Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
File: oaLRWp2N_ezej-awwYBNCp7i5ig.mft (raw, json)
Hash identifier: 3f6xqQ6JGYzVIZ/lLD1wPBDAcRb4FLNchLlqjOiyUJM=
Subject key identifier: 90:D1:54:E2:42:BB:1C:11:ED:0D:F2:82:6A:4E:CF:E4:C9:EC:E9:4B
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 0199FB7CACA6FCD5E36CA33BC6836F1D51C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
Manifest number: 117C
Signing time: Sun 19 Oct 2025 08:01:15 +0000
Manifest this update: Sun 19 Oct 2025 08:01:15 +0000
Manifest next update: Mon 20 Oct 2025 08:01:15 +0000
Files and hashes: 1: g8PGSyPYHcwtTKtN52pgkwL2VLw.roa (hash: d/0R1T8TL/elS7S9V2dPYN7wq40xN73ObdYQKEckxT4=)
2: oaLRWp2N_ezej-awwYBNCp7i5ig.crl (hash: UCKCF78hMMKdQY7BMXCXLPMQ6A/q/N5JbN0UPsgOcE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:ac:a6:fc:d5:e3:6c:a3:3b:c6:83:6f:1d:51:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: Oct 19 08:01:15 2025 GMT
Not After : Oct 20 08:01:15 2025 GMT
Subject: CN=90d154e242bb1c11ed0df2826a4ecfe4c9ece94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:60:41:86:cb:0a:a8:f1:95:d3:26:ec:08:0c:
c8:9c:33:f2:2c:ac:24:38:f4:a2:fb:f1:4f:ed:ea:
e7:d4:56:14:85:ce:84:c9:35:07:08:bc:05:89:5a:
52:0d:ca:86:60:c0:03:ae:3c:69:23:09:ed:fe:e4:
f0:75:e6:c4:41:58:f9:97:c8:56:94:b3:51:52:2f:
77:19:79:86:8f:83:3b:e7:74:a8:67:7b:e7:a7:55:
c5:e0:2d:df:88:74:84:f6:62:22:7b:e0:fd:34:76:
c1:69:d7:02:02:53:40:42:a5:d7:6b:30:a2:6d:1b:
2d:32:f2:3a:fd:72:50:56:05:fa:db:a0:d7:24:66:
a6:63:ee:1b:01:4c:be:ea:0f:17:bb:a0:5f:31:66:
6f:6a:0d:e5:b1:b2:b1:4b:a9:35:79:94:2b:6f:10:
95:8b:fd:ef:ad:cb:28:4a:bb:d5:35:81:93:92:9a:
a4:d2:3c:87:0c:27:8a:21:f4:c3:d6:a5:30:d1:12:
7a:c5:63:ad:f7:c5:46:e1:49:12:dd:1e:ff:70:93:
47:ab:2c:ef:0e:06:17:b6:a6:ae:a0:af:b1:a4:51:
63:1a:bc:0b:af:26:d6:1c:0e:68:07:ce:ba:f6:33:
4c:55:1f:1a:3a:86:7a:b9:dc:7e:60:f2:63:b7:c1:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D1:54:E2:42:BB:1C:11:ED:0D:F2:82:6A:4E:CF:E4:C9:EC:E9:4B
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:27:49:fa:f3:57:bc:dc:aa:66:a2:e3:ea:fa:c5:45:81:34:
97:ae:69:13:4a:19:64:cb:04:6a:00:f1:74:2b:34:87:fa:68:
1b:a0:64:d8:4a:67:ee:04:8e:ec:5a:e4:58:4b:73:c2:8b:4f:
4c:df:5e:a7:43:e6:91:af:15:99:1b:ad:10:da:c3:b9:4b:4a:
a0:50:41:c0:c5:12:58:81:fe:36:f0:2e:ee:c7:36:aa:88:aa:
d5:a2:52:10:30:ac:0a:cd:c1:05:30:4a:72:d2:16:42:11:1d:
5e:06:0b:e1:cb:10:f6:92:56:64:47:63:ad:30:18:58:16:f8:
4a:bb:14:c5:c4:31:26:37:bf:b5:4d:a7:54:fa:09:87:ca:90:
2a:7f:55:40:cc:03:bd:23:15:8d:0f:38:50:06:5a:0a:fe:46:
29:ac:73:17:c5:46:d5:d5:c0:00:ed:c3:12:41:8f:16:1a:35:
50:b4:3b:6a:47:d4:2e:37:18:f1:d2:6e:53:d2:90:ed:a3:10:
d3:43:d4:5b:b0:82:a0:8b:50:ac:fb:3d:83:dc:dd:37:75:6b:
33:8d:f3:79:c6:5c:8e:19:47:ae:bc:ae:dd:75:80:02:41:89:
0e:0c:63:7a:ac:31:a7:f7:af:a5:36:9f:ed:e9:2c:b1:e7:55:
cd:e2:9b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:56 2025 by rpki-client