Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: n87arwkIlVVnljV1nsNlrwk2cYMFvFih1rwCoebmpO4=
Subject key identifier: B5:24:A5:6D:55:EC:0D:E1:20:4D:9E:43:E7:D9:08:3F:4E:67:33:B1
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 0199FCC607077E02C63B47D75274487A50EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 14:01:00 +0000
Manifest this update: Sun 19 Oct 2025 14:01:00 +0000
Manifest next update: Mon 20 Oct 2025 14:01:00 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: EYfxRfdEG+RULFVA0909+cOlRQCNTBVPJCAlsq97KO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:07:07:7e:02:c6:3b:47:d7:52:74:48:7a:50:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Oct 19 14:01:00 2025 GMT
Not After : Oct 20 14:01:00 2025 GMT
Subject: CN=b524a56d55ec0de1204d9e43e7d9083f4e6733b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:fb:ce:90:5a:fb:9f:0a:49:d1:55:16:90:
59:8a:0b:96:45:c5:b8:0f:ac:dd:fe:db:df:c6:dd:
76:76:53:8a:f1:78:0e:19:f5:09:a6:20:00:20:8b:
25:f6:a6:44:23:16:09:75:c7:08:53:17:97:47:07:
9b:cf:22:19:e1:0d:e6:26:60:cb:a2:14:3f:88:2e:
00:46:9e:f1:fa:ed:10:ec:91:9d:ad:9a:69:20:b4:
33:ff:20:f8:f5:41:40:c3:9d:f2:8c:a4:d4:c0:6c:
30:69:01:7e:ff:67:18:89:78:17:c7:f5:0d:dc:14:
34:4f:2f:f3:58:cf:98:11:61:48:c9:52:f4:f5:56:
dc:a2:2b:43:74:e3:95:25:3f:fc:38:08:fd:06:89:
89:37:c4:bb:c2:e2:3a:bc:66:38:72:a3:87:b3:5c:
e6:ca:8d:7d:fc:27:ca:3e:52:24:f2:62:78:61:bc:
97:90:24:6f:ca:9d:8b:78:32:9a:c1:58:45:ae:87:
41:ba:39:94:f5:f0:82:cc:02:35:64:a5:23:65:20:
81:c3:e0:46:87:a7:d4:76:00:b7:59:47:a4:12:01:
a6:a2:65:4f:3e:28:d2:5c:25:92:f7:2d:b1:9c:41:
66:cc:f4:22:78:c5:4a:21:2f:21:cb:77:06:19:b0:
19:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:24:A5:6D:55:EC:0D:E1:20:4D:9E:43:E7:D9:08:3F:4E:67:33:B1
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b8:20:b7:04:13:8f:62:73:0e:e6:04:48:82:b3:89:98:5c:
6a:18:f6:1d:1f:ec:5f:c1:36:28:7a:2a:c4:c0:c0:93:60:36:
fd:9a:fb:05:da:af:2c:4f:d3:23:1d:29:ab:3e:47:77:1e:e6:
63:9c:84:ba:a2:4d:b9:86:3f:6b:25:b1:c4:7d:d4:f9:81:d7:
da:1a:a8:7e:91:fe:d0:28:ae:b8:4d:b3:4a:46:fc:53:7d:f4:
96:52:f9:9b:6a:8d:27:eb:03:17:1b:0d:c8:9a:9a:b9:81:76:
de:93:a5:21:e6:98:8d:d4:5b:ab:b7:73:56:2b:95:6d:03:9c:
8f:bd:7e:f6:e3:ad:10:85:13:2d:23:e1:00:c6:66:1d:bb:a6:
d8:5d:01:6e:99:61:fa:2c:9d:d5:ed:fa:ac:ea:37:7a:1f:c3:
3e:ec:4e:d4:da:11:95:19:8e:96:a3:07:51:df:41:85:67:29:
a1:40:03:9d:1d:20:a4:ac:44:95:00:36:85:45:7d:23:2a:c4:
66:4f:98:40:16:06:5a:4e:6d:41:d5:97:09:61:6e:f1:3e:93:
0f:d0:84:95:d3:46:9a:25:1f:69:df:83:0b:f8:96:1d:f2:c2:
39:6c:f1:36:22:81:7c:a4:5e:a6:05:aa:bc:7f:0a:70:3c:ec:
8b:9c:a9:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:38 2025 by rpki-client