Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
File: Ooz8_rg-iPNror8kRduewegvDVQ.mft (raw, json)
Hash identifier: 4j3S+Z4WWTDLDr/yTT7VAE+WQyzF4BQpJC18EzDRZZQ=
Subject key identifier: C5:7A:F9:52:47:04:5A:B9:AA:35:2B:F7:0D:B0:B0:C0:2D:FD:84:2E
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 0199FAD807FE399583157FD6E2768BF16361
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 05:01:25 +0000
Manifest this update: Sun 19 Oct 2025 05:01:25 +0000
Manifest next update: Mon 20 Oct 2025 05:01:25 +0000
Files and hashes: 1: 26TbrymsKsZjBkQHIbbRRWaFR8Y.roa (hash: SWIdCtaxTysSBJj/hZn1IHZ7qzsZ9zOqjJPPtoUQNGw=)
2: Ooz8_rg-iPNror8kRduewegvDVQ.crl (hash: utWIo/ItCLLLuyb2TfJj8p8pVjqKoFK2Ao4hnm6ldqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:07:fe:39:95:83:15:7f:d6:e2:76:8b:f1:63:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Oct 19 05:01:25 2025 GMT
Not After : Oct 20 05:01:25 2025 GMT
Subject: CN=c57af95247045ab9aa352bf70db0b0c02dfd842e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d1:24:1f:07:0f:87:59:45:ad:64:c0:f4:c4:
02:e3:c2:cd:84:2f:00:cb:0f:53:95:86:e6:61:6f:
25:3f:7d:c5:d0:7f:42:8a:66:ab:c1:70:d0:3a:fb:
ee:50:27:34:bf:95:c8:6f:9c:12:b9:bb:e9:c3:ad:
4f:6b:48:31:81:db:a6:df:dd:66:46:d0:4c:37:5e:
6b:3e:3b:c0:69:41:a9:72:d9:af:e5:6b:87:bb:a1:
11:10:95:28:4f:5f:56:9b:90:d6:32:18:01:23:fe:
46:66:03:27:2f:ba:31:ca:44:1f:5d:6f:23:33:bc:
7a:ee:a4:11:7c:fa:23:9c:ff:a8:e7:8e:57:33:98:
3e:8c:90:59:21:a1:2f:8a:2d:83:2e:f8:28:17:95:
9e:5d:88:70:b6:43:ef:f4:81:4f:48:28:94:d1:24:
7d:10:17:9e:6e:00:24:9b:bd:cc:17:54:11:18:d9:
7a:12:6b:4c:fb:fe:d8:3f:ff:da:d9:1a:3a:20:51:
14:f9:69:51:93:d5:15:32:2c:c7:29:3c:a9:2d:93:
5e:c8:5d:4e:01:6e:10:ec:20:5b:57:22:20:8d:af:
99:bd:d7:b2:75:58:6c:04:b1:8a:f9:11:14:ca:3c:
98:ca:09:e3:66:cb:18:90:ff:1d:6e:bf:91:09:3f:
dc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7A:F9:52:47:04:5A:B9:AA:35:2B:F7:0D:B0:B0:C0:2D:FD:84:2E
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:9e:bf:1b:c9:17:70:23:df:e4:68:fb:32:7e:cb:3b:39:4a:
96:1c:50:74:ef:b5:9f:c4:8d:e5:e7:bc:8d:86:97:82:8f:0d:
a0:16:08:f1:0e:f6:00:89:40:ea:3c:a4:3e:18:84:b7:da:21:
19:12:06:9c:7f:b8:71:41:be:0f:dd:b8:44:c2:ea:c2:a9:6b:
f7:1e:85:39:b1:94:d0:62:f3:23:31:b2:2c:e2:b5:c4:19:80:
87:ea:04:03:c0:36:3c:69:f4:55:d0:4f:b6:f1:9f:53:09:05:
cf:4e:27:46:f1:cf:58:6c:3a:d1:44:cb:e2:04:3b:62:e5:89:
64:53:85:ac:b1:d2:b3:31:9a:23:91:38:9b:bd:34:ec:e3:a8:
d0:b6:7e:a0:b8:27:4e:c1:6f:84:08:e4:c4:00:2a:d9:3a:da:
30:d3:7d:2d:66:23:31:a3:1a:06:bd:df:4e:f8:69:6a:81:25:
2f:4f:c1:b5:01:45:cb:01:56:09:51:ad:8a:98:22:45:b9:73:
7a:04:a8:67:5a:5a:4c:4b:c6:94:5c:0b:b5:7a:48:fa:0c:16:
e0:bd:3a:21:e1:e4:73:58:07:88:fe:98:07:c1:e0:bf:6c:26:
8a:1c:e2:69:4d:28:bf:75:38:37:74:39:36:19:05:0f:1f:d8:
86:94:77:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn62Af+OZWDFX/W4naL8WNhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOGNmY2ZlYjgzZTg4ZjM2YmEyYmYyNDQ1ZGI5ZWMxZTgy
ZjBkNTQwHhcNMjUxMDE5MDUwMTI1WhcNMjUxMDIwMDUwMTI1WjAzMTEwLwYDVQQD
EyhjNTdhZjk1MjQ3MDQ1YWI5YWEzNTJiZjcwZGIwYjBjMDJkZmQ4NDJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4tEkHwcPh1lFrWTA9MQC48LNhC8A
yw9TlYbmYW8lP33F0H9CimarwXDQOvvuUCc0v5XIb5wSubvpw61Pa0gxgdum391m
RtBMN15rPjvAaUGpctmv5WuHu6EREJUoT19Wm5DWMhgBI/5GZgMnL7oxykQfXW8j
M7x67qQRfPojnP+o545XM5g+jJBZIaEvii2DLvgoF5WeXYhwtkPv9IFPSCiU0SR9
EBeebgAkm73MF1QRGNl6EmtM+/7YP//a2Ro6IFEU+WlRk9UVMizHKTypLZNeyF1O
AW4Q7CBbVyIgja+ZvdeydVhsBLGK+REUyjyYygnjZssYkP8dbr+RCT/cwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMV6+VJHBFq5qjUr9w2wsMAt/YQuMB8GA1UdIwQY
MBaAFDqM/P64Pojza6K/JEXbnsHoLw1UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEt
NmE0ZWIzN2EzM2NjLzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEtNmE0ZWIzN2EzM2Nj
LzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnp6/G8kX
cCPf5Gj7Mn7LOzlKlhxQdO+1n8SN5ee8jYaXgo8NoBYI8Q72AIlA6jykPhiEt9oh
GRIGnH+4cUG+D924RMLqwqlr9x6FObGU0GLzIzGyLOK1xBmAh+oEA8A2PGn0VdBP
tvGfUwkFz04nRvHPWGw60UTL4gQ7YuWJZFOFrLHSszGaI5E4m7007OOo0LZ+oLgn
TsFvhAjkxAAq2TraMNN9LWYjMaMaBr3fTvhpaoElL0/BtQFFywFWCVGtipgiRblz
egSoZ1paTEvGlFwLtXpI+gwW4L06IeHkc1gHiP6YB8Hgv2wmihziaU0ov3U4N3Q5
NhkFDx/YhpR3Pg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:20 2025 by rpki-client