Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
File: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft (raw, json)
Hash identifier: NJ9AfjLfuNTovyKujZ6Uqt1vT/b8Mwt0Wb2/eaVxzIs=
Subject key identifier: A0:50:CB:90:C7:7E:FA:C0:86:0F:6E:6B:11:9B:FA:35:BE:26:60:88
Authority key identifier: A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
Certificate issuer: /CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Certificate serial: 0199FE7D7A36A8AC9D7BC646A2A497F6886D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
Manifest number: 0FB4
Signing time: Sun 19 Oct 2025 22:01:00 +0000
Manifest this update: Sun 19 Oct 2025 22:01:00 +0000
Manifest next update: Mon 20 Oct 2025 22:01:00 +0000
Files and hashes: 1: JyWi5BFZcLnbfEzmECOIrpo9WqY.roa (hash: BGeaCEXgvEq5NNxKl+Ag2+yFWkLD9Y1n05TPe3xR8kw=)
2: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl (hash: qkxJS4JvXy3PSHJQ9l1Sth8+8t5bYRMLvN961fPZ0cM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:7a:36:a8:ac:9d:7b:c6:46:a2:a4:97:f6:88:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Validity
Not Before: Oct 19 22:01:00 2025 GMT
Not After : Oct 20 22:01:00 2025 GMT
Subject: CN=a050cb90c77efac0860f6e6b119bfa35be266088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:51:2d:1a:1c:6e:ea:94:4b:92:56:53:8e:
1d:5d:a6:f8:7c:72:5c:76:49:3a:3f:ca:72:e0:de:
3a:d1:09:06:c5:36:33:40:1f:67:32:09:40:0a:9d:
24:02:00:91:10:6f:1a:c8:a7:27:bb:bb:b1:29:75:
43:77:95:d8:88:d2:1e:6a:a3:ab:e7:1e:a4:fb:e6:
93:09:70:62:c4:0a:b1:5a:bf:bf:6f:f3:24:e4:3b:
16:31:6d:95:9e:1e:2d:b8:67:5d:85:a0:f3:04:22:
4a:71:5d:60:83:4b:56:f3:3c:e3:a5:e0:35:b8:f2:
39:98:af:fe:c5:1b:21:30:3d:f5:55:69:06:0d:3f:
d3:1d:03:33:bf:9c:0e:64:41:68:ee:d1:af:da:28:
e1:a6:4b:0c:d2:fa:44:c3:ac:97:5e:00:fd:75:da:
60:34:43:e3:09:6c:31:27:73:6e:33:c4:02:93:63:
26:f0:94:2c:3c:d2:dd:4c:bb:0d:a6:4d:a7:38:5c:
87:28:da:d6:22:96:7c:8b:bf:e9:9b:77:11:c0:2c:
86:52:29:4e:0a:8f:19:52:d2:eb:62:40:f2:17:0e:
64:fd:07:57:c8:6a:af:ca:9f:76:12:26:d6:69:b6:
f3:5c:9e:6e:98:a5:38:be:f2:d5:ad:78:52:cc:6c:
8d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:50:CB:90:C7:7E:FA:C0:86:0F:6E:6B:11:9B:FA:35:BE:26:60:88
X509v3 Authority Key Identifier:
keyid:A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:71:0e:01:e3:4c:bb:12:27:bf:5c:ef:03:61:04:a5:08:d8:
f2:d9:42:f6:18:7c:c0:a0:ce:35:28:94:8b:e7:1a:98:77:20:
71:6c:da:03:a0:0c:22:9e:8e:f5:c3:76:96:77:fa:06:6e:d7:
69:99:ff:bf:73:49:57:ba:ff:62:bc:a3:5a:15:e4:4c:fc:29:
a0:b1:e7:1c:28:59:4a:1f:ea:bc:0f:0f:a5:b8:4b:dd:c9:ee:
64:02:3f:4e:b0:cd:68:23:81:60:c0:23:11:79:bd:43:92:fd:
3e:b5:cc:d8:f5:45:8b:f8:e9:eb:ff:9a:e5:c8:d3:8c:4f:f4:
e1:a2:f2:a3:f7:05:cc:d9:32:97:b9:89:ae:f4:01:76:a8:af:
f2:d0:a4:37:ea:0f:52:a6:18:44:67:46:95:81:78:79:f4:a5:
a8:ee:06:9b:0d:fb:18:c5:28:34:77:49:b0:f6:67:ed:29:21:
da:54:da:a3:45:47:8f:1b:d1:ab:31:91:b9:72:e7:c7:4e:ae:
e4:aa:bd:71:2b:5e:6c:da:a5:7e:34:24:c6:e1:8b:a1:4b:7c:
8d:d6:a1:f2:6c:b6:a1:b6:5e:a1:92:5f:86:de:02:7a:f9:80:
7e:cd:ef:07:49:e2:cf:1c:0b:00:ee:ea:46:18:db:38:df:10:
4b:21:29:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:06:45 2025 by rpki-client