Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: dYCsZJ0AHHgMNtK7aMgsxlo+tlKBgEFaDDchaW3ncyY=
Subject key identifier: E2:D9:16:55:66:96:04:F5:7C:9F:36:08:D1:F5:96:C6:75:DD:E1:BE
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0199FBEB8A614E40E5B3F9F9D6BF2121EAE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 125F
Signing time: Sun 19 Oct 2025 10:02:21 +0000
Manifest this update: Sun 19 Oct 2025 10:02:21 +0000
Manifest next update: Mon 20 Oct 2025 10:02:21 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: gRk4f3F53648G9xUcjpvU8fKfOQrkP0HSolSBMYsQ5Y=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:8a:61:4e:40:e5:b3:f9:f9:d6:bf:21:21:ea:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Oct 19 10:02:21 2025 GMT
Not After : Oct 20 10:02:21 2025 GMT
Subject: CN=e2d91655669604f57c9f3608d1f596c675dde1be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a6:67:1c:9d:41:40:0a:09:04:e2:3a:0a:b6:
26:47:54:84:c9:f4:d5:6b:ad:41:15:ae:ff:e0:a7:
65:5d:bf:51:3a:89:9e:e2:27:bf:1f:07:62:d5:b0:
9b:de:e2:22:7f:cf:3d:45:2c:ec:bc:a2:b1:7c:27:
04:73:4b:92:ed:d1:a5:19:ff:0a:21:96:a9:ff:3e:
16:2a:47:13:9d:fc:40:d5:d1:37:cd:38:53:14:0b:
9a:d9:79:51:6a:9e:5f:66:80:dd:73:09:a3:c3:83:
2e:8f:7c:06:0f:22:83:bb:d7:8c:f3:f6:dd:54:53:
fc:85:62:54:dc:39:88:77:19:62:63:93:d8:f7:8d:
f2:25:d7:14:f7:a3:cf:d5:3c:f0:cb:ab:15:bf:c1:
9d:c9:c6:0c:5b:7c:3e:54:c0:6d:a7:f9:23:8b:28:
21:bd:30:b0:93:35:a8:c1:37:32:a1:8c:82:f6:d6:
95:64:94:e3:f2:d5:0d:c3:d8:a7:1a:0a:76:41:b8:
e2:53:cd:b7:3c:33:09:ea:07:de:ad:2c:6e:e6:0e:
bc:a0:82:04:e7:e7:33:de:b6:5b:1c:7f:02:e8:32:
42:33:ef:11:94:3c:6c:1d:5b:55:ea:ee:52:71:3e:
41:53:6d:46:3e:27:59:02:6e:5c:3f:f6:b2:84:89:
4b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D9:16:55:66:96:04:F5:7C:9F:36:08:D1:F5:96:C6:75:DD:E1:BE
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e6:27:35:8b:a1:18:d7:bd:c6:e0:fd:e2:54:52:4b:1c:5d:
af:4f:3f:ed:f3:ac:07:86:14:57:66:b6:bb:1a:ea:ba:88:40:
2b:df:08:52:2a:43:57:78:d6:31:44:f3:83:15:5f:25:2b:0e:
87:63:25:9e:9b:90:55:d2:d4:51:29:67:5e:a2:97:f7:de:87:
81:93:9e:4a:32:88:4f:b9:0e:95:5f:8e:84:5e:61:99:88:a1:
4e:9e:c4:7c:9f:cd:9b:d3:70:65:f8:47:05:a1:11:a3:49:fd:
72:a1:2c:10:ae:ee:ea:18:32:3d:30:a2:76:c9:36:db:eb:3e:
bc:e9:4c:d7:70:cb:8f:87:33:cd:51:c2:18:35:3e:61:f3:bd:
5e:a0:6c:f2:db:7e:fd:e3:50:8f:fc:1c:6b:fd:1e:d9:75:ec:
0e:e6:0b:83:ca:7b:21:fc:d8:57:f5:c0:66:93:1d:b3:41:f8:
49:82:9e:aa:9d:ca:23:9c:5b:00:e3:0f:b7:f5:08:41:dc:05:
c1:c2:b4:eb:00:1d:40:6a:db:27:fd:ad:ac:4f:ac:37:d9:29:
43:cf:86:a4:b6:77:d4:59:3e:88:3c:d3:dc:a3:3d:6e:24:d0:
99:4a:bf:96:a0:f7:9a:5b:0c:4c:60:2c:e6:2d:91:df:ff:87:
22:ec:cb:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn764phTkDls/n51r8hIerlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2
YmJlZTIwHhcNMjUxMDE5MTAwMjIxWhcNMjUxMDIwMTAwMjIxWjAzMTEwLwYDVQQD
EyhlMmQ5MTY1NTY2OTYwNGY1N2M5ZjM2MDhkMWY1OTZjNjc1ZGRlMWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0aZnHJ1BQAoJBOI6CrYmR1SEyfTV
a61BFa7/4KdlXb9ROome4ie/Hwdi1bCb3uIif889RSzsvKKxfCcEc0uS7dGlGf8K
IZap/z4WKkcTnfxA1dE3zThTFAua2XlRap5fZoDdcwmjw4Muj3wGDyKDu9eM8/bd
VFP8hWJU3DmIdxliY5PY943yJdcU96PP1Tzwy6sVv8GdycYMW3w+VMBtp/kjiygh
vTCwkzWowTcyoYyC9taVZJTj8tUNw9inGgp2QbjiU823PDMJ6gferSxu5g68oIIE
5+cz3rZbHH8C6DJCM+8RlDxsHVtV6u5ScT5BU21GPidZAm5cP/ayhIlL7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOLZFlVmlgT1fJ82CNH1lsZ13eG+MB8GA1UdIwQY
MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt
ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5
LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH+YnNYuh
GNe9xuD94lRSSxxdr08/7fOsB4YUV2a2uxrquohAK98IUipDV3jWMUTzgxVfJSsO
h2MlnpuQVdLUUSlnXqKX996HgZOeSjKIT7kOlV+OhF5hmYihTp7EfJ/Nm9NwZfhH
BaERo0n9cqEsEK7u6hgyPTCidsk22+s+vOlM13DLj4czzVHCGDU+YfO9XqBs8tt+
/eNQj/wca/0e2XXsDuYLg8p7IfzYV/XAZpMds0H4SYKeqp3KI5xbAOMPt/UIQdwF
wcK06wAdQGrbJ/2trE+sN9kpQ8+GpLZ31Fk+iDzT3KM9biTQmUq/lqD3mlsMTGAs
5i2R3/+HIuzL3w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:16 2025 by rpki-client