Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: f65RHJZodBKBDTIllig4UGW0SgG4NWT3OFgrhLU0KuM=
Subject key identifier: 74:66:1E:4D:EA:57:0B:2A:9A:64:CE:10:6D:CE:9E:B4:C8:23:C8:E4
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 019A1428B574F22E5E68BCF3065E5E5F05FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0E71
Signing time: Fri 24 Oct 2025 03:00:03 +0000
Manifest this update: Fri 24 Oct 2025 03:00:03 +0000
Manifest next update: Sat 25 Oct 2025 03:00:03 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: ILSf/qYCOAou8WyjqoqdutbVxv4YH3FSRHgslYfuXFA=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:14:28:b5:74:f2:2e:5e:68:bc:f3:06:5e:5e:5f:05:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Oct 24 03:00:03 2025 GMT
Not After : Oct 25 03:00:03 2025 GMT
Subject: CN=74661e4dea570b2a9a64ce106dce9eb4c823c8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f3:96:88:e0:d5:1d:cb:6b:c8:32:d8:ae:cd:
1a:1f:49:1d:4c:a2:83:ad:8c:ef:08:4d:f0:e7:db:
a6:13:35:2f:63:c3:82:01:fe:6a:96:fe:d5:81:42:
c7:dd:45:b8:d2:b6:d3:ec:27:10:24:d3:6e:5a:21:
a4:10:cf:34:84:fa:2e:63:57:ee:83:b5:ff:25:8e:
fc:da:b1:1e:1f:1a:24:d8:e6:e4:e6:75:b3:46:f8:
9d:b0:ac:66:68:3e:4e:58:93:8b:05:a7:88:f9:d3:
64:29:69:a1:08:77:30:3a:85:63:f9:a5:80:4b:fd:
b2:dc:41:92:1e:96:9e:b1:df:7c:f6:f4:99:20:68:
a8:c1:fb:56:7b:22:8d:62:32:02:a8:4f:cd:01:24:
35:f5:20:b9:0f:9a:78:02:ff:fb:14:bb:04:f6:65:
ef:51:7b:04:b5:29:85:3b:a3:0b:ce:05:c7:2f:bb:
e8:fa:6a:66:3f:54:a5:5d:a1:2b:30:02:4f:9c:6c:
3b:60:7c:5b:2d:01:f9:81:c3:0d:4b:f6:23:9e:2a:
b2:8f:a3:9d:50:ad:22:2a:1c:ce:b2:18:96:fa:41:
c8:bb:7c:36:7a:8a:0f:32:bc:e7:7d:6c:68:be:76:
ad:3f:71:9f:24:6b:d5:fd:87:68:c1:8c:cc:82:35:
25:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:66:1E:4D:EA:57:0B:2A:9A:64:CE:10:6D:CE:9E:B4:C8:23:C8:E4
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:60:59:8c:cd:d2:99:98:53:3a:4b:e6:96:34:e8:d0:85:d5:
be:1b:67:6e:22:27:b4:f8:0a:92:52:bc:9a:f0:ff:0d:ed:1d:
32:64:5a:cb:51:9d:6b:5e:2e:a9:4e:85:52:0d:76:e6:1f:96:
df:bf:8c:6e:d8:66:95:24:27:bc:c3:dc:d1:91:5b:0e:45:93:
86:29:56:13:76:0f:b4:45:cf:e7:89:40:39:f4:92:05:51:30:
7b:db:4d:7b:33:90:8a:9a:bc:e4:bb:a2:49:c6:63:49:26:5d:
83:9f:07:ea:66:af:10:ba:44:7c:cd:c8:82:b1:ac:7e:1a:db:
8f:47:d4:46:c4:c1:58:c8:c6:5c:b7:6a:3a:0e:1b:59:11:0d:
d7:07:48:f2:ec:a9:ed:2d:a0:5d:e3:0a:d4:12:1a:4f:48:2d:
43:89:94:f7:79:dc:c0:90:18:d0:d9:bf:80:c8:2e:c1:47:bc:
1f:db:09:72:66:b3:0c:92:87:68:73:57:a3:e9:c5:d6:90:37:
b9:76:f0:e6:41:2b:d1:e9:17:53:82:c3:ed:aa:51:82:8e:bc:
e8:49:5e:66:6a:ba:e7:ce:9f:b9:44:90:68:1d:b8:bf:4e:cf:
cf:39:58:98:a0:cc:71:0a:0b:ca:7b:5d:fb:f8:ad:9b:59:7b:
82:00:58:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:37:57 2025 by rpki-client