Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: wn8bjbGqArglZxoXprGdr738esXto41ElN8+L1TiTj8=
Subject key identifier: C8:A8:D0:34:49:B3:C0:7B:70:EC:9F:DE:43:3D:41:98:03:B7:EE:6B
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 0199FB7C9C4962DAA116AE73E814516845FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 08:01:11 +0000
Manifest this update: Sun 19 Oct 2025 08:01:11 +0000
Manifest next update: Mon 20 Oct 2025 08:01:11 +0000
Files and hashes: 1: lhjGJIifChZhyO0SU9NNpxfAaP0.roa (hash: nX/uaYhIBdSKJHgpMLgtjy0tDRvricoltizd7F7VYTI=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: tYSFVkrwK36k0f6A1ZedOyThOlbp0Qy9VhPHwb2kiu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:9c:49:62:da:a1:16:ae:73:e8:14:51:68:45:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Oct 19 08:01:11 2025 GMT
Not After : Oct 20 08:01:11 2025 GMT
Subject: CN=c8a8d03449b3c07b70ec9fde433d419803b7ee6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:00:f6:d6:63:6e:85:80:90:69:56:b6:c5:df:
87:27:34:84:13:ef:c5:b4:f5:c3:7f:24:87:21:75:
ba:7c:e6:fb:b7:6c:7e:8f:8b:40:c2:17:f6:a3:6f:
1a:e6:ce:1c:c7:b7:4e:8f:86:ae:b1:81:d2:2c:30:
33:4e:8c:7f:46:7c:e9:aa:77:dc:45:b8:48:db:34:
a0:83:e5:6d:97:da:75:93:9a:4f:8c:03:1a:ea:46:
b1:fc:1a:47:38:08:d6:ee:42:46:ed:68:b2:3b:cb:
14:81:45:e7:16:50:1e:5e:45:3c:2c:7a:09:69:2f:
4b:43:d5:79:41:63:43:50:94:3e:be:12:66:ea:79:
0b:1c:c9:73:f6:b1:5b:e6:69:f2:d2:15:d3:26:03:
87:d8:fc:bb:98:f5:14:89:c1:36:13:3c:eb:42:84:
df:bb:d1:a0:a4:c0:e7:33:3c:ac:43:7a:b2:3c:69:
43:63:e4:50:1e:11:18:70:e1:df:b9:ca:f8:cb:bb:
1b:ba:98:c3:c5:39:b2:5c:ff:ea:ab:78:13:0a:b2:
2e:17:50:f0:ab:1a:41:74:f7:18:bb:e2:77:a9:f2:
4c:ba:da:26:30:3b:15:90:8c:2d:38:6e:ee:e1:a1:
cc:3e:68:f1:69:07:ae:9e:3d:1e:57:a5:3d:ef:76:
3b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A8:D0:34:49:B3:C0:7B:70:EC:9F:DE:43:3D:41:98:03:B7:EE:6B
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:f6:e9:d8:7f:d8:18:a6:53:e9:c0:33:c8:ea:bf:c4:4f:1c:
4a:c6:24:38:52:2f:dd:ea:e3:6d:5f:fc:7d:b1:f2:f1:25:c1:
d5:ac:0e:8a:e4:99:4c:f7:69:b2:82:22:96:a4:eb:15:3d:81:
53:22:fb:b4:b8:db:5c:f9:bf:72:f6:d7:3f:53:29:e5:e7:cb:
0a:70:1a:b3:b0:53:40:ef:ec:4e:93:41:26:d0:89:27:31:0d:
b5:19:25:33:82:8d:ba:2b:cc:71:5b:9f:cb:39:34:a4:70:4a:
e4:5e:6f:c2:44:19:6a:b3:22:86:65:91:97:9e:94:88:99:43:
19:48:58:17:25:d5:0d:31:b5:70:87:e7:37:c0:23:cc:d9:93:
6b:d6:5e:a3:0c:8a:f0:5b:15:a2:2c:0b:05:73:d2:17:38:a4:
bf:41:5c:cc:a1:65:33:15:be:06:59:38:30:0a:2c:97:7a:af:
09:e4:27:f9:70:12:15:a4:8d:e2:9c:32:69:b5:e8:b5:16:93:
ac:16:ca:98:51:86:f1:2b:a0:7a:74:b2:38:7e:fc:03:5b:f3:
b9:d1:0c:20:31:65:66:0c:fc:06:76:86:7c:9a:b3:4f:25:53:
e1:40:f6:27:47:d1:fe:2d:6d:a9:fc:d8:dc:25:a1:b4:19:ea:
65:9b:4f:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fJxJYtqhFq5z6BRRaEX7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWQ2NWI5MjZmZGQ3NDNkYTViNDczZDM0MTg1ZmUxMDFi
MDVhMjgwHhcNMjUxMDE5MDgwMTExWhcNMjUxMDIwMDgwMTExWjAzMTEwLwYDVQQD
EyhjOGE4ZDAzNDQ5YjNjMDdiNzBlYzlmZGU0MzNkNDE5ODAzYjdlZTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgD21mNuhYCQaVa2xd+HJzSEE+/F
tPXDfySHIXW6fOb7t2x+j4tAwhf2o28a5s4cx7dOj4ausYHSLDAzTox/Rnzpqnfc
RbhI2zSgg+Vtl9p1k5pPjAMa6kax/BpHOAjW7kJG7WiyO8sUgUXnFlAeXkU8LHoJ
aS9LQ9V5QWNDUJQ+vhJm6nkLHMlz9rFb5mny0hXTJgOH2Py7mPUUicE2EzzrQoTf
u9GgpMDnMzysQ3qyPGlDY+RQHhEYcOHfucr4y7sbupjDxTmyXP/qq3gTCrIuF1Dw
qxpBdPcYu+J3qfJMutomMDsVkIwtOG7u4aHMPmjxaQeunj0eV6U973Y7GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMio0DRJs8B7cOyf3kM9QZgDt+5rMB8GA1UdIwQY
MBaAFKCdZbkm/ddD2ltHPTQYX+EBsFooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYt
NzlhN2VhYTdhZTU4LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYtNzlhN2VhYTdhZTU4
LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnPbp2H/Y
GKZT6cAzyOq/xE8cSsYkOFIv3erjbV/8fbHy8SXB1awOiuSZTPdpsoIilqTrFT2B
UyL7tLjbXPm/cvbXP1Mp5efLCnAas7BTQO/sTpNBJtCJJzENtRklM4KNuivMcVuf
yzk0pHBK5F5vwkQZarMihmWRl56UiJlDGUhYFyXVDTG1cIfnN8AjzNmTa9ZeowyK
8FsVoiwLBXPSFzikv0FczKFlMxW+Blk4MAosl3qvCeQn+XASFaSN4pwyabXotRaT
rBbKmFGG8SugenSyOH78A1vzudEMIDFlZgz8BnaGfJqzTyVT4UD2J0fR/i1tqfzY
3CWhtBnqZZtP2w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:45 2025 by rpki-client