
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json)
Hash identifier: P9PG3nP4iMTa1TAxi81LSOzQu/DUkzIFEkxmZGfwFdo=
Subject key identifier: F1:7B:3A:93:54:6C:B2:71:51:FD:D4:D2:30:80:98:39:20:E3:53:54
Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539
Certificate serial: 0199FCFDACAC000C7515105C5AC0F2A7CBB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
Manifest number: 16F1
Signing time: Sun 19 Oct 2025 15:01:47 +0000
Manifest this update: Sun 19 Oct 2025 15:01:47 +0000
Manifest next update: Mon 20 Oct 2025 15:01:47 +0000
Files and hashes: 1: 1-yPHrZgsoThpMDnxsp8ik7ZJAmM.roa (hash: PkPdKCMYMFbeGyHu/UiymTakLQYctiNwfIAb9+YJYgQ=)
2: 5QRzBx43AV-rVFibUIkxX67tvbI.roa (hash: gayo6a2ZkLUJa9zMEpLRBH3Ls/m1iB/K2c1cMPBX4/Y=)
3: 6Xm-75V0sXQGqzDZtgBZ1MB1y7U.roa (hash: y6WKfvCzgcr5qRF8JvQX+THC7a2GBmmRXVuRnQY8PoA=)
4: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: zz01mEdZxbaFBtEq3xNOYl2RuQXTv9hFkojJAXLg8/4=)
5: U6V2FCr3duwrLHYXfMUAwbMQYWE.roa (hash: n65sXgOD4a9BNyNZnLy9ePNv9aeblojwP3q3G8dIAXE=)
6: aEuO7f3JtpWyu2f1MPnzErrljgU.roa (hash: YH8NEIJKb+pPrmGWzPR+jhBeuD5w3MtFJDL2dbR+PwQ=)
7: hE4J7-nVjBP1I1amWriRZQbCRjQ.roa (hash: t96fk3QnxrV27k+4LVx0l6UARkEoivZQZo9G+qQHzNc=)
8: tVLlOiV7SvnosXMuOA6u9tK4RqI.roa (hash: /FYDglX8ng94EWH9NM8VS2sIZeZUQbmdZE0FSeyFXmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:ac:ac:00:0c:75:15:10:5c:5a:c0:f2:a7:cb:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a4945e46764029d2581d820c3373fa445855539
Validity
Not Before: Oct 19 15:01:47 2025 GMT
Not After : Oct 20 15:01:47 2025 GMT
Subject: CN=f17b3a93546cb27151fdd4d23080983920e35354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:48:f2:84:91:87:4f:d0:5c:9e:3b:ab:d5:c2:
98:a0:f6:64:c3:6e:54:3d:2b:63:6d:78:1f:e9:41:
d4:4f:c5:9b:5b:c6:09:02:13:a7:7d:2b:81:f9:8d:
da:bb:b7:d7:64:bd:1f:12:b5:63:6f:ed:5e:ad:52:
43:14:dd:75:a1:78:3d:c4:4e:9c:e7:eb:2f:33:5c:
47:45:68:25:ce:1a:58:c5:a4:39:6a:cf:a9:46:f0:
e6:7c:e4:23:7e:e1:30:ef:a9:92:7d:22:1d:d2:ce:
23:fd:69:9a:6b:02:83:f9:ba:ef:60:f3:14:73:b6:
c1:37:3b:43:e4:bf:92:e8:f0:96:63:3a:af:99:f1:
3b:88:d5:27:b2:08:14:92:de:f8:aa:15:ec:72:78:
4c:9c:89:84:b4:1d:7f:4e:42:40:8b:63:25:26:8d:
81:de:79:fb:05:82:04:3a:e3:e8:7e:af:74:d1:cb:
8a:d2:e1:4b:bb:82:61:9f:4c:ca:ad:ce:b4:2c:ba:
8c:b4:df:5d:7c:b2:18:e2:af:7a:fb:4f:88:e9:7f:
da:38:80:83:52:5f:a4:da:a8:3d:f1:d1:ce:c1:ac:
1d:d0:6f:a2:73:86:df:bf:4d:5f:18:d0:25:6c:9b:
