Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: NLNC63ae/SIdSBbdc/83mUyGY/OFbO4Q+uzeLsVZtDs=
Subject key identifier: 88:BF:87:BB:92:C0:A5:BB:58:A4:19:2B:13:BF:CD:9C:F8:B7:15:7D
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 019A006C26C0AA8F02C9329C5DB46909F12D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 06C4
Signing time: Mon 20 Oct 2025 07:01:18 +0000
Manifest this update: Mon 20 Oct 2025 07:01:18 +0000
Manifest next update: Tue 21 Oct 2025 07:01:18 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: qR2KvG2rFnyDji08Hogz9hLYt5SOHV/i3mB8/ybQLHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:26:c0:aa:8f:02:c9:32:9c:5d:b4:69:09:f1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Oct 20 07:01:18 2025 GMT
Not After : Oct 21 07:01:18 2025 GMT
Subject: CN=88bf87bb92c0a5bb58a4192b13bfcd9cf8b7157d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:91:b0:03:7e:6c:96:7b:d8:f3:9c:89:36:dc:
e9:f2:9e:46:31:e7:1d:07:52:ac:37:b0:7a:bc:f8:
5f:27:cb:2b:1a:12:7a:bb:19:56:5c:cc:83:cd:01:
c3:c0:8e:aa:2f:74:f9:c1:d5:e7:f4:c4:04:04:f6:
bb:e8:b1:9e:a0:c4:57:f0:dc:22:26:a4:0c:4a:29:
03:72:9b:ca:2e:a9:6b:7a:9d:20:d3:6e:98:5c:f4:
ab:69:f1:db:f2:a4:98:60:12:29:8e:a2:d0:7e:3e:
1b:ee:6a:6e:cd:38:1e:17:d1:71:85:e3:86:fe:e6:
ba:4d:56:1a:8e:63:7c:91:4b:7b:c6:f7:78:39:35:
00:29:86:b4:21:8a:1d:92:70:69:6d:ab:d5:c2:3a:
8b:03:5b:59:a1:e9:f8:ae:46:d6:6a:48:44:d2:f4:
e2:55:84:9f:34:5b:ab:78:da:63:ed:46:5a:b1:e5:
2b:d1:84:67:e6:7a:12:17:77:ab:cd:b3:28:6f:4c:
8e:fa:e1:cb:94:b4:9d:02:81:54:fc:74:37:c7:43:
01:d9:aa:e7:2e:45:69:a0:94:bb:33:66:04:4a:60:
87:32:55:25:9f:0f:f6:fd:23:c3:db:bf:84:c5:38:
f0:8b:05:47:6a:5c:a6:2d:23:49:00:d0:a5:47:a0:
51:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BF:87:BB:92:C0:A5:BB:58:A4:19:2B:13:BF:CD:9C:F8:B7:15:7D
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:49:c3:a4:95:9c:66:96:ae:9a:67:e3:e8:99:ad:76:ba:48:
a6:9d:49:a8:7c:03:6c:68:fe:50:f9:c2:fb:a8:0a:ce:68:5e:
5a:ed:36:f7:63:13:dc:89:d4:2b:a1:b7:d7:68:04:85:23:e1:
d3:e4:07:1b:b0:b6:4b:d6:6f:b6:7e:2c:c3:09:23:8b:c3:fa:
e5:d5:9c:92:21:6e:20:8a:69:58:32:12:c8:c4:d4:70:fa:69:
cb:8b:9c:fe:ce:1f:c2:28:a3:a6:40:34:db:80:c4:d1:a8:e4:
0e:10:91:1e:6b:b9:9b:63:47:94:d4:fd:a9:32:12:86:a5:ee:
5b:45:f4:6a:05:a8:e3:88:66:58:09:e8:12:6d:4c:4b:56:9c:
74:61:ba:56:e6:6c:9b:a6:ef:ed:86:16:2f:47:01:53:5e:0e:
4f:19:a6:4a:68:ca:05:0f:b7:7b:6c:ad:52:80:ee:56:0b:e2:
47:eb:3f:bb:06:73:48:c8:e1:c4:ad:09:22:85:39:e5:87:07:
be:af:88:a3:40:49:bb:c3:e3:43:e9:8d:5d:70:c2:c0:c1:5a:
54:ac:0b:50:b1:71:c9:5e:41:d5:a9:1a:5b:87:1e:8a:93:e0:
81:5d:0e:82:c8:8e:fc:08:6b:a3:cf:39:59:f1:7d:8d:82:a8:
74:d2:d4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:41 2025 by rpki-client