Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: s94fz/mAlxdorE0iXWzBBLDh0BOrlGUmCCR7ysVL2hc=
Subject key identifier: 58:53:ED:75:09:A0:24:FD:B7:F9:32:D9:60:FC:E7:0D:0A:86:BF:F1
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 01993537884F8D3071766049054C143F4EE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 0797
Signing time: Wed 10 Sep 2025 20:00:55 +0000
Manifest this update: Wed 10 Sep 2025 20:00:55 +0000
Manifest next update: Thu 11 Sep 2025 20:00:55 +0000
Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=)
2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: Bt6GcQAdADEv+h/k63Cl1kipGjS2pJDm/AnXsmks1J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:37:88:4f:8d:30:71:76:60:49:05:4c:14:3f:4e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Sep 10 20:00:55 2025 GMT
Not After : Sep 11 20:00:55 2025 GMT
Subject: CN=5853ed7509a024fdb7f932d960fce70d0a86bff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:25:e3:12:69:5b:c7:20:5f:34:92:99:c1:dd:
94:e8:97:6c:3c:8a:a9:08:35:72:dc:c6:7a:cb:ac:
9c:b5:4f:e9:c1:ae:0b:13:18:6e:04:54:75:6e:65:
ec:52:89:15:5f:8e:86:ee:93:c3:08:75:b2:65:46:
45:c8:f3:7a:27:29:21:ff:d5:6f:4d:64:30:ed:8b:
91:25:ff:ca:70:b9:20:f7:45:f4:9e:28:4f:96:36:
45:c7:2f:50:c3:59:ed:83:ad:ec:d1:9d:c1:24:52:
cb:19:39:37:1d:40:02:41:7a:bd:9c:33:ec:ca:24:
2c:84:06:06:97:5b:a0:8d:71:a8:4d:fa:42:2d:d5:
8e:40:b6:77:c6:36:ac:24:cb:4b:ad:62:56:14:68:
72:0a:e5:c6:2f:e1:b2:78:de:8d:3a:87:b6:27:66:
0b:3c:a8:58:6d:07:90:c4:d1:62:fb:59:5e:ca:a6:
0d:3e:4d:52:7b:6c:e3:b7:68:b0:13:4b:d1:50:64:
da:36:a8:89:f4:51:01:e7:72:28:60:0c:b1:05:42:
27:86:2d:b5:2d:5a:81:21:5f:21:69:a1:0e:13:91:
c8:36:eb:e7:3e:4c:74:2b:af:9e:68:32:e4:36:2b:
af:66:a0:57:38:66:d6:0b:27:4c:8d:ae:49:ae:78:
3d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:53:ED:75:09:A0:24:FD:B7:F9:32:D9:60:FC:E7:0D:0A:86:BF:F1
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:8c:6f:74:0a:3e:d7:0a:34:aa:8a:0d:90:37:96:d0:cb:b2:
7b:66:c1:3e:ed:2b:36:5b:ca:eb:57:d0:c5:16:20:37:89:a9:
f6:1a:19:2e:3c:c0:5f:d4:6f:61:98:8a:0b:2f:b0:b6:ef:29:
bf:9e:17:7d:7a:5d:98:4c:c4:48:b2:37:fb:5b:f1:74:a7:d3:
17:81:06:3e:74:00:68:02:af:d4:0d:13:a2:a9:d0:13:b2:56:
e9:aa:ad:ae:ef:61:c3:6b:07:4a:cd:53:f9:b1:12:f9:d6:48:
0a:8b:db:c2:e9:ea:67:11:b3:24:26:7e:b2:50:07:f8:e9:a7:
8e:73:10:b9:2b:65:9d:d5:95:ae:99:29:e2:d2:2e:97:58:b4:
b5:f7:6e:be:c2:50:fd:3e:e1:05:00:56:a7:90:2d:2b:3e:df:
cb:a4:d9:e5:f0:18:45:5e:35:ab:fc:58:b7:b9:cb:b1:5a:34:
93:2e:9d:b9:1f:29:4c:a2:76:a2:02:56:5d:6c:bb:24:fb:04:
a7:3c:84:9e:28:6c:db:80:5d:ce:41:4d:55:0a:27:ea:eb:06:
2a:fd:aa:1d:39:34:fa:01:c5:3b:eb:ef:89:f4:16:45:c8:f6:
17:3d:0c:48:d4:93:2c:6e:33:8c:e4:3a:19:cd:44:29:0f:fe:
79:2c:6c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:54:37 2025 by rpki-client