Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: W7+4B6s+J7gDe2GPsWdLrWpXcMMbwjMey4tHipOfZOE=
Subject key identifier: CA:6F:EE:D3:19:4F:89:E0:04:48:5F:76:F4:12:B1:4B:EA:A5:4A:C8
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 0199FB0EDB516FA7E2FC673356942DCA355B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 0854
Signing time: Sun 19 Oct 2025 06:01:18 +0000
Manifest this update: Sun 19 Oct 2025 06:01:18 +0000
Manifest next update: Mon 20 Oct 2025 06:01:18 +0000
Files and hashes: 1: RgkGs56a3wBSH0Yhny04eNJEX3I.roa (hash: 1WUdRWIGnTtyys0okmGp0iV2hIZohfzABaDiV/G7uDo=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: xYJukZIu7NFGh/l/8rFZqYC2lLnl6Kcj5zBtQld9NzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:db:51:6f:a7:e2:fc:67:33:56:94:2d:ca:35:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Oct 19 06:01:18 2025 GMT
Not After : Oct 20 06:01:18 2025 GMT
Subject: CN=ca6feed3194f89e004485f76f412b14beaa54ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a4:a4:ff:68:a9:34:26:68:db:7c:f2:ac:22:
c6:3e:1f:dd:95:74:9f:9c:7e:9f:54:d4:33:5e:18:
6f:98:b9:2d:5e:a5:d2:40:63:80:5c:16:ae:45:95:
4a:d9:55:a1:76:0c:1f:cf:82:f7:d0:b2:cb:ea:94:
ea:bd:1e:9c:09:01:59:1e:42:eb:23:a5:89:1f:0f:
f2:4f:e3:40:c1:26:75:a2:37:16:23:c9:47:e7:29:
fe:7c:0e:19:47:de:4b:0d:4b:18:46:f5:56:56:73:
b9:3a:fc:cb:5a:d9:ef:ec:27:61:c5:70:52:f8:d7:
df:ea:9f:5d:9e:93:67:38:f7:5b:13:6b:ae:62:fc:
43:8c:c2:e0:54:ed:d9:8b:44:b7:e7:49:30:2b:a9:
26:08:c3:ff:6d:d1:2e:47:97:1f:b7:4c:4e:24:26:
b7:78:22:8e:8e:26:1c:77:1b:cc:7f:02:48:ef:e7:
0b:34:f4:94:8d:57:18:9e:54:45:6f:b6:16:da:f5:
ab:5e:76:23:95:f6:7a:00:6c:8e:d1:7a:90:1e:21:
62:88:fc:1f:ae:b4:21:2f:1f:c1:6f:34:a7:2c:94:
1c:e6:83:ae:1c:1a:16:38:9d:9c:e1:08:83:7a:c8:
ee:1e:a1:f3:45:d1:f0:2d:ef:ba:68:2b:c7:32:61:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6F:EE:D3:19:4F:89:E0:04:48:5F:76:F4:12:B1:4B:EA:A5:4A:C8
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:8a:7b:c2:ca:8d:18:9f:95:63:bb:2a:11:25:64:e5:a1:68:
0d:8c:69:f2:e5:50:8d:e7:bf:fd:87:92:29:fd:2e:58:11:06:
f0:ef:a8:9a:b5:f8:0d:1e:7a:18:55:45:8d:d9:cd:09:6a:93:
c5:4e:b9:27:00:ef:e4:d7:c0:fd:81:80:07:14:cf:1b:7a:b6:
ce:09:c4:d5:6d:07:74:19:fb:9f:9d:7e:ab:d6:e4:61:3f:c4:
8c:5a:4e:90:b5:f7:2d:21:77:b9:b9:90:5e:4d:65:cc:26:ab:
35:a5:58:bd:20:74:2e:7e:35:9a:37:82:88:88:f1:3d:ce:35:
a4:0a:31:f8:d6:c3:5f:97:0c:6a:82:95:c7:27:ea:0b:9b:40:
d0:91:54:70:54:de:79:44:d6:be:39:9d:89:55:c1:ad:c9:3b:
7d:a0:a4:88:87:32:9a:15:f9:2a:ca:94:05:ea:12:75:65:91:
23:c4:21:e6:1e:6b:66:3d:2f:a6:4d:b3:df:6e:45:ee:14:64:
3a:84:7c:66:b5:59:a6:f4:4a:1f:fe:27:24:16:e0:dd:14:f2:
04:c7:fe:41:36:a4:bd:81:56:2e:22:1e:54:0e:d7:c6:65:35:
e2:40:75:d4:a6:77:e9:83:8c:71:e5:61:5e:66:b5:f7:35:da:
9d:ad:a5:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7DttRb6fi/GczVpQtyjVbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZTMxMjhmZDA5ZGMxOGU2NmVlNDIxMmE3ZTY0ZjNlNGU3
NGE4MTQwHhcNMjUxMDE5MDYwMTE4WhcNMjUxMDIwMDYwMTE4WjAzMTEwLwYDVQQD
EyhjYTZmZWVkMzE5NGY4OWUwMDQ0ODVmNzZmNDEyYjE0YmVhYTU0YWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6Sk/2ipNCZo23zyrCLGPh/dlXSf
nH6fVNQzXhhvmLktXqXSQGOAXBauRZVK2VWhdgwfz4L30LLL6pTqvR6cCQFZHkLr
I6WJHw/yT+NAwSZ1ojcWI8lH5yn+fA4ZR95LDUsYRvVWVnO5OvzLWtnv7CdhxXBS
+Nff6p9dnpNnOPdbE2uuYvxDjMLgVO3Zi0S350kwK6kmCMP/bdEuR5cft0xOJCa3
eCKOjiYcdxvMfwJI7+cLNPSUjVcYnlRFb7YW2vWrXnYjlfZ6AGyO0XqQHiFiiPwf
rrQhLx/BbzSnLJQc5oOuHBoWOJ2c4QiDesjuHqHzRdHwLe+6aCvHMmEHAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpv7tMZT4ngBEhfdvQSsUvqpUrIMB8GA1UdIwQY
MBaAFKDjEo/QncGOZu5CEqfmTz5OdKgUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjIt
OGZkNWNhYmE1NGU5LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjItOGZkNWNhYmE1NGU5
LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkIp7wsqN
GJ+VY7sqESVk5aFoDYxp8uVQjee//YeSKf0uWBEG8O+omrX4DR56GFVFjdnNCWqT
xU65JwDv5NfA/YGABxTPG3q2zgnE1W0HdBn7n51+q9bkYT/EjFpOkLX3LSF3ubmQ
Xk1lzCarNaVYvSB0Ln41mjeCiIjxPc41pAox+NbDX5cMaoKVxyfqC5tA0JFUcFTe
eUTWvjmdiVXBrck7faCkiIcymhX5KsqUBeoSdWWRI8Qh5h5rZj0vpk2z325F7hRk
OoR8ZrVZpvRKH/4nJBbg3RTyBMf+QTakvYFWLiIeVA7XxmU14kB11KZ36YOMceVh
Xma19zXana2lCg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:14 2025 by rpki-client