Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
File: oAy0uNVpR3USzleIW6aiiY-8LZU.mft (raw, json)
Hash identifier: JRYAH45HfLclbc797t2OjeGlNU7ayX884tdCLjkOvcA=
Subject key identifier: 92:7E:50:C6:18:96:A6:52:67:60:95:88:74:9C:A9:5C:42:19:17:FC
Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Certificate serial: 0199FD3409D748D3760EB7B2B2BAAF562D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
Manifest number: 11EA
Signing time: Sun 19 Oct 2025 16:01:09 +0000
Manifest this update: Sun 19 Oct 2025 16:01:09 +0000
Manifest next update: Mon 20 Oct 2025 16:01:09 +0000
Files and hashes: 1: RDMJmsptAt79z1bZNxCRYGoDbOA.roa (hash: psHiDB3pvgN7EOgCxCvfgOl6kkNmShVGm0R8glPdahE=)
2: oAy0uNVpR3USzleIW6aiiY-8LZU.crl (hash: GB2zKirDhnh8ZQYoTNhYGBxVsUaj95otsdYS6b8N1N8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:09:d7:48:d3:76:0e:b7:b2:b2:ba:af:56:2d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Validity
Not Before: Oct 19 16:01:09 2025 GMT
Not After : Oct 20 16:01:09 2025 GMT
Subject: CN=927e50c61896a65267609588749ca95c421917fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ba:ae:18:ff:8b:90:a6:ba:c6:d1:62:b3:45:
52:6b:9f:92:0b:ee:4c:de:b0:c4:9e:fd:b2:8f:5e:
05:96:5a:34:c8:f0:80:c4:ef:46:55:fb:6f:c4:0d:
a2:f7:d9:0d:74:6e:43:83:cc:8f:dd:f8:fb:ea:9e:
35:35:b8:6c:5f:23:83:ff:e6:65:d1:5f:5c:22:9c:
5e:c1:96:4b:51:cb:d7:94:7a:0b:a2:40:66:4f:04:
2a:c9:84:3a:cc:02:9e:2d:08:4c:f1:8b:f7:88:4d:
e4:fc:da:3d:85:26:5e:d5:9e:0a:77:81:d0:b5:0d:
29:5e:b4:73:0f:13:29:88:5a:5a:cd:94:b7:30:bf:
28:b7:c1:83:6c:71:62:89:99:1e:0f:7a:e4:2b:48:
dc:2d:fc:c1:13:57:f6:b5:6e:83:1f:0e:99:f8:14:
51:08:57:cd:52:01:86:6f:9f:41:ac:9c:60:9c:ce:
a7:8c:77:2f:f3:9d:2e:f1:35:ac:e2:16:c3:c8:56:
42:98:38:9d:ba:13:ae:95:11:f0:ee:26:76:61:76:
38:60:3d:86:b6:09:0b:7e:46:15:b8:1a:d6:5a:16:
35:9f:1d:3a:fb:a8:91:31:4e:60:76:67:db:88:c7:
65:d2:1d:7d:fc:08:8c:f7:a5:b3:30:30:3e:8f:fb:
f6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7E:50:C6:18:96:A6:52:67:60:95:88:74:9C:A9:5C:42:19:17:FC
X509v3 Authority Key Identifier:
keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:d1:36:23:a4:ee:5a:96:70:e5:1f:ce:c5:d4:e6:fb:3d:95:
14:a7:60:df:a0:7a:1d:26:74:a4:d8:bc:b0:2d:4e:37:ca:d1:
8b:32:24:59:3c:10:33:11:f7:85:91:bc:7a:62:f0:76:f3:8e:
44:2b:88:a2:fb:b0:3b:b9:8d:33:68:d7:8f:34:21:b8:03:cf:
18:a5:7b:02:0a:c8:7e:6a:36:d7:fc:03:4d:63:95:7a:a1:a7:
20:b1:9a:a9:71:87:8b:ec:7f:37:2d:eb:1b:f1:11:36:44:1a:
b7:e5:d5:38:c2:cd:2f:c5:38:7a:1a:e7:78:07:9a:ae:fa:bf:
9c:a5:0d:72:19:8b:58:14:2e:40:22:c6:61:df:21:59:a0:18:
b3:7f:9b:1f:6d:09:c7:bf:e1:1c:6b:27:10:7e:02:2a:96:85:
85:a9:2b:c4:e8:23:5d:26:f8:fb:25:31:c0:ba:cc:3f:4a:89:
e2:4e:01:5f:f5:89:19:a1:0a:69:a6:64:0e:d3:09:95:06:0f:
4b:bb:24:b0:b9:14:6f:68:98:5a:d8:10:9e:dd:e2:79:ca:cf:
14:50:30:75:c5:a4:4f:df:5d:f2:70:f0:dc:da:03:87:c1:f4:
32:ea:44:6f:90:74:41:46:2d:91:53:41:a9:44:6b:8b:3c:d7:
c7:fa:7b:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NAnXSNN2DreysrqvVi09MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMGNiNGI4ZDU2OTQ3NzUxMmNlNTc4ODViYTZhMjg5OGZi
YzJkOTUwHhcNMjUxMDE5MTYwMTA5WhcNMjUxMDIwMTYwMTA5WjAzMTEwLwYDVQQD
Eyg5MjdlNTBjNjE4OTZhNjUyNjc2MDk1ODg3NDljYTk1YzQyMTkxN2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrquGP+LkKa6xtFis0VSa5+SC+5M
3rDEnv2yj14Fllo0yPCAxO9GVftvxA2i99kNdG5Dg8yP3fj76p41NbhsXyOD/+Zl
0V9cIpxewZZLUcvXlHoLokBmTwQqyYQ6zAKeLQhM8Yv3iE3k/No9hSZe1Z4Kd4HQ
tQ0pXrRzDxMpiFpazZS3ML8ot8GDbHFiiZkeD3rkK0jcLfzBE1f2tW6DHw6Z+BRR
CFfNUgGGb59BrJxgnM6njHcv850u8TWs4hbDyFZCmDiduhOulRHw7iZ2YXY4YD2G
tgkLfkYVuBrWWhY1nx06+6iRMU5gdmfbiMdl0h19/AiM96WzMDA+j/v2DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJ+UMYYlqZSZ2CViHScqVxCGRf8MB8GA1UdIwQY
MBaAFKAMtLjVaUd1Es5XiFumoomPvC2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUt
MThjNzBlYmY2ODFhLzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUtMThjNzBlYmY2ODFh
LzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs9E2I6Tu
WpZw5R/OxdTm+z2VFKdg36B6HSZ0pNi8sC1ON8rRizIkWTwQMxH3hZG8emLwdvOO
RCuIovuwO7mNM2jXjzQhuAPPGKV7AgrIfmo21/wDTWOVeqGnILGaqXGHi+x/Ny3r
G/ERNkQat+XVOMLNL8U4ehrneAearvq/nKUNchmLWBQuQCLGYd8hWaAYs3+bH20J
x7/hHGsnEH4CKpaFhakrxOgjXSb4+yUxwLrMP0qJ4k4BX/WJGaEKaaZkDtMJlQYP
S7sksLkUb2iYWtgQnt3iecrPFFAwdcWkT99d8nDw3NoDh8H0MupEb5B0QUYtkVNB
qURrizzXx/p7Qw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:20:23 2025 by rpki-client