Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json)
Hash identifier: Hifx6FZZEmGdyqvAUO2bmzEZ2FsX7jHFNlulIeoscUs=
Subject key identifier: 27:41:2B:E8:D1:8F:7F:7F:85:AF:C0:4D:FC:AF:51:41:57:20:66:AC
Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Certificate serial: 0199FBEB8D10E8F74F87CD3F6191101A78C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
Manifest number: 0B4E
Signing time: Sun 19 Oct 2025 10:02:22 +0000
Manifest this update: Sun 19 Oct 2025 10:02:22 +0000
Manifest next update: Mon 20 Oct 2025 10:02:22 +0000
Files and hashes: 1: P8h8nlnz4dD4fkTghoS9unFyKig.roa (hash: MYpmJNo5HIfucuzKcNdlv0aQadbbtMqL8vbh/XHclWY=)
2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: hnwoVmLVY0OzzbhGLR65BUc2A0NY7iMtykSkya2Orfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:8d:10:e8:f7:4f:87:cd:3f:61:91:10:1a:78:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Validity
Not Before: Oct 19 10:02:22 2025 GMT
Not After : Oct 20 10:02:22 2025 GMT
Subject: CN=27412be8d18f7f7f85afc04dfcaf5141572066ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:05:f9:4b:f9:bf:0c:29:a9:ec:a4:0b:ce:1d:
2a:07:25:67:e0:fb:ca:17:71:b5:a1:03:f4:42:90:
3c:4d:0f:03:8c:a6:7f:3a:71:42:d4:5d:8f:c3:8a:
54:c5:12:a1:99:9e:b6:80:e7:af:16:dd:0f:c4:d6:
d0:f6:95:b7:4a:24:1e:14:12:69:59:8b:24:08:16:
5e:7f:a3:0f:af:06:a0:53:c7:36:6c:33:d0:e9:de:
9a:c4:25:ce:1a:4d:1f:40:73:35:c8:02:87:37:7d:
81:25:13:f8:19:e7:71:f7:c8:66:e9:2f:92:87:5f:
6a:67:b0:af:26:eb:f2:05:22:c2:3c:8d:d6:94:f6:
44:db:d6:05:23:ca:d7:60:d8:0a:93:e5:af:59:c4:
49:36:cd:62:16:84:4f:49:9d:47:eb:b4:c0:47:ba:
58:da:30:88:7e:22:98:45:9a:5a:49:03:67:be:7a:
ae:92:8c:5d:3d:42:24:b2:78:22:45:20:63:1f:c3:
5a:67:d5:e9:59:1a:c8:b8:4c:86:b0:f4:7f:16:d9:
66:76:ea:2b:fc:9f:c0:59:1d:a2:75:8f:97:e0:30:
73:82:57:97:19:5c:5f:0d:e3:51:5c:b9:a3:b3:d1:
7f:42:28:25:de:10:cf:9e:26:0c:be:d7:ab:69:73:
f1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:41:2B:E8:D1:8F:7F:7F:85:AF:C0:4D:FC:AF:51:41:57:20:66:AC
X509v3 Authority Key Identifier:
keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:13:65:fa:f8:89:8c:ea:70:9a:b3:ab:70:43:3b:c0:09:f2:
8c:98:d0:2f:5b:f6:6c:0e:e6:10:f4:d2:fb:92:c5:f7:dc:b4:
d0:db:e2:98:5f:b2:4d:97:8a:cf:a9:47:6d:8b:13:d3:f3:4a:
0a:10:d1:5b:32:01:80:c5:d9:1c:5b:89:fe:6c:7f:ad:ff:d9:
bf:a3:47:e2:f3:4e:88:c9:fa:ea:f1:62:c3:79:cc:52:7e:59:
7f:75:e9:fc:b7:58:19:82:c9:12:3c:83:4c:17:9d:de:ec:17:
10:e7:f1:8e:0f:79:91:74:8a:07:24:29:5a:ad:51:36:84:aa:
4d:f2:fa:07:12:a0:9c:bd:08:6f:81:7d:2b:33:8b:17:0f:6b:
32:2d:08:c9:28:a6:e1:f6:74:f9:1c:87:96:69:ba:69:c8:5f:
5c:73:12:43:0a:82:89:7f:98:7a:ea:b2:b4:3c:f1:39:d6:5c:
35:cf:af:0f:78:6c:60:47:fa:f2:f8:86:36:07:e2:3a:5a:6e:
fb:fe:54:6e:08:c5:11:f2:d9:c4:28:bb:24:6a:e2:fd:5d:a2:
df:7c:26:ab:df:09:ab:7e:10:e3:d5:85:60:5d:e5:58:a5:5d:
2b:d3:3a:79:0d:12:0d:05:83:70:b5:55:78:76:7c:c9:c8:59:
1a:17:d7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:55 2025 by rpki-client