
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: 3oGPKGKvYRmeTcfL7+dNLqcyXF/DAlGNxhM2tI3O6bs=
Subject key identifier: EE:DA:9A:BC:0B:81:2F:53:AA:1F:4E:1F:08:17:35:59:AC:94:DC:DE
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 0199FB0EE2B4F78B90F4D5300806EF752A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 06:01:20 +0000
Manifest this update: Sun 19 Oct 2025 06:01:20 +0000
Manifest next update: Mon 20 Oct 2025 06:01:20 +0000
Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: a2WZoouEyYkS/tJLEhEPe2zmka2prVxxbqkEce7/7zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:e2:b4:f7:8b:90:f4:d5:30:08:06:ef:75:2a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Oct 19 06:01:20 2025 GMT
Not After : Oct 20 06:01:20 2025 GMT
Subject: CN=eeda9abc0b812f53aa1f4e1f08173559ac94dcde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e1:c2:54:a2:42:a2:eb:bb:f3:65:01:1f:f6:
8a:ee:6a:00:8a:d1:ad:6a:80:51:1d:56:81:8a:dc:
05:72:75:ff:48:87:5b:89:0d:56:97:f1:6d:fa:4c:
f0:02:1c:37:78:d0:6e:c9:88:c5:bd:c3:32:c0:91:
f3:f4:75:96:9d:61:da:cc:8f:ac:f3:f2:ad:1f:d0:
46:76:09:a9:94:53:03:8b:c5:13:58:44:0f:b4:9a:
cc:f4:48:ce:39:3f:19:5a:00:c7:44:22:1e:07:80:
4c:16:ad:e8:00:4a:62:19:0a:ff:f0:50:c5:e2:f3:
95:a2:06:d2:32:38:70:e5:c1:cf:e0:f1:13:5f:73:
5f:83:6d:93:7d:a1:1d:80:5b:d9:fd:9c:0d:8a:39:
94:c0:39:38:77:e0:e2:60:88:b3:36:bb:b1:81:e2:
3a:f9:fa:62:20:84:2e:c0:e4:85:bd:63:77:df:ad:
2c:c7:a0:3a:00:26:b6:2f:e5:84:6f:b2:b2:18:15:
6a:3b:e9:12:e8:4a:d9:c7:ff:2e:6f:73:bf:3e:5d:
5c:a8:64:2c:49:1b:fe:ba:b1:c3:14:08:26:5c:4e:
b4:47:a3:4f:09:56:53:b8:52:a2:ef:ef:9e:d6:c6:
00:72:85:73:e5:a6:87:b5:9d:cb:19:5a:b7:87:e9:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DA:9A:BC:0B:81:2F:53:AA:1F:4E:1F:08:17:35:59:AC:94:DC:DE
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:74:da:1b:c2:49:e1:83:cc:e7:af:09:65:de:08:d7:c6:36:
c1:af:1a:06:ee:1b:3a:31:94:1e:7c:a8:a0:51:5d:d1:8a:b1:
0f:3b:c0:0c:6b:f7:f9:1c:b9:c6:4a:95:e0:c3:83:07:5f:e3:
38:35:b2:da:4b:58:9a:65:2a:1d:95:e3:d1:f0:19:54:9e:0f:
68:bc:ff:66:a4:4e:d4:83:a9:c1:df:a8:e5:77:54:06:62:77:
96:e9:b3:7a:7a:67:81:bb:95:a4:b8:37:05:e2:36:6d:a2:ef:
0e:a8:4e:8f:26:7d:d7:7a:1c:2a:a1:b2:fb:83:8c:a6:2a:73:
d3:ee:07:f8:7b:aa:d9:7e:0d:2a:ad:6f:04:e6:f0:23:96:b7:
80:04:9b:61:6d:9e:ce:45:92:0f:2f:52:b8:16:5e:c9:80:d5:
88:2f:cc:63:da:e0:bb:07:67:1f:6b:81:c8:08:5d:2b:05:92:
8e:d1:88:29:2b:04:dc:69:23:23:c1:3f:4c:eb:ad:6c:1a:ad:
ed:7a:48:c5:1e:70:3c:14:06:b5:11:17:72:8a:ac:b0:c2:66:
2b:c3:db:d3:f7:43:00:e2:09:1f:4e:c6:5d:63:c5:d7:25:31:
28:82:8d:dd:0b:15:f0:e6:33:c7:f6:0b:02:12:2f:dc:df:8a:
3f:d0:88:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:28 2025 by rpki-client