Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: tXej4ZqpuCExU8RouDCOdV7Qdsxl0Psgm8HBoiR0CYs=
Subject key identifier: F5:04:3C:10:A3:19:66:2D:F3:26:32:09:14:D8:2C:20:AE:CD:00:B6
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 0199FF5951995688BAB0B7FC763B30A71625
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 01E9
Signing time: Mon 20 Oct 2025 02:01:07 +0000
Manifest this update: Mon 20 Oct 2025 02:01:07 +0000
Manifest next update: Tue 21 Oct 2025 02:01:07 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: 9TL/nEMjOJVEa3slcLKoiC47oDC7m9fh44Qqh+45+hI=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:51:99:56:88:ba:b0:b7:fc:76:3b:30:a7:16:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Oct 20 02:01:07 2025 GMT
Not After : Oct 21 02:01:07 2025 GMT
Subject: CN=f5043c10a319662df326320914d82c20aecd00b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:76:42:7c:d6:ed:bc:86:19:5d:89:bc:03:29:
48:d2:e1:58:ed:f6:fd:08:b3:90:15:09:d6:1f:ad:
3c:74:5f:fa:92:fc:b6:99:5f:8d:b9:de:87:b6:74:
a3:8e:df:a0:eb:97:ca:79:3f:c1:e7:95:5d:16:1c:
bf:1e:a6:63:4b:98:ab:82:82:1c:70:42:ec:53:f0:
13:b3:59:0e:1f:ff:46:46:a9:5b:d3:a6:59:d7:0b:
02:ab:5c:c3:b8:62:a0:92:f1:83:a8:4e:47:b3:47:
7d:9f:84:1b:75:a4:8d:4a:81:f1:58:9d:36:7c:e9:
5f:d1:4b:f8:a9:0e:29:02:96:00:99:f7:a4:26:5c:
71:e5:0c:78:8a:61:a7:c2:bf:c1:eb:b6:2c:4b:5f:
c7:60:2a:a1:fe:14:33:57:2b:ff:4f:42:5a:d8:9e:
0c:0e:d6:72:06:88:f5:e5:f5:8f:85:03:9e:a4:d2:
3e:de:66:46:c4:bc:9e:53:bd:38:bc:10:d1:48:6d:
2d:12:8e:0f:e6:c7:30:2a:cc:e3:c6:f9:e5:18:20:
f6:5a:b3:70:8c:d3:ab:23:17:c2:bb:77:d8:3c:8f:
0e:85:5d:96:0a:7d:b9:6f:46:df:24:1f:33:9c:03:
cf:ed:ec:18:2d:98:10:44:28:73:74:d1:6b:32:83:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:04:3C:10:A3:19:66:2D:F3:26:32:09:14:D8:2C:20:AE:CD:00:B6
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:64:c8:d2:bd:75:51:46:77:c6:9f:c2:29:d9:9d:dd:71:ae:
ee:a9:85:2f:86:79:0c:8f:4f:08:47:6e:89:1d:12:f1:36:b9:
ca:a6:80:d1:f1:55:40:a6:36:90:49:e6:86:c8:e3:54:59:cb:
b0:23:d1:7a:12:8a:9d:68:ca:c5:53:51:db:8d:0f:93:90:24:
d0:66:c2:1d:d0:c6:d0:19:81:59:fb:4d:3b:1c:ae:fd:4a:26:
1f:59:24:28:08:4c:43:9a:02:33:13:90:08:6f:f9:b0:21:e5:
fa:a6:7b:75:fe:29:94:05:39:2a:0b:64:bf:98:1b:e1:fc:96:
72:03:89:6f:27:6a:91:b2:0b:6f:58:2f:21:ba:d1:ce:da:08:
97:23:1b:c1:9d:0c:e7:5d:3a:a5:4d:39:5d:53:cc:0d:ff:45:
ee:0a:3c:0c:02:f5:95:64:d1:23:98:fd:ec:07:42:05:81:ba:
f0:08:a9:a0:56:56:e6:00:f7:1d:49:b4:96:f0:85:04:67:f0:
08:68:9b:90:1d:17:76:30:4a:c6:90:a2:f4:9b:19:bf:7f:39:
f1:58:71:f9:f1:18:44:b8:22:d2:bb:c9:3c:04:e9:3d:5b:d1:
43:c3:5a:25:60:39:b5:69:6f:5e:3f:8b:f8:c7:3c:ce:e6:0d:
3a:5b:70:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/WVGZVoi6sLf8djswpxYlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2
NDRkZTQwHhcNMjUxMDIwMDIwMTA3WhcNMjUxMDIxMDIwMTA3WjAzMTEwLwYDVQQD
EyhmNTA0M2MxMGEzMTk2NjJkZjMyNjMyMDkxNGQ4MmMyMGFlY2QwMGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXZCfNbtvIYZXYm8AylI0uFY7fb9
CLOQFQnWH608dF/6kvy2mV+Nud6HtnSjjt+g65fKeT/B55VdFhy/HqZjS5irgoIc
cELsU/ATs1kOH/9GRqlb06ZZ1wsCq1zDuGKgkvGDqE5Hs0d9n4QbdaSNSoHxWJ02
fOlf0Uv4qQ4pApYAmfekJlxx5Qx4imGnwr/B67YsS1/HYCqh/hQzVyv/T0Ja2J4M
DtZyBoj15fWPhQOepNI+3mZGxLyeU704vBDRSG0tEo4P5scwKszjxvnlGCD2WrNw
jNOrIxfCu3fYPI8OhV2WCn25b0bfJB8znAPP7ewYLZgQRChzdNFrMoNNiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUEPBCjGWYt8yYyCRTYLCCuzQC2MB8GA1UdIwQY
MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt
ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3
LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANmTI0r11
UUZ3xp/CKdmd3XGu7qmFL4Z5DI9PCEduiR0S8Ta5yqaA0fFVQKY2kEnmhsjjVFnL
sCPRehKKnWjKxVNR240Pk5Ak0GbCHdDG0BmBWftNOxyu/UomH1kkKAhMQ5oCMxOQ
CG/5sCHl+qZ7df4plAU5Kgtkv5gb4fyWcgOJbydqkbILb1gvIbrRztoIlyMbwZ0M
5106pU05XVPMDf9F7go8DAL1lWTRI5j97AdCBYG68AipoFZW5gD3HUm0lvCFBGfw
CGibkB0XdjBKxpCi9JsZv3858Vhx+fEYRLgi0rvJPATpPVvRQ8NaJWA5tWlvXj+L
+Mc8zuYNOltwHw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:47:03 2025 by rpki-client