Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: U8rHieFeY7huE7f878nCIB3nkFkNVU9G6yE3JS3guFo=
Subject key identifier: 94:02:67:B5:72:CF:BF:77:AD:D2:37:78:29:39:0E:DB:28:05:8A:B5
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 0199FCC6AD87F4B5BA446954F5F770DF6A48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 01F8
Signing time: Sun 19 Oct 2025 14:01:42 +0000
Manifest this update: Sun 19 Oct 2025 14:01:42 +0000
Manifest next update: Mon 20 Oct 2025 14:01:42 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: jxDl2bYt/6Dvpn8p9xk14XIDtOPGyZ6eyk6yVjmaUQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:ad:87:f4:b5:ba:44:69:54:f5:f7:70:df:6a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Oct 19 14:01:42 2025 GMT
Not After : Oct 20 14:01:42 2025 GMT
Subject: CN=940267b572cfbf77add2377829390edb28058ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:31:00:65:d9:fd:0c:34:90:7f:dc:71:b1:3b:
63:94:0b:d0:3a:c6:b7:1d:f0:7d:d1:01:26:d1:a9:
e2:8e:98:42:45:03:14:05:de:c2:5d:b3:76:f2:44:
50:0f:dd:9b:a7:67:ca:72:df:d3:00:4d:96:1f:6c:
97:2b:46:e1:02:b2:20:72:b1:f7:d4:9a:cf:14:48:
77:8b:a3:e6:42:35:bd:c6:d5:a4:cd:ff:03:f6:07:
05:77:4b:b8:b5:78:6a:54:0c:12:0a:60:48:80:be:
7f:d1:c1:b6:74:53:ad:44:d2:03:57:44:e1:e8:fc:
ad:ca:78:dd:f5:07:bf:85:ab:fd:98:b5:1f:ef:44:
e1:57:a0:3f:90:ce:35:25:76:03:ce:2f:a4:35:da:
9b:76:6c:82:2d:de:31:38:42:53:16:a6:41:81:e1:
7e:32:65:f4:8c:a2:64:6d:1e:39:d9:e9:0b:f8:73:
b9:2c:02:83:45:a4:f6:4e:7f:67:5e:81:88:99:a2:
9d:09:bb:17:d6:2f:ac:f1:00:e3:16:4a:30:8a:62:
ad:a4:10:94:d9:c5:b5:38:0d:4f:ea:e9:04:d0:3b:
e7:c8:62:73:2c:a9:ae:09:03:7c:3b:04:96:e6:aa:
fb:07:2d:18:2e:79:90:1a:2b:5d:cc:82:cd:d5:82:
d0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:02:67:B5:72:CF:BF:77:AD:D2:37:78:29:39:0E:DB:28:05:8A:B5
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:70:0a:f0:a4:18:b9:e6:48:8a:86:38:d1:d0:11:73:23:7d:
55:f8:cb:44:4d:0f:55:46:f6:bd:4c:0d:ac:db:fc:9a:7f:4b:
8b:3e:df:19:84:44:18:49:ed:3d:cf:f1:34:5b:4c:2a:5c:3e:
04:2e:01:3d:02:96:f1:7c:9b:e5:08:fc:a6:44:fc:9b:fa:4b:
18:80:64:19:3a:85:4e:80:7d:f5:9c:7a:59:99:eb:80:fc:0d:
54:93:c8:b1:54:75:98:a3:88:52:c6:99:ee:77:c0:c9:83:0e:
52:a6:05:56:5f:65:a3:11:8b:1d:fa:4b:0b:e8:28:39:86:8d:
b5:84:fc:78:b8:16:78:05:6d:af:a0:b8:ea:5f:d6:38:d5:6a:
d6:d0:ee:13:2a:f4:0a:c8:ed:9a:b6:51:37:1c:54:20:16:7b:
69:7f:e3:e5:e2:74:65:20:e2:3f:9e:60:8c:6f:2c:b6:67:e9:
db:72:99:e9:65:d7:5f:63:ea:e0:65:12:97:a7:3f:f9:28:d2:
ff:aa:10:d6:d5:d0:b1:ef:80:63:00:18:cd:20:14:8f:4e:74:
a9:8e:34:e2:6b:8a:bd:8b:2c:66:99:bc:fb:e0:c4:19:ef:e5:
6f:ac:cd:42:d7:28:52:77:b2:26:56:c8:0a:ca:9f:fc:09:14:
30:cb:e1:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xq2H9LW6RGlU9fdw32pIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZGY4ZTAwMzdmMWFlODJmN2JlMjIzNWFlNjEyYzQwMTBm
NmZlOTEwHhcNMjUxMDE5MTQwMTQyWhcNMjUxMDIwMTQwMTQyWjAzMTEwLwYDVQQD
Eyg5NDAyNjdiNTcyY2ZiZjc3YWRkMjM3NzgyOTM5MGVkYjI4MDU4YWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jEAZdn9DDSQf9xxsTtjlAvQOsa3
HfB90QEm0anijphCRQMUBd7CXbN28kRQD92bp2fKct/TAE2WH2yXK0bhArIgcrH3
1JrPFEh3i6PmQjW9xtWkzf8D9gcFd0u4tXhqVAwSCmBIgL5/0cG2dFOtRNIDV0Th
6Pytynjd9Qe/hav9mLUf70ThV6A/kM41JXYDzi+kNdqbdmyCLd4xOEJTFqZBgeF+
MmX0jKJkbR452ekL+HO5LAKDRaT2Tn9nXoGImaKdCbsX1i+s8QDjFkowimKtpBCU
2cW1OA1P6ukE0DvnyGJzLKmuCQN8OwSW5qr7By0YLnmQGitdzILN1YLQfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQCZ7Vyz793rdI3eCk5DtsoBYq1MB8GA1UdIwQY
MBaAFLHfjgA38a6C974iNa5hLEAQ9v6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEt
MTljYTUwY2YzNGFiLzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEtMTljYTUwY2YzNGFi
LzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZnAK8KQY
ueZIioY40dARcyN9VfjLRE0PVUb2vUwNrNv8mn9Liz7fGYREGEntPc/xNFtMKlw+
BC4BPQKW8Xyb5Qj8pkT8m/pLGIBkGTqFToB99Zx6WZnrgPwNVJPIsVR1mKOIUsaZ
7nfAyYMOUqYFVl9loxGLHfpLC+goOYaNtYT8eLgWeAVtr6C46l/WONVq1tDuEyr0
CsjtmrZRNxxUIBZ7aX/j5eJ0ZSDiP55gjG8stmfp23KZ6WXXX2Pq4GUSl6c/+SjS
/6oQ1tXQse+AYwAYzSAUj050qY404muKvYssZpm8++DEGe/lb6zNQtcoUneyJlbI
Csqf/AkUMMvhFQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:44:35 2025 by rpki-client