Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: Ay7F2Xp0b5lq4YTOkPUmnM+8XhM+bj1JfLhfinL7iwQ=
Subject key identifier: E7:D6:8C:10:65:93:3B:3D:C1:46:FE:25:A2:B1:F0:79:6B:C9:13:D9
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 01991EE68EEB64F1A50B83199358CA0496EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0DF2
Signing time: Sat 06 Sep 2025 12:00:50 +0000
Manifest this update: Sat 06 Sep 2025 12:00:50 +0000
Manifest next update: Sun 07 Sep 2025 12:00:50 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: 0vBo0LAKcE+LO8khge81UFsBxkfiU6naH4aiN46sqog=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 11:14:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1e:e6:8e:eb:64:f1:a5:0b:83:19:93:58:ca:04:96:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Sep 6 12:00:50 2025 GMT
Not After : Sep 7 12:00:50 2025 GMT
Subject: CN=e7d68c1065933b3dc146fe25a2b1f0796bc913d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:50:9e:ca:60:c5:7c:be:8a:72:b0:fc:cf:3d:
48:ac:0a:73:fa:7a:18:4b:0a:dd:13:22:c9:ac:cd:
a5:2b:b9:37:79:65:0a:ac:ee:74:13:01:db:ef:72:
06:4d:70:95:7a:f1:af:ab:36:fd:be:fb:4e:f8:bf:
ad:f6:4a:24:fd:cd:13:9a:6d:71:f2:25:64:67:b2:
36:fb:ef:a5:bd:a2:eb:1a:40:49:4f:e9:03:a5:a9:
da:01:f4:5a:35:a6:99:d4:b8:cd:75:bf:16:39:e2:
a2:70:da:7a:8f:34:39:12:2a:f7:cc:a0:2b:c7:3e:
43:41:e9:cb:7b:ab:98:5a:22:bc:fe:14:ec:d8:04:
3e:f5:06:01:92:92:c6:9b:ef:c6:ef:b0:87:19:b7:
3f:2c:57:97:9f:8c:e3:e2:67:d3:ea:6e:00:8a:22:
29:3a:ff:7b:d1:14:6e:8d:64:50:d6:ac:32:38:22:
d4:d9:6c:f8:a2:2f:ff:db:86:62:d3:95:e5:b3:0a:
18:f0:a2:61:bc:c5:7e:8d:6b:fd:d1:cd:41:fe:34:
48:b1:1b:c7:c3:7c:c2:66:bb:7e:5f:0c:93:e0:37:
f6:1e:08:91:36:e3:bc:88:6e:b9:aa:83:fb:94:f0:
0b:f6:0c:7c:62:e9:9a:23:ab:27:5e:71:d9:a3:fb:
7f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D6:8C:10:65:93:3B:3D:C1:46:FE:25:A2:B1:F0:79:6B:C9:13:D9
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:b2:a0:5e:89:79:f9:f8:f3:a1:ed:a1:d6:24:2c:ee:7e:8c:
06:b2:27:ea:57:82:dc:cb:4b:d9:ed:c8:52:bf:6b:69:6d:db:
0a:0c:d4:4a:e3:05:a9:f7:68:91:17:8a:6e:9d:20:45:32:ff:
2d:11:fa:d8:8f:9c:49:4f:d9:eb:c1:9e:d1:b1:99:26:32:be:
b0:a9:42:58:08:d3:09:8e:2c:45:d9:41:c6:47:e1:e1:be:d1:
07:d4:f2:b1:b6:75:eb:30:0a:33:f8:f3:ca:f5:a2:f7:cd:f8:
3f:e5:75:60:6d:55:8f:ed:64:8b:c7:6f:6e:c2:c3:2b:49:92:
e4:ce:5e:45:24:e6:81:fd:5d:95:f0:5b:89:d0:a2:29:01:d0:
d2:df:83:ad:54:62:76:d9:d4:92:86:b2:62:f1:91:3b:5c:19:
c7:13:dd:88:5c:dd:62:e7:2e:d1:0c:2d:0c:1c:e3:5a:7c:92:
36:81:17:37:cd:78:d6:1d:8e:c1:63:78:86:85:ae:28:bd:d2:
fd:60:f0:3c:90:1d:06:73:74:ba:ed:c1:dc:42:e1:ee:86:38:
c0:90:1c:11:21:07:57:41:7d:1f:c1:39:c2:cd:95:9a:97:37:
f2:ee:80:3f:18:52:96:0c:85:e5:e6:f0:3a:6b:32:08:e5:66:
e2:c3:c1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 16:01:12 2025 by rpki-client