Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: ZL8rcnZI71Bk/0crepBDw3A+JZr+oBVhr09RGFKxGnM=
Subject key identifier: B5:19:15:5A:0B:51:40:0C:60:29:F7:45:2E:38:9D:EC:60:DC:2C:A2
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 0199FF596B4E1383ACB3439887AF9FB2124F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 05A9
Signing time: Mon 20 Oct 2025 02:01:14 +0000
Manifest this update: Mon 20 Oct 2025 02:01:14 +0000
Manifest next update: Tue 21 Oct 2025 02:01:14 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: tSBRv62VxuHT5nW0pM4RCN5wRcF1QoaW80EnQhDWb+M=)
2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:6b:4e:13:83:ac:b3:43:98:87:af:9f:b2:12:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: Oct 20 02:01:14 2025 GMT
Not After : Oct 21 02:01:14 2025 GMT
Subject: CN=b519155a0b51400c6029f7452e389dec60dc2ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:93:ad:29:8d:5b:45:a8:38:1c:39:40:b7:
85:ec:42:7a:4a:94:3e:1d:b4:d6:05:83:71:92:7b:
79:86:a6:a7:82:0b:e6:3d:09:84:50:29:12:52:58:
0d:c1:25:f0:55:4e:46:7c:e0:81:99:26:aa:37:e3:
10:63:6d:bc:03:fd:f4:b6:f4:17:11:1b:96:ce:c3:
02:46:3d:93:0b:96:b2:79:0d:92:42:aa:6a:f0:d5:
0d:43:5a:54:55:a1:8d:15:2b:c1:ba:e5:c3:17:a0:
58:f5:df:97:30:51:a5:f0:e4:8a:55:23:07:12:d4:
75:6d:7e:e1:7a:20:7c:36:b5:2d:8a:b6:cd:02:95:
78:50:62:99:b6:10:87:2f:36:15:8a:a4:93:fc:fc:
2a:6b:ce:4b:91:51:10:f1:d7:25:43:c3:36:1b:b8:
38:1c:1e:4e:83:73:63:b4:56:b8:c3:51:7c:78:e7:
ea:6d:17:36:69:37:c2:0c:97:6d:be:3d:bc:68:07:
db:93:fa:68:1c:a7:22:da:65:49:af:e4:ba:7d:fe:
bd:2e:03:73:07:b2:fc:85:e9:6f:20:9d:a0:2e:cf:
28:e8:0f:b6:9a:14:84:62:cf:36:a0:16:af:d4:8a:
a4:18:54:fc:d8:c9:cf:ad:0c:70:37:fd:ca:e5:b8:
e5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:19:15:5A:0B:51:40:0C:60:29:F7:45:2E:38:9D:EC:60:DC:2C:A2
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:e6:1a:be:27:7b:c4:dd:71:0e:5e:55:1f:e3:86:5b:56:bf:
e0:61:07:1d:0c:1e:68:26:7a:b9:08:ae:ce:b3:ed:9c:8e:d6:
10:39:12:1b:98:c1:32:9c:1b:1f:96:28:2c:df:f4:15:09:16:
c3:d1:64:54:32:29:53:eb:30:1f:ec:47:c6:7d:ac:f3:f9:a0:
31:29:68:86:df:d3:b0:37:f0:35:a2:cd:74:b4:de:48:3b:3b:
3e:ed:1c:1f:d6:e7:14:13:24:26:59:6e:23:45:ea:0b:f6:3d:
4f:e0:ee:82:b5:6d:8c:8e:62:1a:89:80:15:36:99:ef:a5:d5:
f3:18:e7:93:9f:cd:f2:e7:3c:b9:6c:68:b5:2a:1a:e6:40:5c:
72:90:8d:1f:66:2d:71:88:27:c4:34:f3:01:0a:79:5b:8b:ef:
93:af:09:eb:fe:6c:7b:57:ed:53:a3:be:96:90:f7:2e:5a:26:
58:6a:4a:b8:5f:df:42:85:a7:1b:37:3a:e1:d4:45:b5:70:5c:
29:e7:e6:4a:f4:5c:33:fb:cb:0e:c3:33:39:cf:4d:ed:a2:ca:
fa:10:63:05:57:f3:50:8a:14:76:02:57:7b:7b:80:fd:04:d2:
76:d0:bb:40:fb:9e:f0:be:fa:a4:7f:33:81:6c:86:81:86:23:
f6:bd:24:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:08:28 2025 by rpki-client