Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
File: oILdW4b5WNW-c_2-PwzPbf8C9yE.mft (raw, json)
Hash identifier: BDKBiOzRZCGA7jMVo+XVyaEtPvgS4NRHmpbQwK2Dxho=
Subject key identifier: 1F:C8:1C:F3:4C:22:BC:FF:89:D5:DB:15:84:F7:84:C1:FE:84:C3:4D
Authority key identifier: A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
Certificate issuer: /CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Certificate serial: 019A0110E47314D66D2FE037611E754105D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
Manifest number: 16E5
Signing time: Mon 20 Oct 2025 10:01:15 +0000
Manifest this update: Mon 20 Oct 2025 10:01:15 +0000
Manifest next update: Tue 21 Oct 2025 10:01:15 +0000
Files and hashes: 1: PKIB0NDZswSqU-d6MbwA9JZfGMk.roa (hash: OewUcdT2Rw4jRK7U2p1ljpQHoVklDy1bcntiR+wXIOw=)
2: oILdW4b5WNW-c_2-PwzPbf8C9yE.crl (hash: QVggLKrczIOk4P9j7r9ZaOhOM1VIYJLkQs6DKh6S9g8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:e4:73:14:d6:6d:2f:e0:37:61:1e:75:41:05:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Validity
Not Before: Oct 20 10:01:15 2025 GMT
Not After : Oct 21 10:01:15 2025 GMT
Subject: CN=1fc81cf34c22bcff89d5db1584f784c1fe84c34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:ee:6c:87:27:4e:d8:92:82:d3:b7:1b:e2:
88:76:43:c4:ac:3d:1d:4d:73:31:e0:60:d1:b7:04:
b7:ce:0f:d3:71:49:3a:9c:55:94:37:42:8e:23:67:
9f:0c:2b:f4:40:71:cb:fb:bc:e1:82:71:89:a0:51:
a3:5a:bf:39:31:2a:61:aa:40:40:a9:fc:eb:30:35:
a9:43:f2:ab:3b:b5:0a:11:f1:61:64:96:b3:df:16:
f2:d9:1e:c5:1d:c8:3f:8f:51:cf:45:49:b9:14:18:
4d:d9:74:88:6e:66:29:d4:e5:a6:bf:a9:4d:ca:28:
23:4c:41:fa:bd:38:c0:5c:28:0f:29:a2:29:82:7a:
8d:e7:c3:46:43:c3:bf:d0:9d:1b:01:ca:ca:37:88:
05:6f:12:24:e5:b0:71:92:dd:32:9e:49:bf:13:19:
16:ca:37:c7:ef:92:96:57:dd:b7:e8:71:a6:95:2c:
6f:86:c9:6f:16:e7:78:f9:00:e4:de:e6:4f:b9:48:
e4:ec:4d:f1:da:15:d6:55:ff:7e:dc:62:90:cc:2b:
06:4d:cc:42:15:7e:79:d2:ac:12:f8:4a:72:31:81:
14:47:62:8b:fa:75:9c:6b:6e:53:b8:d1:c0:b6:de:
0f:e2:50:c1:3c:e0:9e:62:2c:39:19:71:07:b9:59:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C8:1C:F3:4C:22:BC:FF:89:D5:DB:15:84:F7:84:C1:FE:84:C3:4D
X509v3 Authority Key Identifier:
keyid:A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:38:e1:5c:25:80:39:58:b2:eb:f8:a4:28:b3:93:1d:5b:b8:
4b:d8:46:b6:57:f3:28:79:d7:42:aa:fc:9c:d1:c2:1d:d1:79:
7f:8f:21:a5:87:8f:48:e7:7c:25:2b:c4:52:2f:ac:e4:e2:51:
68:9b:e0:09:98:fb:9f:39:42:82:a3:18:a6:40:d4:fe:35:93:
9b:b2:8a:0b:9e:03:1d:af:a2:42:47:2f:3d:14:35:96:b8:7e:
b3:fe:5f:2a:15:b4:99:da:e6:7f:79:4e:85:b2:70:22:f2:0f:
d4:59:18:62:11:1b:1b:b6:75:8a:54:71:de:a2:46:64:a6:65:
57:23:a5:6f:c7:5d:20:51:03:d8:d4:0e:64:ed:e9:89:13:50:
64:d7:13:bb:70:f2:fe:40:5a:6e:21:8d:9f:dc:96:e7:4a:c9:
5f:23:fd:3a:37:6a:29:0c:32:22:db:89:aa:14:7a:d3:d2:67:
26:ab:00:55:3d:78:d7:69:ae:cd:12:03:42:b5:cc:b4:b1:48:
49:0e:b6:47:9c:61:c1:22:2f:9a:13:56:0e:a9:e8:b5:47:27:
b9:62:91:3e:e5:c5:75:d8:91:f2:22:e5:c7:2c:f3:c0:66:ec:
45:72:06:ec:b4:36:b6:9c:4f:f3:17:ba:75:9e:0f:f5:c4:fa:
4f:5e:45:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:40:42 2025 by rpki-client