Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: rvwfFwl1LhuQzZg/2rdOc1/5geCSLfKPKSQs2aqHpDM=
Subject key identifier: 51:1C:9F:62:B7:6A:5A:C6:79:16:D6:DA:D1:C1:54:D4:3D:82:92:BA
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 0199FAD8120FCF70442BD7D848E33FDC855D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 16D2
Signing time: Sun 19 Oct 2025 05:01:28 +0000
Manifest this update: Sun 19 Oct 2025 05:01:28 +0000
Manifest next update: Mon 20 Oct 2025 05:01:28 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: osImY2FsKqMiNAjUYKvN7AnlGtLDRNa2IzW6y8Yx4T0=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:12:0f:cf:70:44:2b:d7:d8:48:e3:3f:dc:85:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Oct 19 05:01:28 2025 GMT
Not After : Oct 20 05:01:28 2025 GMT
Subject: CN=511c9f62b76a5ac67916d6dad1c154d43d8292ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:42:1b:39:f3:66:ad:e4:c4:4a:62:c2:ff:
d3:9c:36:e7:9b:60:dc:ee:1d:cf:5e:3e:38:f1:41:
f5:9b:86:2d:dd:3a:85:78:6c:f9:eb:a4:f2:af:2e:
b3:5e:80:23:a8:e7:95:6d:39:6b:92:f8:52:56:9a:
c7:52:cb:79:5a:2b:12:5a:a3:1a:3f:35:da:50:8b:
83:3d:6d:14:3f:c5:13:8f:04:ec:a8:ab:a3:72:5e:
34:ad:68:fd:5b:6e:44:cd:51:72:0c:c7:f8:6c:21:
88:3e:c5:d3:78:90:39:4a:c6:13:6f:0f:01:ad:65:
40:15:16:97:e8:e2:05:73:22:6c:be:3c:ab:28:4e:
92:47:fe:a7:76:18:64:03:f0:c0:9b:70:02:24:c0:
f6:a5:e3:68:fe:1f:9e:21:9c:fe:e8:c9:98:dc:20:
ae:b2:e3:5e:c0:11:96:e4:d7:9a:e8:a7:c0:e4:d9:
8e:3d:b7:5f:1d:06:c0:18:88:8b:9c:df:60:4e:b6:
af:60:57:dc:ed:9a:6f:3b:3c:99:50:5a:5b:ec:d5:
f6:6c:9a:5d:72:23:60:50:d0:64:a7:7c:fa:38:58:
f2:b2:61:a9:43:d9:53:f3:4b:b4:60:39:08:57:3f:
71:bc:71:30:04:15:6b:9d:0c:d5:58:07:d9:52:ec:
5c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1C:9F:62:B7:6A:5A:C6:79:16:D6:DA:D1:C1:54:D4:3D:82:92:BA
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:fb:34:88:9b:b4:3e:38:8f:7a:05:da:37:b0:d4:c8:c9:7c:
83:54:46:d4:f8:a9:bd:0d:3f:28:4d:a1:df:b6:88:f3:e4:5e:
38:fd:e8:5c:be:96:be:c3:60:75:7d:9e:73:5d:27:fc:50:a9:
2c:bd:b3:ac:ab:c8:49:8f:5c:13:8d:f3:40:70:9f:2e:a6:19:
64:f4:1e:8f:a5:fb:8a:42:6b:e9:dc:d8:30:ed:69:c3:e6:d4:
65:7c:ac:cd:c7:72:03:4a:49:c8:34:ea:b0:61:65:ee:eb:ac:
d1:48:52:a7:95:3b:bd:18:e8:50:79:04:de:33:d3:2b:1c:05:
c0:a6:b8:b5:7b:7b:4e:f7:9a:ee:23:70:4d:a6:bb:98:b2:25:
d0:23:89:c3:2e:db:62:93:bd:77:9c:3d:b4:32:a5:44:1f:b7:
68:be:55:6e:0a:1e:7d:f7:bc:46:1b:17:5f:c2:d4:64:8a:07:
73:00:5e:0b:66:ff:7f:c6:bc:72:67:84:80:ca:3a:f7:d6:a0:
5b:c4:04:5b:25:13:89:00:fe:cb:97:60:1d:e8:96:a7:40:72:
a5:bf:b9:76:05:68:2a:f6:ab:12:60:fe:40:14:e6:5e:f6:a0:
0e:2d:e6:87:22:65:33:f9:dd:27:77:08:56:6d:3e:43:fd:f1:
1e:d7:b5:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn62BIPz3BEK9fYSOM/3IVdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi
ZTg5NTgwHhcNMjUxMDE5MDUwMTI4WhcNMjUxMDIwMDUwMTI4WjAzMTEwLwYDVQQD
Eyg1MTFjOWY2MmI3NmE1YWM2NzkxNmQ2ZGFkMWMxNTRkNDNkODI5MmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvntCGznzZq3kxEpiwv/TnDbnm2Dc
7h3PXj448UH1m4Yt3TqFeGz566Tyry6zXoAjqOeVbTlrkvhSVprHUst5WisSWqMa
PzXaUIuDPW0UP8UTjwTsqKujcl40rWj9W25EzVFyDMf4bCGIPsXTeJA5SsYTbw8B
rWVAFRaX6OIFcyJsvjyrKE6SR/6ndhhkA/DAm3ACJMD2peNo/h+eIZz+6MmY3CCu
suNewBGW5Nea6KfA5NmOPbdfHQbAGIiLnN9gTravYFfc7ZpvOzyZUFpb7NX2bJpd
ciNgUNBkp3z6OFjysmGpQ9lT80u0YDkIVz9xvHEwBBVrnQzVWAfZUuxcrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFEcn2K3alrGeRbW2tHBVNQ9gpK6MB8GA1UdIwQY
MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt
ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw
LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGvs0iJu0
PjiPegXaN7DUyMl8g1RG1PipvQ0/KE2h37aI8+ReOP3oXL6WvsNgdX2ec10n/FCp
LL2zrKvISY9cE43zQHCfLqYZZPQej6X7ikJr6dzYMO1pw+bUZXyszcdyA0pJyDTq
sGFl7uus0UhSp5U7vRjoUHkE3jPTKxwFwKa4tXt7Tvea7iNwTaa7mLIl0COJwy7b
YpO9d5w9tDKlRB+3aL5Vbgoeffe8RhsXX8LUZIoHcwBeC2b/f8a8cmeEgMo699ag
W8QEWyUTiQD+y5dgHeiWp0Bypb+5dgVoKvarEmD+QBTmXvagDi3mhyJlM/ndJ3cI
Vm0+Q/3xHte1tg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:07 2025 by rpki-client