Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: B7rghn4NvCoNj7tygGrV4i06tOBHZmdFNPeqLLMKlk0=
Subject key identifier: A5:3F:3A:8A:75:1C:D2:C3:01:90:CB:CD:7C:3A:3A:7E:29:57:A6:5C
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 019A24AEF929D49BB0C45D163927DD6E59DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 0813
Signing time: Mon 27 Oct 2025 08:00:38 +0000
Manifest this update: Mon 27 Oct 2025 08:00:38 +0000
Manifest next update: Tue 28 Oct 2025 08:00:38 +0000
Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=)
2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: /SfGL5yBM7WnyFRX79wBE2EZba8A8eNLscTnXjcEIwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:ae:f9:29:d4:9b:b0:c4:5d:16:39:27:dd:6e:59:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Oct 27 08:00:38 2025 GMT
Not After : Oct 28 08:00:38 2025 GMT
Subject: CN=a53f3a8a751cd2c30190cbcd7c3a3a7e2957a65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:b4:92:c1:9b:c3:44:40:b7:3d:f5:f0:1e:
96:5b:2c:ca:c9:85:2f:62:f3:4b:3a:1b:ab:83:a6:
04:9e:45:d9:c2:c6:3a:86:05:b4:12:76:25:af:8b:
46:82:11:91:4b:a9:c6:ad:77:d8:74:ab:a7:09:5a:
16:a2:ca:7d:8c:1e:fe:52:f8:61:3e:ad:ee:91:d7:
51:8c:fb:2b:18:95:29:c3:55:15:7c:41:c1:3f:fe:
37:80:21:90:41:ac:b9:a3:21:ac:14:aa:eb:43:fd:
75:48:84:0b:3f:a9:d0:76:c0:10:f7:e7:a0:ce:59:
d1:9a:e3:66:b9:6c:c8:8f:bf:3e:63:ae:df:52:6f:
06:ed:ca:92:b3:b1:47:d7:fc:01:c4:4a:77:f5:5d:
eb:51:25:f1:21:c5:06:1c:e1:e5:2d:13:1f:d1:d6:
93:0a:e9:ac:69:85:90:84:d4:87:a2:71:e1:d9:26:
9e:f4:71:e9:3d:08:ba:9a:30:8f:e0:97:2b:a7:62:
c1:d1:cf:90:58:bf:58:8e:fa:79:b4:2f:61:2e:6a:
58:c4:d0:f2:bb:31:84:05:97:c1:19:a4:01:df:84:
a9:23:2a:57:42:63:07:ce:f4:6a:18:3e:3b:23:12:
cc:b4:a5:90:a7:c9:d6:4b:8a:fa:c3:54:8e:28:82:
a1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:3F:3A:8A:75:1C:D2:C3:01:90:CB:CD:7C:3A:3A:7E:29:57:A6:5C
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:05:c6:0f:55:d0:3c:4b:a5:da:d5:1d:32:c4:51:50:ad:83:
3c:21:73:07:d8:ae:a1:cb:9a:18:d0:4a:f1:84:69:ff:42:d0:
76:da:d1:5c:24:cf:a1:1a:df:9d:88:8e:b5:eb:39:d3:78:3c:
2e:e8:f7:be:3c:36:fd:53:bb:05:18:da:dc:b4:e7:e0:79:1c:
45:d6:97:72:2b:5d:05:bb:93:c8:12:a2:2a:53:ba:63:f6:10:
07:2f:7c:26:02:a6:08:67:fb:62:fb:96:69:b5:8b:58:5d:13:
0c:0a:3b:76:ec:3b:aa:c5:4c:ff:d1:8a:78:eb:c7:98:d1:40:
a0:5b:b8:00:0c:f6:4e:f2:fa:42:31:c3:ba:f4:e9:b7:0b:c6:
b8:ea:94:ef:91:8b:7e:13:b1:eb:f3:3e:24:91:50:a3:2d:33:
08:76:4d:c4:52:41:80:65:91:17:50:61:50:4b:99:cf:0a:b1:
a1:90:db:19:d8:82:74:b8:38:ad:0c:fa:43:a1:20:33:ce:27:
24:14:84:7a:de:72:5a:7b:8a:79:98:33:d6:4d:b1:25:9c:56:
65:43:db:84:86:b2:17:30:9e:bb:3d:a4:a2:8b:7e:bb:85:71:
66:22:a2:20:b4:54:d5:8d:75:85:67:1a:42:4a:7d:a9:a0:13:
5a:f9:e7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:05:31 2025 by rpki-client