Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: fCVDIikUh619UiraJjdu0HdnRU8JC2OTaCR9BZI28X8=
Subject key identifier: F6:CE:E2:B7:5C:0E:5A:05:92:0E:6E:49:CC:95:F6:D0:F1:71:63:22
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019A047F3F20F7CBBF2874611CACA4EFA325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 16EE
Signing time: Tue 21 Oct 2025 02:00:39 +0000
Manifest this update: Tue 21 Oct 2025 02:00:39 +0000
Manifest next update: Wed 22 Oct 2025 02:00:39 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: CxKe+6cK8xtNLTQFuy6pb61G7/VtKQ6qjLZ3AR7Xg1A=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: W0I5WxQMrOu6TANHFOGcvsplCew.roa (hash: as8TMPog4cNQstxcdryoIwh9zVe/CWxue8zaTtgppZI=)
8: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
9: qwwHopD_0G8M1Je41mhruAKGMpE.roa (hash: aHrYRaDs2jeGMQeUQIc+2frl2SVKEgdlFJTzXtA4yQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:7f:3f:20:f7:cb:bf:28:74:61:1c:ac:a4:ef:a3:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Oct 21 02:00:39 2025 GMT
Not After : Oct 22 02:00:39 2025 GMT
Subject: CN=f6cee2b75c0e5a05920e6e49cc95f6d0f1716322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:d2:f5:ea:45:d4:d0:35:b1:c6:55:38:c0:
a6:49:6a:26:ce:f4:d9:c1:85:e7:c8:51:e2:90:00:
1a:49:f4:c9:69:cb:68:2c:6e:16:1f:64:98:ec:2c:
c6:06:d4:a8:29:2d:3b:91:ae:b4:5c:47:e9:ec:44:
c1:0b:d4:e9:6e:bb:2c:dc:07:29:b4:98:44:e1:dd:
67:1a:aa:47:da:31:52:0b:6f:4c:59:0f:f4:36:a1:
3b:3a:7f:46:95:d9:93:8a:e4:bc:08:d9:7c:55:be:
eb:bb:9f:72:03:1d:ad:73:61:06:3e:a2:7b:f0:4b:
85:36:40:c3:35:1c:4b:34:71:c7:99:15:f0:62:93:
6f:6a:22:8c:7d:48:62:87:b0:5f:f0:5a:ed:1d:37:
69:0e:d8:b0:31:39:a2:7e:6f:8b:bc:c6:d1:2a:1e:
fd:43:79:e9:51:88:6f:8b:00:bf:0d:be:ab:e6:fb:
cc:3c:bf:e1:81:c1:20:bc:cb:6c:59:7d:e8:05:e9:
d9:8d:4a:78:ca:38:9f:84:0e:4a:a1:4d:1e:42:05:
ef:cf:1b:c8:ad:d2:f9:4d:ee:cf:dc:47:bd:19:b2:
0d:7a:25:f9:f5:36:7d:04:91:05:4c:38:12:58:9b:
a8:71:9d:08:4a:38:ce:3d:25:27:a5:f0:05:14:48:
32:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CE:E2:B7:5C:0E:5A:05:92:0E:6E:49:CC:95:F6:D0:F1:71:63:22
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:21:ba:65:2d:79:fe:91:4b:d0:19:2b:45:64:0a:91:48:2c:
c0:50:53:f7:1a:2a:8f:3d:20:a1:fc:3a:6e:79:0f:72:6d:29:
5f:a6:0e:b8:12:7e:8e:d9:17:84:36:bc:cb:f2:9a:40:13:9d:
83:9d:19:c5:76:25:55:2f:eb:80:13:69:c9:25:21:29:b3:a1:
0b:2e:bd:43:84:31:db:c1:c9:35:e9:36:bb:06:bb:19:76:b9:
2a:76:fd:33:5e:fa:a1:82:6c:54:36:c1:71:c9:b3:2a:25:2e:
df:9d:da:32:d3:18:a9:79:e8:98:0f:a5:9a:17:87:f9:d5:94:
82:a7:3b:df:95:c9:a2:20:f0:83:e0:83:ae:ef:6d:95:1c:96:
b2:e0:19:30:ab:f2:16:29:dc:ac:74:6f:46:28:d8:26:9a:cf:
ae:11:b8:55:92:42:38:fa:f4:eb:2c:9b:e9:68:29:14:6b:cc:
57:03:a6:d7:c4:f4:db:32:72:bc:5c:3a:f0:b6:19:da:64:15:
04:3a:ed:ba:26:3a:3b:5c:53:60:50:2d:a8:53:2c:04:32:17:
80:f1:23:eb:70:13:41:ee:00:e1:be:6c:79:48:88:03:a4:8b:
18:1d:c3:6d:ee:79:7f:03:af:ab:58:a4:a6:eb:7d:8d:2a:8d:
21:ea:02:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:19:46 2025 by rpki-client