Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: xjr5woJIdcoTstjWozaJwp/4Tdq0oQuH5sSSb0bm9aE=
Subject key identifier: 70:BE:66:C0:41:52:44:42:DA:26:D5:F3:A3:1C:72:F8:B6:C1:B0:94
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 0199FC8F4C94B9F05EE2FFD8768DA859D257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 042C
Signing time: Sun 19 Oct 2025 13:01:13 +0000
Manifest this update: Sun 19 Oct 2025 13:01:13 +0000
Manifest next update: Mon 20 Oct 2025 13:01:13 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: GxlMdcI4AgF/jCgPJ6tb5VuqYu/voDpkqpyzTYi4JSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:4c:94:b9:f0:5e:e2:ff:d8:76:8d:a8:59:d2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Oct 19 13:01:13 2025 GMT
Not After : Oct 20 13:01:13 2025 GMT
Subject: CN=70be66c041524442da26d5f3a31c72f8b6c1b094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:60:ad:cd:71:48:23:ca:20:5d:34:7f:5b:06:
66:a3:06:b8:0d:5a:06:dd:24:af:bc:fc:5d:b9:11:
b0:14:9c:4b:3b:fd:51:82:9a:74:9a:ba:ef:e8:5c:
17:b5:bc:29:ca:3c:e6:59:78:ab:90:78:46:f2:4c:
ad:36:3f:94:2b:e2:90:f2:3a:ba:ce:5e:4b:c7:98:
5e:45:2e:0d:f6:c5:b4:eb:65:9f:2f:72:0c:c3:f2:
21:8a:9b:1f:00:ed:9e:2f:bb:a7:4a:f1:2a:31:9f:
d4:af:be:ed:f9:b9:1c:b7:d6:94:c4:40:2b:eb:d3:
29:23:e1:db:a9:77:dd:1a:2b:7e:90:9f:c7:3c:7a:
6f:3f:4e:e3:54:01:1b:ac:69:89:bf:c4:00:43:ea:
38:75:36:9a:42:fc:18:e1:9e:4f:4a:f1:9a:92:af:
0c:1b:6e:75:89:59:7d:30:49:67:0a:2d:2d:d9:b0:
0d:88:b4:d1:92:d0:1f:2f:8c:74:81:a3:73:88:0a:
b8:a5:5e:1a:e3:28:b5:f9:a9:58:8e:4b:45:41:87:
85:62:59:64:7a:52:b4:13:70:53:6f:8a:81:00:3c:
8f:98:23:66:55:a2:d7:9c:e6:67:e6:88:0e:ad:28:
84:f2:9c:2f:f0:0e:72:5c:7f:27:f4:63:f9:e8:67:
a5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BE:66:C0:41:52:44:42:DA:26:D5:F3:A3:1C:72:F8:B6:C1:B0:94
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:07:e9:aa:1c:00:ac:f6:f0:03:33:13:09:17:0b:5d:92:eb:
6c:e3:8e:6e:ac:11:be:0d:0c:ec:a8:99:92:4b:8c:39:b6:f4:
22:3a:65:31:ca:57:06:ff:10:8d:9d:47:35:a0:f2:c0:dd:0b:
01:3a:9a:2c:6f:fe:60:9e:ea:21:8a:e8:19:28:e5:25:3d:25:
7e:04:0f:be:c4:42:f6:11:c1:4e:f2:5b:37:95:f8:95:8a:2a:
92:69:a1:3d:d1:ec:99:19:63:7f:ca:e9:5e:85:cf:61:e0:2c:
c4:4f:d7:8f:d6:dd:f0:f2:3e:84:2f:ca:09:52:50:fb:2a:74:
6b:8c:08:d6:06:d8:f7:3b:1e:93:db:ad:ee:d5:47:0e:f0:d9:
b8:cf:d2:44:33:81:88:c3:f0:d9:84:b6:5a:0c:46:73:2d:f8:
c7:d5:eb:44:7b:73:1b:7c:94:d1:dd:55:01:5f:36:6d:ea:b2:
d5:33:b3:f3:17:95:51:7b:53:40:c6:15:68:ad:5e:38:d7:00:
4b:e8:b4:ab:6e:b1:9b:aa:24:e2:03:a9:62:fa:6d:2b:e3:80:
42:d7:b8:c4:42:9b:ae:61:cd:d3:6f:66:27:b1:3f:9a:85:5e:
2e:7b:1c:73:23:1c:4a:76:82:fd:91:57:27:71:20:39:3c:b8:
51:c1:a7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:48 2025 by rpki-client