Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: v6wLP2cMoI8wrdvKCRGUfn2rSWIuR9+Had09pg53FuI=
Subject key identifier: 67:4B:48:45:02:48:3F:28:43:C2:8F:16:DE:B9:0A:B5:57:7C:C5:5F
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 019A066D54DFBC163A9CFEE1A035AAA1672E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 0A78
Signing time: Tue 21 Oct 2025 11:00:19 +0000
Manifest this update: Tue 21 Oct 2025 11:00:19 +0000
Manifest next update: Wed 22 Oct 2025 11:00:19 +0000
Files and hashes: 1: 5-5dw7BQUILpSuBDRasWi_TUWvo.roa (hash: hm9ysYElh3sbrH5I7xkNigsOqhpocQkIVZkL8ahr+uU=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: NDUQtf7nCpM8f3fsDHhnNvXS6iPga4aDdJ3gSMEPAxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 11:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:06:6d:54:df:bc:16:3a:9c:fe:e1:a0:35:aa:a1:67:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Oct 21 11:00:19 2025 GMT
Not After : Oct 22 11:00:19 2025 GMT
Subject: CN=674b484502483f2843c28f16deb90ab5577cc55f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c8:d2:cf:f4:bd:04:40:42:8b:df:4e:f1:fb:
36:8a:9c:29:9d:4e:e9:bd:a4:00:b1:9e:03:0c:ba:
ec:6d:06:b1:58:73:54:17:e5:7d:68:f6:e5:b7:b0:
91:42:dd:27:99:11:e0:40:b3:1e:39:d4:77:6e:23:
5e:12:2f:2d:9d:2e:11:3b:27:54:75:5f:f5:9a:c0:
b4:fa:ff:49:6a:72:1e:21:5f:05:4a:9a:3f:03:ad:
e0:b8:23:f2:c9:22:53:52:5e:0e:18:53:99:9c:92:
5f:7e:13:a7:af:81:55:af:1a:7e:00:59:ec:b4:6d:
cd:00:9c:04:6d:59:8f:a7:ff:81:38:fe:6f:e4:c7:
60:24:6e:94:a6:cd:0d:d3:3d:f6:e5:7d:0f:99:4a:
d2:fc:1f:f3:76:93:79:89:66:f0:1a:cb:8a:69:2f:
0a:53:17:fa:7a:43:cf:5f:00:89:14:6b:44:a3:5a:
5f:54:c7:f7:96:65:0c:92:8c:8a:78:a6:22:63:ce:
12:e5:90:43:bb:1f:64:fa:0c:ac:de:a2:f9:cd:ab:
be:fc:77:91:f3:e2:6e:95:f7:32:ba:42:20:5e:01:
c1:7e:93:49:c7:d2:ef:97:15:cb:47:68:5b:da:31:
e2:1f:30:0b:16:68:5c:a2:e3:8f:a7:09:6c:96:05:
0d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4B:48:45:02:48:3F:28:43:C2:8F:16:DE:B9:0A:B5:57:7C:C5:5F
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:fc:fa:9f:6d:23:68:87:db:32:a3:8c:a7:98:a5:24:8d:5c:
6e:05:68:3b:0f:96:aa:54:58:14:e5:d7:6f:7b:e3:4c:e0:9d:
03:44:49:11:93:6d:7f:f5:11:48:03:dc:eb:78:7f:06:8f:d2:
84:0f:8a:c7:4f:ce:19:4f:f6:65:ee:46:93:76:44:83:61:10:
2c:2b:f6:8b:9b:ea:d3:13:74:77:51:8e:86:a7:3d:bd:9f:12:
d4:a3:9a:94:86:d5:3b:b1:ba:ad:ba:b2:12:f5:d4:b7:94:b9:
cf:81:58:21:76:c7:38:85:b1:e2:05:12:f5:1b:ae:70:9a:83:
9c:7d:5e:cf:cb:56:ec:1d:be:e8:c8:4d:38:91:b3:17:2d:9c:
a1:4e:6d:63:58:62:dd:63:42:b9:97:0f:6c:a3:96:77:9a:70:
8c:b6:e3:7e:a1:dd:86:09:78:3a:87:c5:20:e5:3c:e7:74:47:
13:4e:7b:dd:28:56:2b:4c:09:da:84:24:f3:4b:5c:9e:a8:e5:
c1:3c:0e:53:f2:54:1e:91:94:cc:f0:f2:7d:71:f2:ac:f1:7a:
ca:69:2a:da:85:6a:0d:64:cf:17:12:e7:37:67:60:4e:99:da:
17:73:c0:45:d4:ad:78:97:7c:79:9a:e8:05:78:86:fb:e0:0e:
4c:28:f6:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoGbVTfvBY6nP7hoDWqoWcuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NTNhOThhNzQ5ZTU2OTc0NGExZWRlMmM5NDBmMmU0MzNj
NDQwOGEwHhcNMjUxMDIxMTEwMDE5WhcNMjUxMDIyMTEwMDE5WjAzMTEwLwYDVQQD
Eyg2NzRiNDg0NTAyNDgzZjI4NDNjMjhmMTZkZWI5MGFiNTU3N2NjNTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcjSz/S9BEBCi99O8fs2ipwpnU7p
vaQAsZ4DDLrsbQaxWHNUF+V9aPblt7CRQt0nmRHgQLMeOdR3biNeEi8tnS4ROydU
dV/1msC0+v9JanIeIV8FSpo/A63guCPyySJTUl4OGFOZnJJffhOnr4FVrxp+AFns
tG3NAJwEbVmPp/+BOP5v5MdgJG6Ups0N0z325X0PmUrS/B/zdpN5iWbwGsuKaS8K
Uxf6ekPPXwCJFGtEo1pfVMf3lmUMkoyKeKYiY84S5ZBDux9k+gys3qL5zau+/HeR
8+JulfcyukIgXgHBfpNJx9LvlxXLR2hb2jHiHzALFmhcouOPpwlslgUN4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGdLSEUCSD8oQ8KPFt65CrVXfMVfMB8GA1UdIwQY
MBaAFHZTqYp0nlaXRKHt4slA8uQzxECKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEt
YjlkYzJmMmIwMDJjLzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEtYjlkYzJmMmIwMDJj
LzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJPz6n20j
aIfbMqOMp5ilJI1cbgVoOw+WqlRYFOXXb3vjTOCdA0RJEZNtf/URSAPc63h/Bo/S
hA+Kx0/OGU/2Ze5Gk3ZEg2EQLCv2i5vq0xN0d1GOhqc9vZ8S1KOalIbVO7G6rbqy
EvXUt5S5z4FYIXbHOIWx4gUS9RuucJqDnH1ez8tW7B2+6MhNOJGzFy2coU5tY1hi
3WNCuZcPbKOWd5pwjLbjfqHdhgl4OofFIOU853RHE0573ShWK0wJ2oQk80tcnqjl
wTwOU/JUHpGUzPDyfXHyrPF6ymkq2oVqDWTPFxLnN2dgTpnaF3PARdSteJd8eZro
BXiG++AOTCj2zg==
-----END CERTIFICATE-----
Generated at Tue Oct 21 18:29:39 2025 by rpki-client