Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: QccW1cwWzfh7t4U7qbWUgRV15a+s0JIR36KmBVHBupQ=
Subject key identifier: 5D:FF:1F:8B:B8:04:44:88:53:2E:17:3B:74:FA:54:D0:73:21:C1:60
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 019922FA21DF8062A7BD000EFE166C9C1A57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 118F
Signing time: Sun 07 Sep 2025 07:00:42 +0000
Manifest this update: Sun 07 Sep 2025 07:00:42 +0000
Manifest next update: Mon 08 Sep 2025 07:00:42 +0000
Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: Id/P7NEEJNVpl3+PxIftbDl6qeqa4C73fUkJDXgx818=)
2: RzF4b3sIXe3DzFdXYIh4DACfNyQ.roa (hash: NzaYQenLUpyVGKDKds+F+mtyj0Y2xs4JaXrSTsoxdK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:21:df:80:62:a7:bd:00:0e:fe:16:6c:9c:1a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Sep 7 07:00:42 2025 GMT
Not After : Sep 8 07:00:42 2025 GMT
Subject: CN=5dff1f8bb8044488532e173b74fa54d07321c160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:c3:e7:44:7c:a5:c4:71:61:e7:c9:00:b9:
fe:66:10:c1:29:1b:ab:d9:2e:fe:d5:1a:59:a3:50:
11:be:3a:37:10:83:2e:59:b6:20:89:a0:0e:69:0e:
d9:0f:51:7e:ab:d2:2f:ac:62:35:61:7d:d5:7a:97:
b5:9e:1d:25:16:d8:16:69:4c:2b:04:de:24:02:b3:
f7:63:87:bc:01:d4:08:17:95:87:f9:60:4d:b4:41:
e8:26:26:98:0a:e3:e6:29:99:b6:bf:17:c4:a7:9b:
47:d2:90:39:6b:8c:47:a8:2f:a2:03:9d:e4:da:66:
6a:8e:00:7e:85:6b:8e:ed:28:4d:42:17:22:7b:3d:
67:bb:7f:f2:85:73:9b:98:21:27:8a:73:23:25:e6:
04:00:35:53:eb:60:88:f0:3d:df:56:5b:c5:e8:c6:
e0:29:0d:39:71:38:e9:0f:15:d6:32:03:5d:74:b9:
e1:85:55:65:e7:c4:6a:00:1a:da:a3:cf:f5:7e:ec:
88:2d:75:ca:de:8c:3f:eb:d4:76:fd:e1:7e:fe:47:
af:72:6c:fc:60:e3:00:91:4e:c9:11:f9:50:2b:91:
ef:8b:63:01:a2:7e:3a:45:a3:80:d8:80:c5:40:8c:
27:cb:bc:9c:03:f8:ab:d1:93:08:3f:19:6e:9e:82:
3b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FF:1F:8B:B8:04:44:88:53:2E:17:3B:74:FA:54:D0:73:21:C1:60
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:94:c9:61:9e:ce:14:47:cd:79:72:55:de:8a:de:24:b9:00:
46:61:bd:c4:4b:31:a1:1f:2e:b2:dc:b7:68:7b:f0:3d:34:a9:
34:de:60:cb:4e:f0:54:9c:3b:bd:86:ee:73:fa:5f:dc:2a:b1:
13:43:44:1d:47:c9:03:14:c5:1b:72:10:5d:27:65:cd:1c:19:
75:df:a8:35:2e:12:29:c7:a2:44:c6:6f:8a:01:12:6f:15:9e:
0f:38:eb:1e:7e:40:47:6b:db:a8:ef:a3:37:68:e4:d2:5c:8c:
9f:10:71:16:00:14:4a:68:bd:11:48:de:46:2b:23:01:15:0f:
45:72:3b:bc:6d:23:45:5e:e6:98:b4:ab:76:c3:42:53:de:e0:
e0:c8:f7:4f:c3:45:ba:44:20:0d:a8:8c:4d:6e:52:c3:a4:91:
47:32:cc:e1:b0:5d:a2:de:8a:68:d5:97:b2:24:67:15:30:27:
26:86:74:5b:29:d6:e6:ee:7d:a6:db:42:0c:0f:c3:8f:29:96:
fd:3e:8e:bc:e3:69:df:42:cf:db:f1:a5:a3:7d:78:7e:6b:d7:
09:6b:d9:e6:db:1a:ed:a0:0e:1f:fc:39:be:dd:90:60:85:0a:
a2:1b:45:43:89:c8:48:74:ea:62:28:33:0b:b1:8e:37:68:ab:
65:2d:5d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:48 2025 by rpki-client