Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: 3eQWnZRtaTXKaWQeRbntAOPwQeNa/QbreOxTUqTYAVw=
Subject key identifier: 7F:44:94:39:7D:48:58:5B:4D:DE:AF:0B:56:C9:24:2F:0B:75:F6:06
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 0199FC5887F9111A4526761FC10ABF45E739
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0E7E
Signing time: Sun 19 Oct 2025 12:01:24 +0000
Manifest this update: Sun 19 Oct 2025 12:01:24 +0000
Manifest next update: Mon 20 Oct 2025 12:01:24 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: 53wePqTFw8SlIMAG1EOB/UfZZUEMlQdXy5OH3Womp6I=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:87:f9:11:1a:45:26:76:1f:c1:0a:bf:45:e7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Oct 19 12:01:24 2025 GMT
Not After : Oct 20 12:01:24 2025 GMT
Subject: CN=7f4494397d48585b4ddeaf0b56c9242f0b75f606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:89:95:72:b1:e1:f5:7e:8f:e2:5c:7c:c4:0a:
30:36:d5:2e:00:44:b3:45:3d:7a:ca:1b:c8:9a:9e:
23:00:d6:13:75:22:38:00:68:a5:96:51:41:88:1f:
95:c7:5d:76:c2:92:dd:26:5e:47:c7:1d:bf:bb:4b:
84:ea:82:2b:97:f1:55:64:77:80:af:54:b9:73:3a:
57:c0:23:dc:f1:92:af:fd:69:9a:80:92:f5:87:6e:
3d:53:eb:1b:e3:23:06:25:0c:89:1d:27:4b:02:88:
86:f0:bc:21:bb:45:69:79:69:42:a3:d6:64:8e:41:
fc:71:2b:23:c3:8e:0d:89:14:ee:a5:f5:89:39:49:
f2:33:85:00:1e:e6:96:ee:6c:7a:c5:69:88:7b:f1:
7c:94:dc:83:ba:40:55:1d:2a:8a:a4:85:34:1d:f1:
ac:27:6a:2c:41:8e:8b:2b:11:09:a7:21:b7:37:e2:
58:6f:9b:40:2f:6e:a9:dc:03:65:e9:e8:91:43:9a:
68:ee:24:5e:1a:e1:ed:fc:01:8e:97:e5:b8:7f:10:
42:ea:40:24:8a:24:84:29:c8:7c:b3:f1:43:fe:93:
6c:56:80:1f:f2:3d:cb:73:16:6e:dd:55:c6:8f:1b:
bb:c3:27:3f:6c:e0:41:e0:51:dd:1b:c4:74:4a:f6:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:44:94:39:7D:48:58:5B:4D:DE:AF:0B:56:C9:24:2F:0B:75:F6:06
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:26:3d:37:8a:77:38:14:27:10:33:af:12:c0:27:20:8d:fe:
fa:1b:19:9b:67:82:46:cd:14:48:bf:87:d4:f4:fe:f4:64:79:
27:02:b6:24:38:59:38:e3:3e:f0:d7:47:e2:f9:ce:60:a8:04:
df:b3:cf:37:51:f3:e3:a9:59:af:be:ba:15:59:f7:c6:75:16:
88:ab:cb:45:5a:79:94:51:b4:df:4b:63:cc:c2:c2:51:14:e9:
a3:77:14:e8:fe:22:76:68:26:66:b0:16:cd:8d:f6:bb:01:2b:
0b:4d:cf:b2:71:3b:6e:9b:ca:99:fb:50:4c:0d:f5:b2:73:54:
73:86:d6:a6:b9:e1:c8:7c:3c:99:11:bb:fb:25:df:9e:c9:80:
02:4e:45:66:a0:28:2b:f8:c9:28:6d:b7:b5:0f:8a:4d:f2:e1:
d9:ac:8f:9b:d1:31:a2:41:47:bb:c9:d3:07:42:96:e5:80:10:
ff:4d:e1:be:fd:b2:7d:3c:ca:5f:3e:db:15:ed:02:74:2b:c9:
fb:58:b3:81:e0:1e:e4:67:e4:3a:82:51:3f:f3:ad:0d:68:0d:
8d:30:98:f1:d6:3f:e4:8c:26:ce:59:84:34:9b:fb:d0:bc:b1:
e3:1c:59:04:1c:b0:02:4f:cc:18:f6:fd:fd:dd:07:ac:4e:95:
f3:dd:8b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:35 2025 by rpki-client