Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
File: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft (raw, json)
Hash identifier: l4M17wmUTsPmEiw5j8boKAoPYEdgjqtjwCHwEn4tN7Q=
Subject key identifier: BD:31:C3:F7:A4:C5:04:23:BB:58:06:F8:06:F0:75:F7:C7:8C:D6:AB
Authority key identifier: A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
Certificate issuer: /CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Certificate serial: 019A00359122F83DD0A37CA5D3B8A8541EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
Manifest number: 130B
Signing time: Mon 20 Oct 2025 06:01:41 +0000
Manifest this update: Mon 20 Oct 2025 06:01:41 +0000
Manifest next update: Tue 21 Oct 2025 06:01:41 +0000
Files and hashes: 1: O1jkn25qs1-TFBQOkUuo7PUo1bk.roa (hash: G22nJhAbgQNfU91NNPvYIMRUfjCUOYeEUbZcxQsmP2o=)
2: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl (hash: /rgr4ZPoO2ZR5ku9J3REC7HXaxS9DWUWzi6ZWc2VK+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:91:22:f8:3d:d0:a3:7c:a5:d3:b8:a8:54:1e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Validity
Not Before: Oct 20 06:01:41 2025 GMT
Not After : Oct 21 06:01:41 2025 GMT
Subject: CN=bd31c3f7a4c50423bb5806f806f075f7c78cd6ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f7:36:52:72:9a:db:ae:fa:19:11:cb:1b:bd:
5c:ac:55:7c:72:ec:42:43:e6:87:0e:d4:ee:7a:68:
51:d3:f1:bb:60:57:10:1c:fa:82:c9:08:b7:99:c1:
7e:ce:67:05:1b:42:ab:32:98:a7:be:b1:b9:ea:8d:
fb:92:10:38:8e:c4:03:c2:4a:6c:87:1e:e1:47:fd:
69:cf:a7:e7:8d:9a:17:2c:5c:1d:e7:19:e2:1e:62:
ed:45:1d:0a:db:d3:89:a2:76:df:ac:26:62:58:32:
20:3d:94:90:08:a3:9b:c8:5c:6a:13:25:22:d2:28:
65:53:75:85:27:13:6e:14:f1:04:dd:89:33:5a:c6:
60:43:46:29:6e:e7:ca:cf:22:4d:94:4d:c0:dc:d3:
cf:58:20:23:5a:44:db:94:c4:40:48:1b:96:92:f2:
6e:e7:38:ac:8b:ee:df:43:1c:b3:e8:c4:a8:44:0f:
7c:5f:33:0f:93:86:9a:25:e1:40:36:2c:dd:f7:1b:
53:31:97:8a:3c:4e:b8:b6:fa:f3:83:58:4c:51:83:
14:15:c2:d4:86:79:78:16:81:18:0f:a2:df:9e:10:
3d:9d:b6:eb:7d:5b:7e:e2:2d:ed:d3:03:47:b0:cc:
d9:b2:8a:5f:ce:dd:00:e3:9a:a3:7a:60:c4:db:96:
50:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:C3:F7:A4:C5:04:23:BB:58:06:F8:06:F0:75:F7:C7:8C:D6:AB
X509v3 Authority Key Identifier:
keyid:A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ff:21:3a:a8:7e:d4:12:e4:11:d9:77:b3:18:97:78:97:c8:
1b:6c:7c:6d:60:7d:72:d9:4d:b9:45:aa:57:4b:51:cb:f0:82:
29:2b:27:0f:f1:f5:d0:b8:e7:f3:6e:20:3b:8d:d4:56:b4:d1:
ed:4e:42:b3:a5:34:65:58:91:8e:dd:65:58:ef:44:0a:f6:0c:
c4:2f:be:82:a7:71:9c:37:21:49:d6:84:a7:6b:cd:80:48:23:
5e:91:9a:a9:02:eb:1e:71:78:9d:33:b1:7b:2e:7a:1a:67:f9:
a9:9d:5b:10:c5:b4:32:1b:c8:66:26:7f:8b:ae:d5:82:48:ba:
ff:c5:05:a9:7b:52:5f:8f:d7:41:4e:d8:d7:42:ae:3d:c2:ef:
f9:96:ce:e1:61:ab:5b:c1:84:3e:fd:b2:22:94:be:58:18:46:
c2:99:bd:67:3a:6f:60:65:b0:c8:26:0c:b6:2c:4c:67:a5:a5:
59:9f:e9:a3:1c:3e:94:e1:86:02:0b:c0:78:9b:34:6a:0c:ed:
9a:37:29:db:fc:6a:c1:32:b7:2f:95:f7:da:9a:26:19:48:e7:
9e:d4:ce:31:c1:3d:ef:a0:50:43:c2:8f:35:25:45:63:91:c5:
54:b2:c1:15:fb:59:af:08:e4:fd:4f:fd:4a:c7:57:7b:f7:81:
65:6d:f8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:55:29 2025 by rpki-client