Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
File: OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft (raw, json)
Hash identifier: fa7V51BgIDM7a+MRNYK9WHIPRmRuL7rW4Cbv8mt5k5I=
Subject key identifier: 63:72:39:EB:72:88:B3:47:36:C7:A9:E7:C4:6C:CD:A6:2B:11:B3:06
Authority key identifier: 3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50
Certificate issuer: /CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450
Certificate serial: 019A0147C8D05214340670F0D8B587065A8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 11:01:12 +0000
Manifest this update: Mon 20 Oct 2025 11:01:12 +0000
Manifest next update: Tue 21 Oct 2025 11:01:12 +0000
Files and hashes: 1: 8b8hGUt6rzi1dlifxra-q3rgP6w.roa (hash: KASE+0wVItpUVcgXdu/CScsiZaEIchQxerFmFT5uHpo=)
2: OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl (hash: TjKd8f39cg4TinGI23b54QEBB8braGyAcvlvEsUOG8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:47:c8:d0:52:14:34:06:70:f0:d8:b5:87:06:5a:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450
Validity
Not Before: Oct 20 11:01:12 2025 GMT
Not After : Oct 21 11:01:12 2025 GMT
Subject: CN=637239eb7288b34736c7a9e7c46ccda62b11b306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bc:1c:5b:2d:41:c1:f1:48:f8:7a:31:0e:ba:
da:80:1e:0b:d7:c9:3b:19:0a:08:93:11:ce:e2:a6:
ba:ec:80:f7:00:fc:b7:ff:b0:62:51:02:58:bb:bf:
56:08:27:0b:ca:bd:9d:ea:b5:51:af:f0:68:5e:4c:
97:bb:c5:e9:6f:a4:3b:97:50:7c:e5:a1:8c:cd:2d:
ca:57:a5:2f:bc:b7:01:5f:c9:29:79:b0:8e:08:ff:
18:82:3e:87:f8:f2:49:36:1a:49:c5:5a:51:99:03:
b4:42:d4:e0:43:2e:6d:5f:ca:c3:47:a1:7d:3d:f5:
da:3b:e4:e0:c3:75:42:c9:5c:8b:89:1f:78:f2:e4:
e3:5c:fb:ec:f9:12:9c:de:81:25:4b:f9:e0:df:ff:
88:c0:3c:2c:86:7c:3c:c8:ac:47:b2:db:30:19:27:
24:68:ea:90:39:28:20:bb:9d:b6:4f:83:cf:2f:07:
c4:ed:72:f9:42:ab:24:ef:b7:ed:8a:cb:5a:9d:d6:
59:f1:e7:ff:de:27:b4:c2:7e:11:d5:90:c3:40:4e:
ce:16:44:a3:58:ee:02:91:b3:da:11:9e:d2:78:1f:
cd:72:01:9a:d5:d1:77:3d:6a:a0:00:96:37:38:f3:
ab:29:07:97:ca:a3:bc:1f:00:de:c3:b4:89:a8:08:
79:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:72:39:EB:72:88:B3:47:36:C7:A9:E7:C4:6C:CD:A6:2B:11:B3:06
X509v3 Authority Key Identifier:
keyid:3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:82:6d:dd:18:b6:f1:5a:13:70:ca:db:12:68:cf:b0:2d:86:
85:24:4e:ee:52:5d:fa:aa:56:df:67:69:2c:e6:58:52:08:bb:
25:f0:d1:c1:2a:dd:c8:37:1e:00:14:da:b8:5c:42:b4:a7:e3:
42:5f:1b:ff:a8:01:eb:1d:d4:3b:91:dc:46:d9:b8:c0:73:d4:
af:6f:e7:18:0f:b0:60:f4:ff:fd:2e:87:a3:24:6d:42:e7:1a:
72:57:76:d3:24:2c:54:30:76:af:15:b6:59:41:40:9b:6c:23:
93:38:d7:84:b5:55:30:00:8c:83:0d:ed:ae:b1:17:c5:83:69:
c4:69:09:b7:20:d3:91:78:59:88:8e:70:37:6d:17:f3:15:3d:
b4:fc:25:25:6f:6c:f0:88:54:98:15:3a:8e:8e:65:50:5e:84:
6d:a5:e9:cd:c6:9f:87:09:a7:c6:16:d0:80:ad:48:01:6c:3c:
0d:6b:46:da:bc:57:70:b8:84:1f:92:02:b7:6d:b8:44:61:95:
ec:b0:d9:24:a2:01:88:ad:c3:c1:b5:35:59:54:10:46:d2:b7:
06:1b:69:65:ee:bb:02:b0:10:f9:82:95:94:64:05:28:9c:24:
5b:bf:f6:7c:66:6d:8a:a4:38:03:11:69:fc:4f:30:85:97:fb:
08:bc:36:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:35:49 2025 by rpki-client