Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: Ji2/gdygOj1uwpccHQ61MVHojqKqCD0vFf1hR7k/ikg=
Subject key identifier: ED:7E:2C:62:61:19:07:0E:BC:6E:BC:68:00:A8:6A:15:56:DD:E9:5D
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 0199FC2181B09F84FA8513EA769051378C87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 068D
Signing time: Sun 19 Oct 2025 11:01:18 +0000
Manifest this update: Sun 19 Oct 2025 11:01:18 +0000
Manifest next update: Mon 20 Oct 2025 11:01:18 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: Kit3DQbYPmut3gy2AIdBMa8X/t0z35hw+YdA0MPw2kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:81:b0:9f:84:fa:85:13:ea:76:90:51:37:8c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Oct 19 11:01:18 2025 GMT
Not After : Oct 20 11:01:18 2025 GMT
Subject: CN=ed7e2c626119070ebc6ebc6800a86a1556dde95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:eb:86:4f:89:b1:c2:f8:9e:f6:d3:15:0d:f8:
3d:b9:eb:59:79:0f:59:53:2c:bc:b6:c9:ff:a2:c3:
49:ac:c9:73:99:bc:07:4c:8d:a2:df:6c:ff:42:6b:
82:9a:c7:62:37:e6:51:41:60:5e:1b:06:a7:d0:38:
4c:60:4f:38:2b:c0:5a:5b:9e:ef:93:15:3d:37:3b:
d8:c8:ec:22:78:f0:4d:8f:49:b0:61:f4:fb:e3:70:
07:7f:b4:18:a4:ff:4b:24:fe:0b:1c:ec:9f:9e:63:
57:7b:c0:55:eb:e2:12:ec:95:43:6d:6e:1e:6a:1e:
ee:aa:73:2a:65:e8:11:a5:72:41:1d:90:fb:e2:27:
8c:6a:4c:7e:b8:50:6a:aa:3a:62:7a:90:c8:14:79:
57:51:55:5a:5a:08:7d:32:2d:39:40:01:10:89:5f:
b9:28:61:aa:d9:9a:cd:3a:0c:b1:29:0c:53:ec:95:
c8:83:00:e0:0d:96:c4:e3:b2:43:57:1f:15:90:92:
09:be:87:bc:d5:80:7b:d7:4f:d5:d3:be:3e:7d:53:
90:6a:8b:31:1f:4b:33:da:c6:17:91:d3:fd:ff:28:
41:bc:18:63:fc:e0:11:41:0c:60:8c:2f:18:9e:76:
19:cf:43:f4:fa:99:07:52:6b:a7:34:10:50:39:d1:
15:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7E:2C:62:61:19:07:0E:BC:6E:BC:68:00:A8:6A:15:56:DD:E9:5D
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d0:11:0b:98:c6:8c:e8:b8:8f:5e:5f:03:b2:44:d7:3b:62:
63:4d:68:6b:17:43:bd:e3:3c:6c:f0:c3:a5:60:a5:41:ce:eb:
89:60:ae:d1:49:d4:a0:93:f2:b5:10:32:c1:77:a5:fe:c3:83:
c5:65:b0:1a:11:ca:ee:f8:6c:4f:44:3c:39:5e:7b:46:75:d6:
8c:4d:83:ec:e3:9f:6f:20:83:8b:da:e7:5e:76:81:5a:9a:38:
03:38:98:f5:98:1e:b8:3a:1c:ce:61:2d:2e:48:9a:fb:fc:0b:
b7:94:e3:b5:64:46:8c:db:92:39:ad:8b:3b:c0:8e:80:bd:30:
2a:03:09:4d:46:1b:bc:3c:59:63:4b:6f:d6:e1:db:80:1f:12:
a1:a8:78:b5:0d:fa:69:8e:f8:fa:5a:01:db:ef:e4:d4:7f:2a:
89:74:64:91:f9:59:f4:ae:88:cd:0f:e0:f9:d0:20:36:5d:4f:
91:29:ee:67:b8:e7:15:8a:1b:39:4a:0c:0a:8a:ff:a7:cd:50:
2a:93:16:5f:03:49:cc:00:cf:4f:ce:75:44:14:31:89:f8:28:
52:45:2c:3f:bd:df:18:ae:b2:a2:70:71:de:87:89:eb:6d:a7:
31:af:c8:42:d7:de:11:44:ce:51:14:ee:2f:c9:70:7b:11:67:
ce:c1:35:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:16 2025 by rpki-client