Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: mnRMV+kCqEVRB1oORwBrd/p4OtyaWdsESjsMpCiQOxs=
Subject key identifier: 64:6B:E9:A6:EF:C9:9A:E9:C6:5D:23:EF:77:30:1B:53:78:99:CE:7A
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 0199FE471DE3702D1554F350EE039DFC0C92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 0670
Signing time: Sun 19 Oct 2025 21:01:37 +0000
Manifest this update: Sun 19 Oct 2025 21:01:37 +0000
Manifest next update: Mon 20 Oct 2025 21:01:37 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=)
6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: 3x4K0rt3A63r/y9gei+F0aj2lbEB42wKo73s8na3lvc=)
9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:1d:e3:70:2d:15:54:f3:50:ee:03:9d:fc:0c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Oct 19 21:01:37 2025 GMT
Not After : Oct 20 21:01:37 2025 GMT
Subject: CN=646be9a6efc99ae9c65d23ef77301b537899ce7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:09:86:1c:d3:7e:cd:99:a9:db:59:82:ee:
ac:21:eb:d4:81:72:13:c0:6b:0f:02:6f:85:fa:a2:
a3:d9:6a:c3:44:dd:8f:c8:ac:b6:c6:ed:c9:13:c5:
ca:c9:8a:e2:51:e7:1b:f4:ab:ce:e0:c2:9f:f8:b9:
60:d1:60:1a:25:cf:c7:3b:14:49:f3:3b:4a:aa:03:
7b:61:c4:58:ad:de:98:f7:35:b3:d7:dc:e1:4a:01:
9a:54:f9:17:33:18:80:c1:46:4f:19:48:6b:cf:35:
31:cb:c4:0f:14:bb:31:83:25:72:4f:66:b1:29:f1:
c2:f3:d4:00:0d:e9:23:c9:3d:9a:fb:dd:ba:eb:4a:
cc:18:b0:d2:38:0d:70:a6:3d:46:73:df:9d:82:a7:
57:99:f6:45:9d:cd:1f:78:49:98:ed:cd:64:c2:b8:
ce:dd:ed:57:35:9a:80:a5:6c:d8:cd:c8:5b:36:dc:
18:95:4e:dd:f0:50:16:53:00:7e:4e:62:c6:97:cb:
27:0e:f8:94:60:88:3f:29:b4:07:18:fc:2a:5a:d5:
7c:fa:eb:df:69:c2:5a:6a:2e:5e:52:8a:a8:f8:8f:
dd:cb:52:e1:b4:1f:35:df:99:22:18:55:be:6d:c0:
04:1d:05:38:6f:19:05:c9:24:85:5d:93:08:34:3d:
50:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6B:E9:A6:EF:C9:9A:E9:C6:5D:23:EF:77:30:1B:53:78:99:CE:7A
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e2:52:8f:6e:f4:7e:54:04:bc:23:a3:09:5d:51:94:09:7c:
90:24:1d:61:d0:ca:1b:0b:6a:bd:54:dd:b7:90:a4:36:de:5c:
37:fc:d3:ec:97:19:93:0a:42:fe:c4:ae:9a:38:4c:be:f0:4d:
eb:dc:50:31:d9:1a:a9:b4:b3:01:92:ec:a7:c9:9f:3c:7f:0d:
dc:71:61:15:9b:3c:74:d1:6f:89:25:ce:c0:14:c2:cd:45:a7:
99:06:2a:a7:00:25:27:18:28:d3:66:5c:65:6d:21:a4:95:4b:
ec:30:03:05:27:a0:ee:84:0b:0e:4a:38:79:73:44:1f:8e:d6:
f7:9a:11:82:32:6a:d9:27:b0:08:f0:cb:05:05:61:dd:bd:0b:
79:84:5e:d7:dd:11:ca:bb:4f:06:0e:03:53:0b:28:dc:cb:b7:
82:6b:eb:59:4c:5f:0c:f4:e5:e6:16:ff:36:30:7c:78:4c:ab:
2b:a4:5d:f7:12:2b:df:46:a6:86:18:d4:5b:8e:27:e2:67:d0:
25:21:5a:27:d1:0e:de:7f:9f:2f:a3:7f:e1:58:2f:2d:96:90:
89:fd:3b:e6:f9:33:79:cb:40:88:17:6d:75:d7:ee:f8:80:f0:
2a:81:18:f4:5c:5e:93:fd:4a:e6:6e:85:cb:d7:16:cc:66:d6:
c0:eb:90:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:07:08 2025 by rpki-client