Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: B8u6c8jIyM5L+/FF8ioPgZGAWHAdrHc8+9enmAcXdA0=
Subject key identifier: 44:92:3A:97:B6:69:4A:9C:C8:F2:DD:92:43:69:95:EA:FC:A6:22:04
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0199FDD95594E2898B6E8FFA3D489CACD3B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 19:01:42 +0000
Manifest this update: Sun 19 Oct 2025 19:01:42 +0000
Manifest next update: Mon 20 Oct 2025 19:01:42 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: ipe6LBCGlxViGWD5vPP6LEiwq2Hptbtse8Hd+/4THso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:55:94:e2:89:8b:6e:8f:fa:3d:48:9c:ac:d3:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Oct 19 19:01:42 2025 GMT
Not After : Oct 20 19:01:42 2025 GMT
Subject: CN=44923a97b6694a9cc8f2dd92436995eafca62204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:4a:95:cd:13:e3:0c:48:5e:4b:f7:2e:39:
fe:d7:af:a4:b7:f1:18:6e:9a:8c:a7:09:44:fe:64:
a9:fd:41:29:c8:4d:38:3c:77:0d:73:15:7e:c9:16:
c7:19:f4:d3:af:87:30:12:f5:a2:97:ef:8b:b3:46:
a0:5c:7d:41:38:45:44:e8:64:cc:a4:0f:64:9b:eb:
82:20:30:d4:fa:06:b3:e2:c5:f5:9b:ca:0c:94:5e:
46:10:89:60:42:f7:5d:97:12:aa:27:8c:97:56:4b:
1d:7c:dc:49:ad:f8:3d:4a:13:68:b2:9c:75:71:a9:
d8:84:d8:8c:01:a5:58:44:4f:c2:07:0a:66:6a:a4:
16:f7:8a:f0:1e:31:71:3e:95:ab:87:f4:e1:d8:2c:
83:28:87:d4:6d:7f:e3:9b:e9:f1:00:87:75:f8:91:
6e:76:24:1a:0a:26:e0:2c:6e:09:1b:54:ee:75:a3:
00:c5:e4:f2:56:6d:c9:ef:a5:73:c7:47:d4:ed:cf:
2a:d4:a3:0a:9c:2e:58:7e:40:77:d9:c7:ef:3c:28:
c9:a1:bd:78:56:72:60:b5:f0:d7:ef:19:d4:75:66:
41:6e:cb:12:7a:ae:49:c9:95:5c:4d:d6:1f:31:fb:
7b:19:2c:b0:c7:c4:c2:26:4f:74:b6:8d:8e:b5:96:
6e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:92:3A:97:B6:69:4A:9C:C8:F2:DD:92:43:69:95:EA:FC:A6:22:04
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:0f:8b:ac:fa:d8:d9:f0:d6:cf:3c:61:16:a2:98:bc:c2:e2:
22:ec:38:8e:dd:d0:1f:3f:f1:45:25:88:25:60:6d:98:67:8a:
69:9e:6c:d0:e3:f9:42:f5:62:b3:7b:6e:3e:38:f5:db:b1:3a:
2d:2c:9c:0b:49:33:ac:a0:bf:d6:da:1d:7c:11:19:49:ab:e7:
f9:3d:c3:88:a2:ce:a7:c5:f6:3a:9a:30:0c:7d:c7:f2:c5:fb:
a9:e7:38:49:6d:30:fe:7f:1a:45:77:45:2c:a4:a2:3f:c3:35:
79:23:2b:5b:44:43:a3:88:99:e3:7d:b7:12:bb:a2:ac:f5:36:
2d:89:f4:57:a2:b9:ae:02:50:ad:da:04:7d:f4:4f:fc:f7:66:
7b:22:59:f5:e7:92:ec:4e:d7:b9:d1:68:6f:d7:e1:8b:17:0f:
c5:0e:a6:ac:c2:13:b0:13:ae:e8:13:f0:fd:3b:bc:b6:25:c1:
4b:2a:34:5d:48:b7:18:c3:fc:1b:f7:18:59:e3:4a:d8:05:e1:
d3:a0:e9:7c:29:d5:71:d2:7a:e8:0b:8d:d2:eb:9b:ba:3e:ac:
67:41:2f:50:1d:7c:11:0c:ef:78:03:56:04:12:eb:bb:45:df:
23:a5:fe:23:79:29:ef:ef:94:c8:47:c4:ab:b2:48:a6:71:af:
c5:ae:9c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:38 2025 by rpki-client