Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json)
Hash identifier: aaYW/oxEeI0daEMnBKQuLeNghf8LiyIFeUS6MHzeQ60=
Subject key identifier: FE:F8:FC:8A:A7:50:66:3C:31:61:3D:5B:AA:7E:D1:9A:1D:7C:13:2F
Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Certificate serial: 0199FC214BE5CA51B0C604A434196D12ACA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
Manifest number: 141C
Signing time: Sun 19 Oct 2025 11:01:04 +0000
Manifest this update: Sun 19 Oct 2025 11:01:04 +0000
Manifest next update: Mon 20 Oct 2025 11:01:04 +0000
Files and hashes: 1: EZbYUKlbHnDupSiI6vHg0ScrIQc.roa (hash: yrslRTQqqMutFqrXn7kHXajy2V9WRPNQRVUgaXrJw9E=)
2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: FBQeOyXKkiY6sok2HxqETz4Xqt2S8iAXN2L8lz6KVnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:4b:e5:ca:51:b0:c6:04:a4:34:19:6d:12:ac:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Validity
Not Before: Oct 19 11:01:04 2025 GMT
Not After : Oct 20 11:01:04 2025 GMT
Subject: CN=fef8fc8aa750663c31613d5baa7ed19a1d7c132f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:24:fe:40:23:ff:ed:39:2b:30:7f:a1:9b:8b:
b3:b3:0f:b2:aa:5d:54:b2:22:fb:9b:ac:6e:bb:b9:
de:b8:71:d5:38:9f:b7:dd:2f:78:40:2f:86:ef:d7:
fa:35:b4:23:9b:a7:c8:8b:e7:a8:d5:23:05:79:8d:
21:a3:cc:05:74:85:c6:54:5e:72:3f:35:02:42:57:
10:d3:b7:a9:81:b5:fa:53:c7:7f:66:b8:2b:71:6b:
f7:b3:2d:86:d2:37:2c:56:f0:69:72:12:7e:e1:1f:
fd:6c:f9:a0:6e:e6:12:92:2e:5b:53:87:0f:34:65:
0e:d9:e9:60:72:d1:3d:ba:eb:17:27:97:4b:24:58:
66:48:fa:76:51:37:ad:d4:ce:48:c3:7d:d7:2e:5b:
5f:a6:0c:dc:8c:2a:85:0e:fc:7c:2a:e1:fd:04:f7:
21:f1:02:cb:84:1f:fd:37:52:dc:1b:ff:0e:2e:d1:
d5:bc:31:eb:23:c8:14:63:b4:78:3c:e0:e5:40:a4:
36:05:6b:5e:e5:38:24:16:c7:58:b8:32:47:b3:9c:
56:07:80:21:ab:7e:50:a1:ce:61:5d:86:4b:34:48:
4c:59:a8:b9:64:13:aa:3c:fc:eb:0c:42:c4:b0:70:
6c:e7:a9:db:ea:e6:ba:88:31:06:f8:2c:c0:b8:ad:
fa:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F8:FC:8A:A7:50:66:3C:31:61:3D:5B:AA:7E:D1:9A:1D:7C:13:2F
X509v3 Authority Key Identifier:
keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:62:f4:80:c1:85:73:72:ff:f8:f9:4f:4c:3d:2e:b3:83:66:
58:4f:d6:cb:b3:c4:3b:53:0b:fb:6e:ad:d5:10:8e:57:39:9d:
27:9b:2e:e2:70:a3:75:f6:69:32:69:28:73:24:81:26:d1:ca:
66:f4:b3:62:8c:0d:8c:44:f8:14:0d:24:ca:ad:08:af:fd:02:
58:f9:83:ca:df:e6:13:e6:6f:c3:39:0f:02:00:b3:06:7a:f5:
b4:70:41:6d:54:2a:c0:57:1b:1c:7f:f7:74:7e:b1:6c:fb:e7:
61:08:2e:99:7b:f5:54:5b:7f:58:cc:09:8f:aa:10:8f:76:b4:
40:0f:7e:01:9d:b6:3d:2b:98:e1:42:80:4a:f0:45:5e:80:bd:
b6:5c:f5:13:64:dd:52:fa:3f:79:12:57:ce:47:72:ec:e3:06:
16:96:d5:37:c5:a5:8b:41:ef:b4:b6:3d:fb:b6:01:f1:93:b4:
85:aa:72:24:23:bd:46:ff:25:df:67:a5:95:f0:7a:73:ab:34:
6b:79:bb:3c:58:04:a5:ea:7e:a9:3e:a7:38:af:50:ed:36:a9:
3b:d2:76:b3:24:e6:62:e5:71:7c:c8:9b:a6:03:f0:2c:71:df:
30:1c:d7:87:5f:99:c2:60:e5:9f:30:e8:6e:ea:fc:b5:19:c5:
b9:12:aa:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:19 2025 by rpki-client