
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json)
Hash identifier: 8vD/UGojnRk7I2rEUp96ezNDtHxYzToJQ54K6xUVOQM=
Subject key identifier: 40:A4:D9:C1:9B:94:4E:78:C4:76:FC:7D:60:13:47:34:FA:5C:39:CF
Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Certificate serial: 0199FC584CEC45F9A26DE4C32CAE8019BB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
Manifest number: 142D
Signing time: Sun 19 Oct 2025 12:01:09 +0000
Manifest this update: Sun 19 Oct 2025 12:01:09 +0000
Manifest next update: Mon 20 Oct 2025 12:01:09 +0000
Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: dlO7u8dFGCMU517XnziDCoeU1p7KR38surPgELWBPPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:4c:ec:45:f9:a2:6d:e4:c3:2c:ae:80:19:bb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Validity
Not Before: Oct 19 12:01:09 2025 GMT
Not After : Oct 20 12:01:09 2025 GMT
Subject: CN=40a4d9c19b944e78c476fc7d60134734fa5c39cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:60:a8:f8:52:d5:45:ae:ba:5a:22:77:f5:b3:
6d:93:3b:74:1b:2c:9b:1e:c0:07:fb:82:e5:91:20:
3f:3d:f2:5b:c1:ec:c2:67:6c:bf:ba:db:59:eb:00:
85:4e:85:df:2a:8a:45:3b:ce:2e:17:8a:3b:d6:05:
78:2d:39:76:30:d8:30:3b:37:0a:db:cd:bd:5d:55:
49:cc:c4:34:2f:30:c5:42:7d:80:3f:45:62:51:14:
80:6d:ce:86:b5:cf:54:bb:9b:ed:6c:4c:a8:dd:55:
a8:7e:93:bb:f5:2d:60:51:b0:1f:01:da:f4:b3:81:
39:67:6f:42:db:c0:e4:c0:85:89:95:20:b2:4e:9b:
79:8d:6c:b1:a9:4c:ba:e2:a9:9d:ec:41:40:72:5c:
06:8c:d2:c7:7c:ea:84:8f:4a:f5:10:3b:3f:15:74:
01:75:2c:c5:28:de:cd:a6:59:69:03:ec:3d:49:9f:
dc:34:ed:b5:0a:cd:47:f5:87:dd:2d:7b:cf:e5:fd:
64:65:1b:00:b6:ac:3c:b9:ae:54:92:3b:6c:cc:7c:
9f:8b:8f:1b:73:97:5f:03:90:cf:26:fe:4a:26:2d:
86:e9:6d:39:e6:3b:65:55:79:98:06:5c:aa:e9:20:
34:fe:67:09:4e:7a:06:d0:32:4a:69:33:ca:65:d7:
e9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A4:D9:C1:9B:94:4E:78:C4:76:FC:7D:60:13:47:34:FA:5C:39:CF
X509v3 Authority Key Identifier:
keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:73:b9:d5:4b:78:b2:33:cc:76:fe:22:b7:ef:0a:e7:32:67:
29:da:aa:f3:f2:f5:2a:c9:aa:6a:ac:4b:a0:ed:b6:3e:da:72:
47:98:f6:07:54:38:b0:e5:7a:f4:be:ee:0d:60:83:eb:96:5b:
8b:2c:22:04:d3:1e:38:8d:37:c2:a7:5a:d0:98:ae:3d:9c:36:
7b:bc:a7:15:3f:0a:72:49:8d:01:ff:5a:43:6d:7d:ee:d1:f3:
7d:52:91:1a:09:54:83:fd:bd:3c:73:3e:9f:6a:84:bf:ed:c4:
8b:28:bf:da:68:fe:44:4d:a6:77:a8:1a:4b:94:1f:bb:1b:92:
47:d7:ce:ce:1f:b4:4e:a4:4a:23:3f:16:03:e2:76:d4:41:f0:
85:bf:cb:26:51:87:70:b5:2f:0d:08:49:f3:48:7b:5f:14:a4:
c6:e5:49:5a:c8:26:0d:ec:db:40:c4:ac:1b:be:30:15:06:c7:
e7:2c:bd:2a:5c:f3:e8:45:35:23:85:d9:2d:52:ae:75:91:f7:
ee:11:57:ab:1d:21:3f:59:2a:fd:29:87:34:49:db:98:8b:d9:
74:93:d0:25:89:5f:fd:62:b2:70:ca:dd:c2:62:ba:d6:12:92:
c9:4f:e7:80:e1:37:52:63:34:a0:94:ae:48:8f:73:68:bb:41:
12:96:78:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WEzsRfmibeTDLK6AGbsZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNzEwMDI2MTY4ZDg2YWZiOGU5OTljZmIyYThlODljNTcy
ZGQyZjkwHhcNMjUxMDE5MTIwMTA5WhcNMjUxMDIwMTIwMTA5WjAzMTEwLwYDVQQD
Eyg0MGE0ZDljMTliOTQ0ZTc4YzQ3NmZjN2Q2MDEzNDczNGZhNWMzOWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2Co+FLVRa66WiJ39bNtkzt0Gyyb
HsAH+4LlkSA/PfJbwezCZ2y/uttZ6wCFToXfKopFO84uF4o71gV4LTl2MNgwOzcK
2829XVVJzMQ0LzDFQn2AP0ViURSAbc6Gtc9Uu5vtbEyo3VWofpO79S1gUbAfAdr0
s4E5Z29C28DkwIWJlSCyTpt5jWyxqUy64qmd7EFAclwGjNLHfOqEj0r1EDs/FXQB
dSzFKN7NpllpA+w9SZ/cNO21Cs1H9YfdLXvP5f1kZRsAtqw8ua5UkjtszHyfi48b
c5dfA5DPJv5KJi2G6W055jtlVXmYBlyq6SA0/mcJTnoG0DJKaTPKZdfpZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECk2cGblE54xHb8fWATRzT6XDnPMB8GA1UdIwQY
MBaAFKBxACYWjYavuOmZz7Ko6JxXLdL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYt
YTlhNmJmNjVlNjNhLzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYtYTlhNmJmNjVlNjNh
LzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHO51Ut4
sjPMdv4it+8K5zJnKdqq8/L1KsmqaqxLoO22PtpyR5j2B1Q4sOV69L7uDWCD65Zb
iywiBNMeOI03wqda0JiuPZw2e7ynFT8KckmNAf9aQ2197tHzfVKRGglUg/29PHM+
n2qEv+3Eiyi/2mj+RE2md6gaS5QfuxuSR9fOzh+0TqRKIz8WA+J21EHwhb/LJlGH
cLUvDQhJ80h7XxSkxuVJWsgmDezbQMSsG74wFQbH5yy9Klzz6EU1I4XZLVKudZH3
7hFXqx0hP1kq/SmHNEnbmIvZdJPQJYlf/WKycMrdwmK61hKSyU/ngOE3UmM0oJSu
SI9zaLtBEpZ4XQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:12 2025 by rpki-client