Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json)
Hash identifier: 02DoeyFM4Gz4AaW0iil6/eR5gEjO0RhrEuFCxRtWQCQ=
Subject key identifier: 60:F4:25:DB:D0:77:E9:D9:3C:74:EF:8D:10:D0:09:8F:EE:EC:DA:E0
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 0199FD6B56E21AE449D1183E545673B2F2B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
Manifest number: 105F
Signing time: Sun 19 Oct 2025 17:01:33 +0000
Manifest this update: Sun 19 Oct 2025 17:01:33 +0000
Manifest next update: Mon 20 Oct 2025 17:01:33 +0000
Files and hashes: 1: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: sY3AmyBM/EpwmWG+jfg/Jkhd6gnG10vAwYh3nog/jno=)
2: X2ZWwlq5JgdZCBhrE-skZo9Zodk.roa (hash: jm4EeR/8LyEqdFtytjbhKQG8mWbwHJBMpiLCK8D6HPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 17:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:56:e2:1a:e4:49:d1:18:3e:54:56:73:b2:f2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Oct 19 17:01:33 2025 GMT
Not After : Oct 20 17:01:33 2025 GMT
Subject: CN=60f425dbd077e9d93c74ef8d10d0098feeecdae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:bd:7d:c4:b8:7c:3e:1e:c6:1c:bd:2e:81:
d4:d0:07:f8:2c:26:36:32:55:05:cf:37:ec:6e:43:
46:41:a8:f2:86:c9:7c:80:bd:cc:d4:61:d5:48:3f:
46:0c:99:d6:b1:d4:2b:f5:34:80:3a:93:1e:89:d0:
f7:2d:66:3e:43:c4:49:bc:ed:42:86:71:f8:c6:44:
6d:39:94:e7:4d:bb:d5:b7:b2:60:d8:d1:d4:3e:1e:
fb:ad:86:21:28:c9:94:ef:4c:6e:f0:a8:94:98:cb:
c3:bd:d3:71:de:e5:2b:e4:74:24:13:f6:fd:50:10:
92:da:13:17:82:c8:0d:76:0c:6a:fa:e4:8f:39:20:
40:64:f9:9b:8a:d0:00:c1:53:df:21:54:78:3c:af:
be:29:c6:a3:b0:90:93:69:76:33:42:82:a4:12:58:
63:23:ed:7e:6e:a1:f0:76:44:4f:ff:9a:90:ac:18:
25:fd:3f:81:8f:2b:69:ee:57:c0:5b:57:95:57:86:
2c:84:d6:1a:9a:25:33:0f:20:31:83:05:c8:9c:0e:
4f:86:ba:2d:4a:08:05:db:28:c9:f8:ae:62:d7:19:
bd:f9:45:d9:46:a8:a0:11:ba:78:d1:6a:d0:76:54:
6c:b2:62:6b:03:f0:ec:98:39:a1:e2:7b:6b:b3:d7:
de:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F4:25:DB:D0:77:E9:D9:3C:74:EF:8D:10:D0:09:8F:EE:EC:DA:E0
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:fe:0e:23:51:09:fe:aa:d2:c7:9c:5e:53:36:cf:9f:45:c7:
35:ac:b3:92:e5:96:6f:3f:16:d0:d5:7b:3f:68:f4:07:25:05:
8e:d5:6f:c6:50:fc:5a:67:bb:03:08:65:45:1c:8f:0c:b7:55:
54:0c:06:df:2a:47:8d:0f:13:28:ce:a4:e8:ce:72:db:5d:c1:
33:f0:67:88:d0:df:31:1e:87:19:7b:91:d7:de:fd:33:c4:8c:
fd:97:4d:73:58:2c:32:1a:ae:0a:d6:93:05:fe:eb:11:0f:24:
ee:68:1c:2d:04:8c:a8:86:48:10:61:29:d8:84:87:f4:a6:72:
bf:81:b7:76:47:24:a0:af:4b:ff:54:00:d3:bd:04:07:3f:c4:
4c:56:34:8d:4e:b5:14:9f:79:17:5c:a7:f7:1f:4d:90:b1:dd:
a1:a2:9d:15:3c:33:27:40:c6:a4:77:62:71:ba:ee:3e:ae:a5:
e6:20:d0:f8:3a:b4:98:73:70:c3:5a:2a:cd:0e:86:b3:41:c6:
82:50:ec:8c:bc:9d:96:3d:71:9d:99:27:f1:fe:6a:e3:23:7a:
e4:ee:57:44:25:4a:a3:14:61:8a:60:5a:cd:08:14:98:68:11:
9f:a6:e3:9f:9a:36:49:21:c2:fa:ed:9f:66:f6:20:db:1a:23:
4b:0e:fb:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9a1biGuRJ0Rg+VFZzsvK2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMWQ4MjI1YjI3MTIyNzk0YmM4MmU5MWI5NjdiYjI1ZGJl
NDUwOGUwHhcNMjUxMDE5MTcwMTMzWhcNMjUxMDIwMTcwMTMzWjAzMTEwLwYDVQQD
Eyg2MGY0MjVkYmQwNzdlOWQ5M2M3NGVmOGQxMGQwMDk4ZmVlZWNkYWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0m9fcS4fD4exhy9LoHU0Af4LCY2
MlUFzzfsbkNGQajyhsl8gL3M1GHVSD9GDJnWsdQr9TSAOpMeidD3LWY+Q8RJvO1C
hnH4xkRtOZTnTbvVt7Jg2NHUPh77rYYhKMmU70xu8KiUmMvDvdNx3uUr5HQkE/b9
UBCS2hMXgsgNdgxq+uSPOSBAZPmbitAAwVPfIVR4PK++KcajsJCTaXYzQoKkElhj
I+1+bqHwdkRP/5qQrBgl/T+Bjytp7lfAW1eVV4YshNYamiUzDyAxgwXInA5Phrot
SggF2yjJ+K5i1xm9+UXZRqigEbp40WrQdlRssmJrA/DsmDmh4ntrs9feiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGD0JdvQd+nZPHTvjRDQCY/u7NrgMB8GA1UdIwQY
MBaAFDodgiWycSJ5S8gukblnuyXb5FCOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMt
NzQ5ZTJiY2E3M2NlLzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMtNzQ5ZTJiY2E3M2Nl
LzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/4OI1EJ
/qrSx5xeUzbPn0XHNayzkuWWbz8W0NV7P2j0ByUFjtVvxlD8Wme7AwhlRRyPDLdV
VAwG3ypHjQ8TKM6k6M5y213BM/BniNDfMR6HGXuR1979M8SM/ZdNc1gsMhquCtaT
Bf7rEQ8k7mgcLQSMqIZIEGEp2ISH9KZyv4G3dkckoK9L/1QA070EBz/ETFY0jU61
FJ95F1yn9x9NkLHdoaKdFTwzJ0DGpHdicbruPq6l5iDQ+Dq0mHNww1oqzQ6Gs0HG
glDsjLydlj1xnZkn8f5q4yN65O5XRCVKoxRhimBazQgUmGgRn6bjn5o2SSHC+u2f
ZvYg2xojSw77Rw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 03:32:33 2025 by rpki-client