ca:6a:5a:87:f6:a3:99:8a:53:c0:9f:56:f9:f7:ec:
8d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:7B:3A:93:54:6C:B2:71:51:FD:D4:D2:30:80:98:39:20:E3:53:54
X509v3 Authority Key Identifier:
keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c6:1b:62:42:65:4c:aa:88:3c:1f:16:de:9e:4d:5e:8e:b5:
9e:9b:8a:fa:c6:84:df:38:8a:cf:f1:ba:b4:2f:5b:7f:21:2f:
e4:8b:71:75:4c:32:11:8c:e8:b2:84:a8:47:ae:11:82:dd:9d:
55:59:e1:28:9e:69:59:64:f7:89:11:d3:b9:8f:95:96:b7:78:
23:fb:f8:7e:c0:02:7a:44:ca:b4:80:e4:82:48:7a:52:4a:71:
64:b9:43:e1:6e:2f:22:94:18:2d:6d:15:0f:71:76:12:31:fd:
90:35:3d:fd:35:fc:fd:e2:84:9a:be:66:ec:12:82:42:de:50:
9c:cc:32:11:8b:d8:17:86:a5:6c:46:e7:df:d9:dc:9e:0e:3e:
1b:28:85:f1:59:9d:13:b5:98:27:0c:17:01:a9:20:1d:01:4f:
0f:86:cc:7e:bb:fb:38:1b:01:c6:1d:9e:69:c0:92:e6:2e:77:
db:b2:5e:f6:2f:0d:09:17:eb:58:ec:55:7b:a8:6c:3c:73:08:
b8:ce:77:29:40:ae:cb:34:aa:f7:38:df:cf:af:62:4e:ca:9d:
9d:3c:44:31:24:df:07:c9:62:58:3a:30:61:2b:8a:85:6c:47:
be:c6:76:d4:c8:8f:e7:dc:30:0f:7b:5f:9f:2f:a6:a5:14:38:
6c:68:42:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/aysAAx1FRBcWsDyp8uyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4
NTU1MzkwHhcNMjUxMDE5MTUwMTQ3WhcNMjUxMDIwMTUwMTQ3WjAzMTEwLwYDVQQD
EyhmMTdiM2E5MzU0NmNiMjcxNTFmZGQ0ZDIzMDgwOTgzOTIwZTM1MzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkjyhJGHT9Bcnjur1cKYoPZkw25U
PStjbXgf6UHUT8WbW8YJAhOnfSuB+Y3au7fXZL0fErVjb+1erVJDFN11oXg9xE6c
5+svM1xHRWglzhpYxaQ5as+pRvDmfOQjfuEw76mSfSId0s4j/WmaawKD+brvYPMU
c7bBNztD5L+S6PCWYzqvmfE7iNUnsggUkt74qhXscnhMnImEtB1/TkJAi2MlJo2B
3nn7BYIEOuPofq900cuK0uFLu4Jhn0zKrc60LLqMtN9dfLIY4q96+0+I6X/aOICD
Ul+k2qg98dHOwawd0G+ic4bfv01fGNAlbJvKalqH9qOZilPAn1b59+yNUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPF7OpNUbLJxUf3U0jCAmDkg41NUMB8GA1UdIwQY
MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt
MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0
LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALsYbYkJl
TKqIPB8W3p5NXo61npuK+saE3ziKz/G6tC9bfyEv5ItxdUwyEYzosoSoR64Rgt2d
VVnhKJ5pWWT3iRHTuY+Vlrd4I/v4fsACekTKtIDkgkh6UkpxZLlD4W4vIpQYLW0V
D3F2EjH9kDU9/TX8/eKEmr5m7BKCQt5QnMwyEYvYF4albEbn39ncng4+GyiF8Vmd
E7WYJwwXAakgHQFPD4bMfrv7OBsBxh2eacCS5i5327Je9i8NCRfrWOxVe6hsPHMI
uM53KUCuyzSq9zjfz69iTsqdnTxEMSTfB8liWDowYSuKhWxHvsZ21MiP59wwD3tf
ny+mpRQ4bGhCLA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:26:03 2025 by rpki-client