Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: k7hQk94X0z1tGx8XpsWsuFeLYn7rriTSvsY7ycGa2G4=
Subject key identifier: 17:C4:B3:26:B3:7C:6B:F2:CC:B4:88:62:12:06:0D:EC:2D:C4:B7:B4
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 0199FDA1CF43B918B1EFE058D8D0F8503B67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 0359
Signing time: Sun 19 Oct 2025 18:01:03 +0000
Manifest this update: Sun 19 Oct 2025 18:01:03 +0000
Manifest next update: Mon 20 Oct 2025 18:01:03 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: lhtWsYUabLxV00jyppwmisFD+qp02a+d/BlMLjfHZ0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:cf:43:b9:18:b1:ef:e0:58:d8:d0:f8:50:3b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Oct 19 18:01:03 2025 GMT
Not After : Oct 20 18:01:03 2025 GMT
Subject: CN=17c4b326b37c6bf2ccb4886212060dec2dc4b7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:46:29:58:f0:a6:54:a1:6e:93:49:ce:f4:
0e:f3:62:ae:e7:9d:ce:91:55:f8:e8:32:66:65:92:
7c:c5:79:83:83:df:b6:dc:7f:d8:20:2f:14:5b:ef:
8a:06:33:c4:87:c7:fb:1b:0a:84:b4:0b:eb:a9:7c:
60:8f:bc:84:a9:6a:0d:ef:08:79:8f:70:e2:5c:6a:
c3:23:4e:d0:9e:a4:a2:5b:f3:6a:f7:de:89:3d:60:
ff:c0:c2:a5:e6:62:78:c0:25:6d:08:7b:e7:e7:eb:
4b:93:78:47:9d:84:0d:b5:bd:b7:77:29:a6:76:c1:
75:29:c7:9d:09:e4:06:13:96:ee:27:6d:91:e3:cd:
91:18:ad:84:ae:c2:22:32:0b:ad:e8:44:44:d8:fb:
af:5b:04:ca:f9:80:43:48:26:b9:00:9f:18:54:96:
95:cf:b7:86:ee:4c:d7:80:21:6b:ba:b1:2a:38:1b:
0a:7e:ab:e6:74:96:d2:74:a5:44:98:c8:d2:ef:42:
e6:60:c4:08:cc:da:14:6f:05:24:87:ed:75:3b:fb:
93:77:94:6f:23:a6:c5:bf:b2:00:42:2a:64:1b:06:
ec:45:c3:a9:07:dd:1a:e9:4d:76:bc:4b:4d:f5:27:
b3:2a:cf:d3:76:85:57:b4:1c:2c:29:43:fc:43:6c:
eb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C4:B3:26:B3:7C:6B:F2:CC:B4:88:62:12:06:0D:EC:2D:C4:B7:B4
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:59:a0:61:6d:0e:0b:4c:94:41:b1:91:b0:71:92:f6:f5:10:
d1:e7:9d:06:ec:24:67:7d:88:9f:90:4e:6c:be:5d:c6:58:3f:
4e:11:8d:1d:2c:a7:da:86:4b:f0:a7:67:74:1f:4b:d9:bd:7f:
d2:9e:93:01:d3:a9:39:63:36:d2:89:99:32:3c:cc:1b:b8:72:
4a:19:54:06:60:15:16:fc:79:46:40:60:9a:fe:4c:91:cf:9f:
a7:12:d5:4f:31:3e:04:0f:89:da:e7:23:df:2e:14:ef:9e:70:
2e:e7:ea:84:71:f7:95:9a:76:da:7c:f2:20:0d:cd:bd:46:6b:
53:44:df:d4:ee:1c:d4:9b:d9:fd:8f:65:e3:c8:80:c4:95:24:
90:e8:48:6a:a1:e0:3b:e9:10:93:fa:6b:dd:20:ff:4c:4a:19:
db:88:e3:7e:2b:28:c7:83:c3:2e:1a:d7:2a:ae:f5:93:5e:b7:
8d:43:11:72:41:aa:be:5d:15:0d:b3:09:c7:cf:ac:ee:e5:a8:
b1:fa:f7:a5:bb:7c:b8:4b:dc:92:6d:da:10:51:fb:3e:35:42:
46:37:2a:da:8e:29:57:91:2e:25:23:77:f1:e9:9e:e6:82:f6:
52:4f:5c:5d:83:e9:94:66:c5:f8:68:c7:d0:bb:dc:fd:2c:97:
43:fc:d7:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:58:51 2025 by rpki-client