Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
File: oWKOOfRxrdx15xo5G4Ldklx_CB0.mft (raw, json)
Hash identifier: +xNcJdBx7DFQ6dWHHuPW4HtBOqi2QMWPoxIhTTSmTtQ=
Subject key identifier: 5D:B4:E6:82:6A:83:02:05:8C:0A:E3:D4:12:04:B6:BF:0D:CF:1E:FE
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 0199FB46264668F6009218E37B814BE2DBBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
Manifest number: 12B4
Signing time: Sun 19 Oct 2025 07:01:42 +0000
Manifest this update: Sun 19 Oct 2025 07:01:42 +0000
Manifest next update: Mon 20 Oct 2025 07:01:42 +0000
Files and hashes: 1: 1-rpUgw0W3sKSFdW3yshaE1HCCc0.roa (hash: c/Tt5N/pZWiN2mpptC/U9LHYusWW/dCE4lcNMT3U+WE=)
2: oWKOOfRxrdx15xo5G4Ldklx_CB0.crl (hash: nY861yg85AvfVDKuLt+fNg83w0kT3PvWj+wkV7lyjtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:26:46:68:f6:00:92:18:e3:7b:81:4b:e2:db:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: Oct 19 07:01:42 2025 GMT
Not After : Oct 20 07:01:42 2025 GMT
Subject: CN=5db4e6826a8302058c0ae3d41204b6bf0dcf1efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:3b:a7:54:37:ee:4f:37:ba:86:a4:96:d8:
47:53:68:f6:3a:7d:9a:c7:3e:96:3b:91:3b:4d:34:
7b:60:2c:27:d5:af:f4:c0:71:6d:ec:b5:44:d4:53:
81:29:ee:55:75:5d:49:54:e4:6e:c5:eb:67:f4:20:
33:1d:91:67:93:37:5c:a8:9e:b5:4f:b4:1f:3b:9f:
d2:f0:45:d1:c1:7f:f7:82:73:a5:20:e7:13:1c:3a:
76:6e:fc:7f:65:bc:cb:35:1a:99:ac:03:23:64:19:
0a:d1:37:c3:59:b7:8b:c8:32:51:81:3a:c6:02:52:
70:08:b4:41:a0:dc:8e:59:8f:f2:29:7f:b9:5f:7f:
de:e3:ef:d1:87:53:23:05:b5:47:91:96:e5:32:22:
d1:8e:16:bf:a7:8e:99:8d:d1:df:2a:1e:85:13:d4:
73:dc:b6:2a:36:11:40:cb:4a:00:45:b8:b4:c5:ac:
91:90:76:c5:e9:bf:e5:ca:72:93:ff:7c:cf:71:eb:
db:4f:52:b3:85:a2:ef:47:26:00:bb:27:0a:9d:dc:
5f:b8:d0:0f:31:c2:38:22:47:b1:fc:4f:3e:1c:0a:
0d:ac:32:e6:26:11:51:50:6c:88:3d:80:63:32:b5:
40:35:1d:20:3b:82:4b:e5:fe:bd:a2:c0:b9:63:e8:
4e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B4:E6:82:6A:83:02:05:8C:0A:E3:D4:12:04:B6:BF:0D:CF:1E:FE
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:36:dd:61:fe:b9:d0:b7:98:60:55:81:03:32:47:9e:76:21:
6a:33:2d:30:63:4e:10:fc:45:86:dd:8d:0c:95:c1:da:f2:77:
b6:b5:66:97:01:98:b9:82:99:48:5d:a5:6b:a2:a7:32:db:55:
b9:26:d5:1a:09:6a:03:04:07:be:a7:64:f4:c3:31:85:df:4f:
91:ce:5b:2a:ac:3e:63:5b:f3:33:94:d5:b4:be:c7:14:f8:fd:
9b:e3:6e:41:e4:a9:36:54:19:fd:7c:de:a8:94:2b:5e:46:e8:
c8:a6:68:3f:84:ce:9c:02:78:e2:54:d1:69:76:33:07:f7:b4:
8f:f1:44:61:6a:58:c7:11:e4:60:e9:a5:e3:9e:a0:77:2a:70:
40:9a:36:11:3e:7b:35:ee:5a:f4:ad:0a:ee:09:59:01:f9:a7:
aa:19:6e:3b:03:8c:f6:0d:25:0b:3c:a7:71:5f:a2:fd:ec:f2:
dc:95:70:7b:05:8a:59:02:cf:10:dd:cd:99:7e:68:8a:f2:26:
fc:a9:33:88:39:30:95:51:64:b5:16:d8:7c:44:6f:4f:32:8d:
17:c8:40:eb:43:02:97:8b:58:e5:b3:7d:da:e3:87:cc:7e:20:
64:10:43:f2:48:48:2e:06:41:8d:a0:b9:64:11:42:03:15:66:
56:b4:70:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:51 2025 by rpki-client