Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: yD4uGJH2rNtyzceod1HgU0FPjdzHfyOqcRx7/jvuwLE=
Subject key identifier: FD:7A:97:B7:1B:B4:96:77:28:B7:2E:B8:44:88:41:42:D0:C9:85:47
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0199FB0F0E5C767EED8DB7B1C0FC9182397B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0D1E
Signing time: Sun 19 Oct 2025 06:01:31 +0000
Manifest this update: Sun 19 Oct 2025 06:01:31 +0000
Manifest next update: Mon 20 Oct 2025 06:01:31 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 9l0Deq2HxInIzGza0l8VsrShXHgNF7e5WQat4avnegk=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:0e:5c:76:7e:ed:8d:b7:b1:c0:fc:91:82:39:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Oct 19 06:01:31 2025 GMT
Not After : Oct 20 06:01:31 2025 GMT
Subject: CN=fd7a97b71bb4967728b72eb844884142d0c98547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4e:00:be:27:47:53:94:d5:fe:58:b5:10:50:
5a:e5:51:66:f2:d1:41:93:16:3f:7e:7d:b5:1f:c6:
ec:2b:8a:8c:9a:c0:15:af:90:70:53:50:52:97:24:
c3:5f:25:c0:8e:bc:93:8a:e4:a7:17:53:63:55:8c:
3e:38:15:ad:d4:f6:ab:c2:99:05:07:32:ec:eb:16:
f8:bf:62:14:53:32:04:a3:5d:e1:79:89:52:27:0b:
e3:00:41:96:31:94:47:a9:fd:19:4b:fe:39:bc:09:
a6:15:06:ad:e9:c5:38:b9:b1:b6:eb:d1:ae:1b:63:
24:a8:8a:7e:81:94:ec:20:df:e4:c5:88:90:9c:f6:
a0:bc:8e:00:5f:25:71:53:ec:98:70:88:13:24:9a:
6e:39:8e:dd:6a:a7:20:c9:27:4d:35:b6:f9:45:11:
0d:c7:b4:2e:80:32:8e:57:ca:cf:3a:4f:66:77:12:
a8:eb:e1:94:04:58:fd:d7:f4:04:f5:1d:ca:a8:9b:
f6:f2:32:1c:7f:1c:ce:bb:d2:03:50:1c:26:c1:cf:
2c:86:62:1f:b7:3b:6b:9f:4f:3f:79:a9:ef:f4:6b:
53:94:e7:e8:6d:45:f2:54:07:69:7c:f3:a4:6c:21:
df:59:2b:fc:69:bf:75:2e:53:2a:a5:fb:b1:29:0b:
d7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7A:97:B7:1B:B4:96:77:28:B7:2E:B8:44:88:41:42:D0:C9:85:47
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0f:47:aa:0a:e3:ef:a6:81:34:58:ea:a0:cf:7a:fc:9d:52:
5f:d9:07:99:ec:a6:c7:4d:e8:83:8c:cf:80:13:84:e8:e0:94:
cc:43:ae:f4:99:d2:84:fb:cb:f9:e4:0f:f4:23:2c:b3:2f:e8:
27:a9:76:b9:3e:e7:c1:1c:13:18:6f:66:0b:de:63:54:7e:3b:
22:38:fd:da:18:40:23:35:9c:79:f8:30:20:45:35:49:ec:f7:
6b:83:fe:f9:84:37:fe:3f:d9:0d:f7:30:47:21:6d:98:62:eb:
51:91:2d:b6:ef:3b:3f:61:a2:5a:c8:ee:6a:d0:50:f9:82:61:
13:67:04:04:20:e3:be:83:c5:26:43:00:64:61:35:cb:e5:d9:
7d:41:f3:87:e4:d5:4d:37:57:bd:ff:1a:26:83:aa:9f:45:44:
80:1f:b3:4c:0c:5c:15:5d:62:ba:6d:c4:66:a5:57:22:bb:2e:
b4:2d:2e:61:e3:e0:fc:b9:0d:06:3f:3e:de:2e:bc:97:56:98:
5a:8d:31:12:b6:6c:ad:67:d9:7b:58:49:25:7a:4b:e8:5d:ca:
1f:2f:77:93:6e:10:6d:fb:23:d0:22:fb:98:fd:3a:02:0d:d9:
48:9b:ca:67:1a:e5:fc:2c:52:cf:a4:75:fd:ac:c2:89:47:8c:
2c:74:01:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7Dw5cdn7tjbexwPyRgjl7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OGNjY2Q3OGJmMTY1MzNmMzMxODU0NDNlYTgyZGNkYWQ5
MjA0MTAwHhcNMjUxMDE5MDYwMTMxWhcNMjUxMDIwMDYwMTMxWjAzMTEwLwYDVQQD
EyhmZDdhOTdiNzFiYjQ5Njc3MjhiNzJlYjg0NDg4NDE0MmQwYzk4NTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp04AvidHU5TV/li1EFBa5VFm8tFB
kxY/fn21H8bsK4qMmsAVr5BwU1BSlyTDXyXAjryTiuSnF1NjVYw+OBWt1ParwpkF
BzLs6xb4v2IUUzIEo13heYlSJwvjAEGWMZRHqf0ZS/45vAmmFQat6cU4ubG269Gu
G2MkqIp+gZTsIN/kxYiQnPagvI4AXyVxU+yYcIgTJJpuOY7daqcgySdNNbb5RREN
x7QugDKOV8rPOk9mdxKo6+GUBFj91/QE9R3KqJv28jIcfxzOu9IDUBwmwc8shmIf
tztrn08/eanv9GtTlOfobUXyVAdpfPOkbCHfWSv8ab91LlMqpfuxKQvXBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP16l7cbtJZ3KLcuuESIQULQyYVHMB8GA1UdIwQY
MBaAFDiMzNeL8WUz8zGFRD6oLc2tkgQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQt
MjEwOThhNjEzNTdlLzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQtMjEwOThhNjEzNTdl
LzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATw9Hqgrj
76aBNFjqoM96/J1SX9kHmeymx03og4zPgBOE6OCUzEOu9JnShPvL+eQP9CMssy/o
J6l2uT7nwRwTGG9mC95jVH47Ijj92hhAIzWcefgwIEU1Sez3a4P++YQ3/j/ZDfcw
RyFtmGLrUZEttu87P2GiWsjuatBQ+YJhE2cEBCDjvoPFJkMAZGE1y+XZfUHzh+TV
TTdXvf8aJoOqn0VEgB+zTAxcFV1ium3EZqVXIrsutC0uYePg/LkNBj8+3i68l1aY
Wo0xErZsrWfZe1hJJXpL6F3KHy93k24Qbfsj0CL7mP06Ag3ZSJvKZxrl/CxSz6R1
/azCiUeMLHQBwQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:08 2025 by rpki-client