Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: aIMMLaemPtkPIHGN2Zie9KFU59MchTyPHm3zf3LZJC4=
Subject key identifier: 63:4C:71:71:A7:57:75:FB:8F:71:A8:E3:49:8F:84:A1:26:ED:AD:DD
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0199FE46E81B76067CE69570EAECC175C7E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0B5B
Signing time: Sun 19 Oct 2025 21:01:23 +0000
Manifest this update: Sun 19 Oct 2025 21:01:23 +0000
Manifest next update: Mon 20 Oct 2025 21:01:23 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: 54Jtn0PoQW05b9CaWGDKmViZcCdW1rq0mTxHsZBzKgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:e8:1b:76:06:7c:e6:95:70:ea:ec:c1:75:c7:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Oct 19 21:01:23 2025 GMT
Not After : Oct 20 21:01:23 2025 GMT
Subject: CN=634c7171a75775fb8f71a8e3498f84a126edaddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5f:8d:80:fb:72:c7:96:89:1f:9a:f8:fe:f2:
05:18:31:97:0b:d6:fb:e4:ca:62:d0:7a:c4:d2:59:
99:8f:56:ed:b9:48:1c:2a:66:37:87:2a:f6:5f:ba:
d3:b1:52:19:ea:28:90:07:0e:63:e0:47:59:e8:f7:
ca:0f:fd:66:da:31:d8:f1:9b:53:97:5c:d2:15:a6:
58:fb:5f:cc:05:46:d6:12:14:c1:65:98:a2:e4:2a:
cd:67:15:47:ec:e9:01:a7:34:ac:48:30:95:f8:66:
aa:d8:c2:58:8f:ba:ab:3c:38:18:5f:ff:19:76:67:
b7:27:9a:0a:32:da:ea:e8:6f:a3:66:94:51:41:02:
6f:ac:be:d0:04:21:b2:2c:9b:78:8f:92:61:31:3a:
34:fe:27:cb:11:3f:e1:a5:da:09:ea:cc:cf:70:f8:
b8:f8:e7:25:34:6d:e8:b9:6e:9b:90:69:49:06:aa:
43:c1:3c:ba:9c:a2:7a:fe:c1:1c:30:36:3c:bf:3d:
1a:dc:81:3b:17:1e:56:ff:62:3e:08:15:d4:4b:f1:
05:e3:d5:cd:e3:d1:a9:c7:e8:db:76:ef:54:1e:7c:
5c:ee:da:bf:6a:9e:97:eb:3d:42:0a:a6:60:8f:1c:
32:32:53:db:19:24:1d:85:0c:8d:7e:aa:3c:b3:e9:
12:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4C:71:71:A7:57:75:FB:8F:71:A8:E3:49:8F:84:A1:26:ED:AD:DD
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9d:c3:1a:ce:6f:88:99:b1:22:04:17:36:24:58:7e:5e:a9:
ac:7d:3e:76:8f:0e:f8:89:88:b4:aa:b2:fa:04:d6:1c:fc:9d:
46:9e:bf:45:ef:15:ef:83:d0:a5:49:2a:78:f1:a2:55:2b:31:
f8:c3:92:d4:95:b7:5b:52:0f:77:9c:d7:5d:fc:0b:64:6c:23:
ba:17:19:c4:9c:f6:3d:be:cd:ab:1a:30:e7:35:0e:cb:82:b2:
52:ef:b3:d8:d4:87:ac:a3:f2:d6:d7:96:51:38:cd:10:e8:e9:
0d:6f:e6:45:7c:ea:49:99:5b:ba:84:c9:70:ca:aa:78:ed:bd:
36:b7:fc:89:6c:8f:5a:e5:98:7f:97:83:45:98:14:06:b2:86:
ba:7d:e8:49:a2:a5:ba:a2:75:3e:4f:f3:9c:b4:9e:6b:1a:54:
7c:96:18:1f:fb:f3:96:c1:ea:0f:b9:e9:b9:be:28:fa:99:a0:
fd:ad:83:7d:38:e5:61:90:91:58:ff:17:c7:5b:56:e8:2c:6d:
b7:a4:0e:b6:10:36:e4:c9:8d:a6:52:12:20:7e:92:14:c7:07:
4e:6f:6d:1b:c8:1d:50:1e:1f:75:ab:ff:46:04:00:04:f4:bc:
f1:cc:32:58:b6:99:74:72:2a:e6:a8:b2:c9:85:cf:da:4c:21:
e1:b2:3a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:17:31 2025 by rpki-client