Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: LiBoq0v19x+pAWOmJE0yu/iCpkvA8CiOqnEVwpOaUus=
Subject key identifier: 6F:EB:69:33:96:A6:46:A7:5B:18:96:8C:70:38:14:7C:0A:40:51:4E
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 0199FD6B1DE041C74AAF1BBE57A060C72831
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 1677
Signing time: Sun 19 Oct 2025 17:01:19 +0000
Manifest this update: Sun 19 Oct 2025 17:01:19 +0000
Manifest next update: Mon 20 Oct 2025 17:01:19 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: SlEXipNOgnWfl+8Xi44Mis4ysiTM3Y5aDmAEvwwM/zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:1d:e0:41:c7:4a:af:1b:be:57:a0:60:c7:28:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Oct 19 17:01:19 2025 GMT
Not After : Oct 20 17:01:19 2025 GMT
Subject: CN=6feb693396a646a75b18968c7038147c0a40514e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:65:39:b9:09:47:85:61:7a:3c:bc:a2:47:
e7:5f:0e:9b:f4:02:e7:3a:d9:0b:3b:b3:87:41:ad:
27:51:95:c5:c3:ca:ee:10:8f:c3:c9:83:b1:bc:a2:
ed:72:7c:d7:0d:96:dd:b0:e9:ca:06:77:01:02:bb:
e5:57:fe:50:d1:16:8f:25:f4:f0:56:3f:5c:6d:b4:
6a:29:12:33:33:de:0a:95:00:75:b9:58:2d:6e:94:
ce:e6:eb:94:a7:4a:6c:31:b4:06:a8:ca:ed:b1:fe:
6e:b5:cd:40:23:99:36:22:44:c3:e1:76:5d:86:6b:
7a:44:46:ba:98:f2:68:2a:3f:0b:a4:ef:63:88:e7:
ee:89:ca:13:34:47:32:74:aa:87:1f:21:c7:d6:99:
64:bf:cc:8a:22:22:d0:7c:ba:f2:cc:8b:e5:94:66:
65:25:7b:e5:12:fa:39:8a:dd:23:8d:3a:35:90:59:
d5:7f:95:d4:55:9a:a0:de:95:a3:80:e4:e6:0e:32:
8e:77:2c:36:ec:93:9a:b3:61:b1:e2:9a:f2:11:64:
4f:f8:80:bd:db:9b:e0:f3:a4:14:7b:b5:d4:4e:82:
7a:e8:b8:52:c4:23:d7:2f:76:b6:76:7e:8b:b4:ee:
3d:de:88:a0:73:c4:a9:ad:31:96:6f:f1:5f:90:a1:
0a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EB:69:33:96:A6:46:A7:5B:18:96:8C:70:38:14:7C:0A:40:51:4E
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:18:66:bc:24:3d:92:12:69:36:49:78:22:a0:96:71:9f:3f:
5a:ef:dd:4b:65:2f:a1:84:47:ae:02:75:e6:c8:19:09:40:77:
e1:25:5e:17:65:34:59:04:6e:97:2e:46:fa:76:e5:cf:1e:1d:
2f:01:f8:c6:c4:ec:b7:77:02:39:20:9c:68:3f:3a:c9:9d:01:
c2:5a:ea:7b:f3:18:32:f8:fb:f5:58:c8:2f:ce:ab:cb:f5:0b:
85:cf:62:7c:a1:a3:4e:35:e7:79:9c:e3:7b:a9:58:3e:04:98:
f7:9e:69:77:e1:da:1c:f8:55:18:9b:f9:13:53:a2:f5:8d:98:
ad:20:f6:f6:55:25:df:1e:1c:de:e2:d9:48:47:bb:4c:49:ce:
c9:88:c0:01:1b:e5:5b:17:68:25:57:5d:71:0e:22:a1:f6:b7:
7d:6d:56:14:cd:6f:a6:2b:d7:da:12:9d:bc:f2:ab:15:91:19:
e8:09:1c:76:53:a0:79:24:bb:e4:4f:63:08:c0:85:dc:45:f7:
25:2e:7c:7d:2a:5a:38:24:87:cd:28:af:d9:b5:de:57:34:4b:
87:4f:20:29:7d:df:fd:3e:3c:b3:f4:36:0e:e3:84:3b:7f:12:
92:e0:e1:35:18:b6:d2:a2:5b:fc:a0:71:92:84:98:73:d9:8a:
f9:8d:56:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:13 2025 by rpki-client