
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: +3OAb5nB7WqRVtgwJTXkbM/bkp+IzTSxHGBb5votSuw=
Subject key identifier: 7C:28:BA:E6:8C:C5:F9:43:05:58:34:80:3F:B1:74:D4:04:B0:57:6F
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 0199FC8F725FC496AD02FA396011582B4C47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 13:01:23 +0000
Manifest this update: Sun 19 Oct 2025 13:01:23 +0000
Manifest next update: Mon 20 Oct 2025 13:01:23 +0000
Files and hashes: 1: 9xc32CvuOjNWHQB-PWYWWQOY_yA.roa (hash: PjbNQ/Rs2a2yPfO42XDBv2ntO3mtq/Wj2Yqgz9eO9jA=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: r7lgnhhTPfXlK9wG4+5mTwh8bi8uTHLm8we10PhSe64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:72:5f:c4:96:ad:02:fa:39:60:11:58:2b:4c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: Oct 19 13:01:23 2025 GMT
Not After : Oct 20 13:01:23 2025 GMT
Subject: CN=7c28bae68cc5f943055834803fb174d404b0576f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:65:98:34:a5:58:74:c6:74:a7:60:20:f3:
f9:16:0f:e9:60:82:cd:8c:56:70:96:20:f5:fb:8c:
40:ff:91:8c:ab:cc:04:61:ed:52:96:80:98:e3:c3:
ba:bd:d6:ba:5a:1d:b5:76:ce:6d:6c:ab:e4:e8:e3:
55:5c:31:2c:cf:66:a5:e6:b4:32:9b:ef:45:f7:dc:
f6:81:d1:f2:fe:24:4c:5e:c8:32:0d:d4:11:ec:6e:
e3:f8:87:f2:88:00:42:8d:f1:78:51:d3:3a:04:53:
47:97:dd:32:8f:e1:1b:1d:9f:c4:d6:59:66:5a:be:
a3:aa:aa:84:40:2a:1d:67:29:99:78:56:37:02:2d:
c8:de:27:00:46:bc:a2:02:71:e8:73:14:86:bd:5c:
71:31:15:c4:9e:c3:d1:4f:1b:19:a3:98:a2:d3:f1:
56:fb:18:bc:72:52:51:16:fd:78:ca:6a:ee:92:84:
b9:bd:6f:3c:45:4d:c9:7d:18:be:9e:b5:44:20:cc:
19:10:b8:bd:56:c7:4a:0e:a2:12:43:08:cf:fe:0a:
50:43:9e:c3:6a:8c:cc:d6:57:68:96:55:0d:86:d3:
df:23:01:f3:62:36:24:d5:7e:fa:c2:c7:44:4c:3f:
35:23:81:64:39:a3:a2:3f:88:f0:6e:a1:3f:53:84:
7c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:28:BA:E6:8C:C5:F9:43:05:58:34:80:3F:B1:74:D4:04:B0:57:6F
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:9c:e3:13:f6:a0:9b:1f:3a:6b:29:7b:76:0c:8f:27:ed:e8:
7f:f9:73:3a:c5:82:c2:12:82:35:b1:e7:bc:35:d9:7b:b7:25:
c6:f7:d1:19:d5:f7:eb:02:28:c8:27:a6:40:9e:1b:15:2e:b0:
b8:46:bf:27:78:43:a4:bd:c9:56:ca:1e:a2:fb:a1:50:c0:14:
ff:6e:84:8c:de:25:70:60:cd:f7:c6:a0:40:20:c0:6b:a4:89:
cc:6e:a7:d1:2a:44:e3:ea:48:9d:3c:93:1f:ab:78:db:ff:b1:
42:c7:85:d4:c4:ee:41:60:52:ed:f1:4c:8c:00:33:86:06:4f:
95:37:33:e9:f6:52:6d:1e:61:3b:c2:3e:8e:7c:11:ef:72:e4:
39:d5:11:b2:91:a4:ea:b3:e3:18:9f:c7:76:a8:da:cc:fb:47:
1d:81:62:03:a6:af:a8:67:a5:c5:60:39:ea:d5:be:3d:77:83:
45:f3:ad:79:22:46:2f:a4:10:a0:85:b4:b8:c5:8b:40:16:c1:
2d:7e:c3:d3:85:bb:6b:78:eb:8f:94:07:ca:b8:2e:0f:f2:11:
f1:f3:27:67:9c:21:78:a3:64:a8:28:51:f7:8c:c0:db:11:8a:
0c:3f:5e:a9:57:e8:78:93:e7:db:68:3a:6e:4d:bd:be:3a:83:
2f:ab:d7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:20 2025 by rpki-client