Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
File: oI5By_3vrQuw4pckeswaIB0t9KA.mft (raw, json)
Hash identifier: BgYdHSLEvbTowxZGm3mkADZdQEe6me/3nwKggsyYFJc=
Subject key identifier: EC:5E:12:8C:40:73:C9:0A:46:90:4A:31:1A:AB:12:A0:79:BB:A6:FE
Authority key identifier: A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
Certificate issuer: /CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Certificate serial: 0199FC8F9D4D342784B0F38ECA31D2860EDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
Manifest number: 1276
Signing time: Sun 19 Oct 2025 13:01:34 +0000
Manifest this update: Sun 19 Oct 2025 13:01:34 +0000
Manifest next update: Mon 20 Oct 2025 13:01:34 +0000
Files and hashes: 1: kaGph50MrnZk9_Ae5Md0JZHkmEM.roa (hash: KOuavh84jne4Oayx4KsSyaMHm/sNkEEba6rU0bPnEbc=)
2: oI5By_3vrQuw4pckeswaIB0t9KA.crl (hash: L/6qWlyVzSQAAb3i8SaDxo76vsYQKNzCO2C2x7KfYTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:9d:4d:34:27:84:b0:f3:8e:ca:31:d2:86:0e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Validity
Not Before: Oct 19 13:01:34 2025 GMT
Not After : Oct 20 13:01:34 2025 GMT
Subject: CN=ec5e128c4073c90a46904a311aab12a079bba6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:1e:07:4e:29:04:3b:b5:90:41:99:2c:a6:
07:bb:f1:b5:6d:67:d0:2e:82:08:23:bb:2d:a2:d1:
35:fc:14:b4:36:59:c9:d7:ff:35:c6:07:16:7f:0b:
6d:c2:24:9b:cd:ec:3d:77:ed:09:43:95:df:84:9a:
f0:7e:1b:92:4a:9b:1d:55:71:cb:77:51:91:0c:09:
5f:ef:59:aa:de:7f:4f:07:20:d9:ae:69:17:97:70:
de:de:1b:17:67:01:72:b8:e5:91:c1:c3:b4:f0:c1:
10:ac:86:b2:38:43:03:d1:e0:5e:9b:32:2e:eb:a0:
01:42:c6:cf:1d:c5:cf:00:15:77:11:49:d8:36:77:
2a:ca:b8:83:40:f1:99:50:45:d2:6c:5b:48:41:33:
67:7d:67:88:7c:46:1f:47:0a:b2:e4:6f:48:78:b1:
95:63:90:48:6e:0b:c6:52:ab:ad:d0:52:34:3a:eb:
6c:a9:d1:50:c8:bc:89:64:88:89:ec:73:53:d6:96:
5c:4a:5c:cb:9c:69:b9:07:ab:09:c2:8c:f2:d9:cf:
b0:92:ac:4b:73:c4:38:91:8e:00:f1:dd:3b:ae:16:
3b:e1:35:46:67:4e:7f:f0:b7:dd:85:da:8e:77:a9:
bf:46:05:93:5a:33:8d:53:97:e4:cd:7b:a4:d7:b3:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5E:12:8C:40:73:C9:0A:46:90:4A:31:1A:AB:12:A0:79:BB:A6:FE
X509v3 Authority Key Identifier:
keyid:A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:67:13:4a:57:4c:c7:d5:fa:1f:7d:0a:ec:21:53:a3:e2:2d:
c9:c4:43:d4:56:98:e0:74:47:43:e0:62:00:dd:6d:55:ca:89:
