
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: QXCf501fQLS5euMTH1uyFe5FJmYfI6RQ7jd+bmGYqwo=
Subject key identifier: C5:9C:C4:49:8B:51:94:4C:0F:DD:CA:38:86:E3:7C:78:6A:E3:3D:7A
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0199FEB52764786EE163159C55D6C7EE0B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 16EB
Signing time: Sun 19 Oct 2025 23:01:48 +0000
Manifest this update: Sun 19 Oct 2025 23:01:48 +0000
Manifest next update: Mon 20 Oct 2025 23:01:48 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: E9SHR0/GambI2Fq3/zHDeWHau8RvuxHEfy2Ev9L0nSg=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: W0I5WxQMrOu6TANHFOGcvsplCew.roa (hash: as8TMPog4cNQstxcdryoIwh9zVe/CWxue8zaTtgppZI=)
8: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
9: qwwHopD_0G8M1Je41mhruAKGMpE.roa (hash: aHrYRaDs2jeGMQeUQIc+2frl2SVKEgdlFJTzXtA4yQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:27:64:78:6e:e1:63:15:9c:55:d6:c7:ee:0b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Oct 19 23:01:48 2025 GMT
Not After : Oct 20 23:01:48 2025 GMT
Subject: CN=c59cc4498b51944c0fddca3886e37c786ae33d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:aa:8d:cd:c0:ec:62:b3:4d:2f:cd:6d:9f:55:
cc:15:5e:13:70:ce:2e:0b:33:e9:fe:bc:31:2b:42:
f4:9c:f9:fe:58:42:2e:0e:cd:fc:ae:21:29:86:a8:
0a:a7:73:fe:d7:fb:82:db:64:2e:1c:6f:66:95:bc:
1f:9b:9a:61:e2:15:cf:9c:38:8b:7b:83:c1:16:a0:
d8:ee:4f:30:25:53:ee:01:04:f2:a5:9d:12:39:b4:
32:19:49:e0:e9:70:55:b3:f5:be:55:72:31:92:39:
bd:0f:b6:0e:f0:4f:33:a0:28:4d:40:c2:ec:4f:bb:
cd:e0:70:20:05:10:aa:d8:d9:f2:a1:a2:a3:8f:24:
34:e8:86:a1:31:ec:c8:2b:fb:63:2f:9f:94:f0:f8:
21:ed:88:b9:ee:f6:14:c2:01:bf:7b:70:51:92:d4:
3b:1f:da:1e:f4:b5:db:f1:85:d8:f8:47:1c:b0:03:
a0:dc:93:68:1d:87:39:fd:ff:cd:13:83:07:f5:34:
67:73:39:66:6d:f2:e5:20:fa:a8:82:7d:d9:16:10:
9f:19:c4:20:e5:7c:cc:9d:3c:09:9c:9f:a4:c0:32:
7c:f2:51:43:03:30:ad:32:45:c3:cc:4a:ab:3d:cd:
fa:2a:59:6e:cb:c4:c4:61:e4:af:0b:27:26:c9:7b:
9d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9C:C4:49:8B:51:94:4C:0F:DD:CA:38:86:E3:7C:78:6A:E3:3D:7A
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:e5:1d:26:61:0d:15:a8:ab:ff:92:45:95:ec:7d:d1:5c:2b:
92:82:53:6a:ed:2e:71:14:a8:d2:da:c6:2f:21:c2:28:8e:19:
f4:53:ec:63:76:12:27:7b:48:b5:a4:a4:56:2f:72:cd:1d:d4:
aa:2a:c7:ed:62:22:2b:01:a9:65:62:94:5c:6f:f0:40:ec:a1:
ad:39:47:3b:53:f7:ce:0c:fd:cd:7f:a3:d6:18:ce:e8:74:ad:
55:93:86:a1:b0:45:ca:72:71:3e:67:2a:cc:2b:22:03:69:1d:
e6:43:13:6b:06:2b:ed:e8:1a:77:6a:5c:67:31:77:ec:b1:30:
ac:5d:90:02:05:51:d1:6d:5e:f4:dd:b5:e5:0e:89:82:5a:db:
35:5c:47:2a:8e:cd:a1:c6:57:d1:00:33:43:4b:c2:ba:e0:16:
2d:8c:d2:65:f3:d3:66:1a:46:6b:dc:16:71:3e:82:10:e0:58:
b9:9b:80:e3:c6:d6:8c:94:8f:01:7f:c8:83:5c:ff:86:be:23:
f8:e7:3c:a5:ae:94:81:94:82:4d:87:9a:72:98:33:d4:6b:62:
ce:dc:f8:29:23:64:50:47:cf:7a:69:68:ee:d4:a0:11:b6:0b:
62:52:d5:d4:5c:ba:ef:96:fa:24:c3:6d:77:e3:a5:7c:47:4f:
4c:1d:82:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:49:35 2025 by rpki-client