Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: NPs9Y77ZewgylfwSJNuGo+fcfXJsQbKmqWn5QoTtBzM=
Subject key identifier: 99:DF:25:F6:23:24:D9:5B:AA:E1:6C:50:F3:F3:EE:A5:0D:E8:3B:55
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 0199FD6B3364B1B1F28D3E79FE8E8490B6F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 1107
Signing time: Sun 19 Oct 2025 17:01:25 +0000
Manifest this update: Sun 19 Oct 2025 17:01:25 +0000
Manifest next update: Mon 20 Oct 2025 17:01:25 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: CLrjYXV676mkCdq6ahy809rcpFH2OAC5R18Ag/92Uxk=)
2: PKmiIVXi-5ieWf281G2v09ZDGMA.roa (hash: 6UbdjRvfhwNfGfOQcI0HpEZ2pxwE+yP96jeW3uJG9VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:33:64:b1:b1:f2:8d:3e:79:fe:8e:84:90:b6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Oct 19 17:01:25 2025 GMT
Not After : Oct 20 17:01:25 2025 GMT
Subject: CN=99df25f62324d95baae16c50f3f3eea50de83b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3b:cc:7c:94:9f:01:df:32:74:9e:73:98:0f:
bb:ef:3a:d7:2a:18:e3:2c:ea:e6:4d:dc:a9:d1:69:
ad:41:e5:be:cd:9a:0c:af:ec:9d:9c:b8:7b:10:a0:
e8:8c:b3:3d:b0:56:6f:b5:de:65:38:b4:68:ba:b9:
f8:87:0e:d8:42:b0:72:d3:cc:04:7b:06:97:57:a8:
bf:e3:e0:b2:b7:5d:eb:61:94:1b:03:86:65:a9:e3:
19:a6:93:e5:d6:75:1f:c3:e6:21:35:e2:02:63:83:
48:38:d3:d8:60:87:be:72:00:d8:b3:eb:71:a0:42:
02:d1:ca:a0:be:95:35:b0:37:2e:d9:7c:c4:69:af:
4c:23:58:d6:76:78:f3:cb:95:96:db:89:99:fd:32:
3c:86:06:56:96:f6:47:bf:4a:24:06:47:81:08:7f:
dd:7a:ea:ec:66:a4:01:f0:42:96:59:c6:86:0f:5d:
da:60:c9:d3:a0:50:2c:c7:a4:8d:41:4d:20:da:b4:
05:9a:10:7a:a2:7a:60:07:c8:db:d4:38:09:f0:93:
d5:6e:04:81:d6:18:81:dd:45:85:05:da:fb:b8:79:
c6:56:94:f8:e1:58:61:02:f4:f0:01:8f:21:8d:b3:
37:c5:8b:7e:41:7e:b0:5f:9d:65:64:22:f4:b7:7d:
b6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DF:25:F6:23:24:D9:5B:AA:E1:6C:50:F3:F3:EE:A5:0D:E8:3B:55
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:70:1e:56:46:91:38:02:c9:6c:4b:a6:d8:5f:b1:f4:57:98:
cf:77:d0:49:06:1b:1b:e5:e9:42:b3:d5:61:57:18:b2:bc:0c:
13:ec:b1:67:02:7a:e2:92:34:2f:1c:19:8d:40:1d:b5:a8:f4:
cd:4e:6e:d9:f3:ad:1f:3e:ff:c5:e0:93:12:82:f2:f2:c8:aa:
63:c7:99:95:ca:8b:b8:91:66:7a:41:c2:81:1d:a0:cc:52:63:
97:da:ca:62:ab:b7:64:83:b3:57:10:52:16:e3:13:23:dc:3b:
be:07:33:15:42:e6:e2:6c:c1:6b:27:e7:0c:2f:a6:4f:e6:e0:
8b:f4:79:60:8c:1b:33:a8:ea:cd:06:f0:b6:38:8d:9c:e4:40:
31:02:c8:e1:06:2a:04:e8:0f:ea:d9:96:c2:2f:96:a7:f5:ce:
c8:f3:48:79:e6:f0:9f:4d:dc:05:af:91:c6:38:c5:22:5c:ec:
a9:1b:43:96:59:8e:5e:54:bc:a2:cb:78:10:82:c0:8e:47:97:
45:ee:08:28:30:3c:4c:e6:87:cc:82:79:fd:33:a3:f9:ac:67:
3b:af:10:a5:a2:73:77:b7:35:d8:e9:8c:ea:4f:22:64:8c:a8:
a1:b9:94:a5:ae:97:18:71:28:94:98:a9:1f:6d:9d:4d:09:a7:
71:03:99:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:26:21 2025 by rpki-client