d1:93:c1:e8:0c:ef:b5:7c:56:48:51:17:c3:40:f6:6f:13:aa:
2b:99:97:32:0d:35:5f:6c:e2:53:c0:0c:54:fa:3d:94:90:23:
4c:81:da:cf:85:f8:fc:98:76:2f:a0:ed:d2:92:76:15:06:de:
a6:bc:2a:8f:3c:58:ef:3e:8a:77:d3:70:3a:3e:51:0a:d5:c6:
21:8c:c8:68:a9:1d:2b:9f:0a:d2:57:36:76:a2:c5:c6:f9:d8:
51:2f:ab:2d:d9:ec:0c:29:f3:52:1f:9f:12:83:b5:9a:e9:72:
f1:4a:c2:f5:e7:07:cf:6d:1f:d3:b6:d1:64:69:15:36:55:c7:
63:cf:89:4c:26:c0:92:59:83:3d:66:09:d1:82:b6:64:fc:8e:
e7:33:c5:7a:73:26:52:ce:32:da:f0:e7:cb:d1:a0:2e:fc:2d:
ae:f2:2d:ef:6f:fa:cf:9b:06:36:54:8b:6d:9b:2d:5a:b4:ab:
dd:c3:8a:60:9a:4e:ec:92:dd:2a:bd:e3:a9:8e:a6:78:cb:dd:
33:de:14:3f:39:9e:cd:15:e8:f1:fc:9c:79:ff:df:ac:da:7b:
21:00:ce:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j51NNCeEsPOOyjHShg7dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOGU0MWNiZmRlZmFkMGJiMGUyOTcyNDdhY2MxYTIwMWQy
ZGY0YTAwHhcNMjUxMDE5MTMwMTM0WhcNMjUxMDIwMTMwMTM0WjAzMTEwLwYDVQQD
EyhlYzVlMTI4YzQwNzNjOTBhNDY5MDRhMzExYWFiMTJhMDc5YmJhNmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqP0eB04pBDu1kEGZLKYHu/G1bWfQ
LoIII7stotE1/BS0NlnJ1/81xgcWfwttwiSbzew9d+0JQ5XfhJrwfhuSSpsdVXHL
d1GRDAlf71mq3n9PByDZrmkXl3De3hsXZwFyuOWRwcO08MEQrIayOEMD0eBemzIu
66ABQsbPHcXPABV3EUnYNncqyriDQPGZUEXSbFtIQTNnfWeIfEYfRwqy5G9IeLGV
Y5BIbgvGUqut0FI0OutsqdFQyLyJZIiJ7HNT1pZcSlzLnGm5B6sJwozy2c+wkqxL
c8Q4kY4A8d07rhY74TVGZ05/8LfdhdqOd6m/RgWTWjONU5fkzXuk17NpYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxeEoxAc8kKRpBKMRqrEqB5u6b+MB8GA1UdIwQY
MBaAFKCOQcv9760LsOKXJHrMGiAdLfSgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0k1QnlfM3ZyUXV3NHBja2Vzd2FJQjB0OUtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC83YTgwNmMtMmYwOC00N2Q5LTljYzkt
NjU4ZDRjNDYyOGFkLzEvb0k1QnlfM3ZyUXV3NHBja2Vzd2FJQjB0OUtBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC83YTgwNmMtMmYwOC00N2Q5LTljYzktNjU4ZDRjNDYyOGFk
LzEvb0k1QnlfM3ZyUXV3NHBja2Vzd2FJQjB0OUtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjWcTSldM
x9X6H30K7CFTo+ItycRD1FaY4HRHQ+BiAN1tVcqJ0ZPB6AzvtXxWSFEXw0D2bxOq
K5mXMg01X2ziU8AMVPo9lJAjTIHaz4X4/Jh2L6Dt0pJ2FQbeprwqjzxY7z6Kd9Nw
Oj5RCtXGIYzIaKkdK58K0lc2dqLFxvnYUS+rLdnsDCnzUh+fEoO1muly8UrC9ecH
z20f07bRZGkVNlXHY8+JTCbAklmDPWYJ0YK2ZPyO5zPFenMmUs4y2vDny9GgLvwt
rvIt72/6z5sGNlSLbZstWrSr3cOKYJpO7JLdKr3jqY6meMvdM94UPzmezRXo8fyc
ef/frNp7IQDO0Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:21 2025 by rpki-client