Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: 6bUqdm9owaWdxldIIQTtJA9soYdjoWIwslinavvMFGo=
Subject key identifier: BB:65:AA:E9:73:BC:CD:66:D5:2D:CF:B8:A2:11:FC:12:59:90:7A:AA
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 0199FB7CC2B6051A1AF552202D37B38DF4DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 132A
Signing time: Sun 19 Oct 2025 08:01:21 +0000
Manifest this update: Sun 19 Oct 2025 08:01:21 +0000
Manifest next update: Mon 20 Oct 2025 08:01:21 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: 2AZJ9DfpHeVYMtivC849T25AgK3G+5OlK1K1yqZNECQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:c2:b6:05:1a:1a:f5:52:20:2d:37:b3:8d:f4:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Oct 19 08:01:21 2025 GMT
Not After : Oct 20 08:01:21 2025 GMT
Subject: CN=bb65aae973bccd66d52dcfb8a211fc1259907aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:83:7e:d5:f3:ae:8f:60:82:64:f5:36:df:
e9:5a:6d:de:dc:58:dd:f3:3d:3d:06:88:b9:d7:83:
53:8b:8e:e5:5e:24:ba:4c:93:56:94:eb:aa:2a:ce:
37:53:87:83:0f:39:58:d6:fa:36:c7:ee:c1:b9:61:
f2:ce:75:e7:a7:95:c6:8f:55:f9:90:6b:76:97:35:
cc:c3:db:cc:d9:08:5a:4d:63:33:c3:f5:e8:90:72:
cc:3f:38:a5:3c:5e:a7:8b:4c:15:ac:4c:50:35:c4:
3b:18:a6:99:03:2e:e8:aa:13:d3:96:b7:a1:a3:b3:
c3:e0:4b:dd:b3:78:72:01:71:9d:72:84:8a:4e:a3:
86:46:b8:14:73:32:15:6b:0a:96:49:2b:42:d1:a0:
a6:10:9b:19:f8:a5:f5:07:3d:22:3b:37:8c:cc:c8:
be:97:95:98:fe:c0:72:b0:03:55:aa:3d:bf:6f:d7:
70:64:6e:88:ad:29:34:fa:0d:ef:12:51:b5:3c:bd:
19:78:07:62:24:7a:dd:a8:3d:e8:a5:32:e1:b6:24:
90:39:e1:65:99:1d:de:67:c0:48:ae:f7:6d:90:0a:
37:a6:1d:4a:ac:50:84:07:0e:dd:ef:a9:4a:01:bd:
04:fd:94:e8:0b:de:f7:cc:22:9d:17:c9:fd:99:37:
c0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:65:AA:E9:73:BC:CD:66:D5:2D:CF:B8:A2:11:FC:12:59:90:7A:AA
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:dd:50:c5:88:99:ba:bc:76:f9:86:cc:da:f3:78:cb:b7:9d:
47:91:a1:9e:04:ef:69:5c:cf:59:76:e6:b5:e3:a4:cd:46:08:
93:c4:33:f1:cd:f9:95:93:f4:0e:71:c3:27:56:f2:93:f0:9c:
aa:08:1c:2b:08:09:24:90:b5:d8:d0:1c:cf:36:0c:5f:6b:cb:
ff:81:a1:ca:dc:8b:f6:f5:7e:22:7e:73:92:53:9a:64:9e:63:
94:91:33:5a:53:a1:c4:15:31:8f:25:3f:2d:a0:c8:4c:29:53:
da:92:34:5d:e9:6a:eb:69:3b:01:20:9f:6a:46:38:dd:b6:43:
a5:45:89:df:87:a6:45:06:8d:05:00:e2:86:78:1b:89:0d:6d:
b1:1b:fa:03:a8:c3:4e:c3:60:28:6d:ae:d9:f3:bf:50:07:cd:
ad:bf:e7:d2:fd:54:9e:8d:7d:9a:de:f5:00:af:07:6c:f0:9b:
06:c1:11:28:f7:76:0d:b9:44:52:b9:56:da:59:dd:be:35:f3:
27:25:e1:30:6f:e8:9f:87:83:fc:1a:cf:13:0e:cd:b7:2e:08:
6e:43:61:8e:4b:08:5a:0d:31:c5:05:28:79:d7:ba:0f:ce:1f:
dc:d1:d0:98:92:0a:0f:d6:65:14:02:46:b4:81:75:29:d4:be:
e4:1d:ea:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:56 2025 by rpki-client