manifest next update: Tue 21 Oct 2025 19:00:20 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: M9rPx0LFv9w7SL84nPPngDo30g8lFuo8mkHmhVkdo+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:fe:70:87:7a:4f:be:9f:8d:5e:63:c3:95:61:31:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Oct 20 19:00:20 2025 GMT
Not After : Oct 21 19:00:20 2025 GMT
Subject: CN=76bbe47c6a31b8324432b4beae4c7d245a35feb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:6d:7d:c0:8f:8b:0c:20:6f:03:68:cc:24:
cd:b8:6d:09:01:81:c2:77:5d:41:be:86:d5:9f:a7:
70:85:d3:2f:0b:54:8a:b8:04:e7:ff:2d:c4:e0:99:
a5:98:49:9b:f7:bf:1d:28:3f:ae:4a:41:65:8b:a1:
fa:29:19:b5:18:19:96:a4:0f:e3:a9:72:5a:73:c4:
1f:4d:d0:70:c6:b4:c4:39:a0:98:b4:5f:f6:b2:e5:
e0:4f:ca:e8:c1:d8:58:89:86:9d:e7:07:d4:01:be:
33:c7:88:e1:70:74:29:67:42:e1:da:af:08:55:1b:
3f:79:50:9e:97:b3:46:f0:e8:1a:da:e7:6d:bf:06:
a2:70:d3:4e:dd:6f:7e:8f:82:68:69:23:2e:c8:7c:
47:c3:c9:84:ab:84:dc:3b:8b:f8:0d:67:c5:12:cc:
f5:8a:c1:cf:ce:b6:7c:5a:a9:a9:57:30:2b:12:af:
dd:9c:46:3c:40:89:15:c1:84:18:d1:48:40:a2:f8:
2d:f3:90:3e:3a:8b:9d:c3:ac:0b:f0:b1:26:62:e1:
89:80:c5:18:99:64:24:f6:e8:d2:13:31:f1:03:bd:
30:46:63:a1:e6:8c:95:c7:ae:c2:f1:38:75:5e:f4:
49:c8:4b:f6:f2:03:b3:e9:76:33:6c:52:2e:d4:ed:
09:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BB:E4:7C:6A:31:B8:32:44:32:B4:BE:AE:4C:7D:24:5A:35:FE:B7
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:0b:db:20:06:e7:87:58:bb:33:0c:e4:ba:a4:4a:6c:2b:b7:
f5:e7:f6:76:92:b3:00:df:f0:1b:9a:d8:6c:0c:a2:17:e2:04:
fb:88:53:8e:dd:57:d5:c8:3d:3d:49:d1:fe:e7:17:e5:b0:46:
cf:de:c1:8b:91:c0:ab:14:da:2b:be:f8:e1:5c:ae:4a:e6:d6:
7d:81:fc:3a:32:80:c2:8f:1f:2d:c4:27:34:cd:aa:13:c4:4d:
e7:83:54:e6:9d:bf:34:df:ba:4f:dc:0b:87:cd:eb:25:6d:b8:
5e:c4:12:58:54:b0:46:0f:37:a8:9a:2d:2c:e1:60:1d:11:7d:
f3:4a:22:51:b1:43:e6:41:b2:19:fa:3e:71:38:c9:57:7c:40:
ce:0d:34:af:fa:2c:b0:5d:f9:c9:ae:3d:d4:53:02:52:60:90:
00:f2:a1:c1:0a:80:a4:1e:49:49:ba:1b:d6:a7:14:0c:86:a5:
97:50:e4:4d:d5:3f:29:66:bb:a3:10:7a:d6:77:27:90:49:2a:
d1:6d:37:9c:9a:10:9f:7c:bb:48:70:6f:d3:57:30:e2:bf:d0:
63:08:11:70:03:74:c4:a2:8e:cc:9a:dc:d8:87:2b:38:94:9c:
00:da:42:a2:86:c5:71:97:86:b7:5d:30:0a:12:3d:c3:9f:3c:
97:09:48:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:41:02 2025 by rpki-client