Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
File: OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft (raw, json)
Hash identifier: +G/UzwBXkz7ihet9EUywPvQ7eNhlGp37IrPqxuSl+vM=
Subject key identifier: 45:23:12:A4:C1:15:BE:97:13:5D:F9:20:43:69:8A:6C:1E:6A:84:CE
Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Certificate serial: 01992330ED7BF100B95F61063AD0E64103D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
Manifest number: 130E
Signing time: Sun 07 Sep 2025 08:00:33 +0000
Manifest this update: Sun 07 Sep 2025 08:00:33 +0000
Manifest next update: Mon 08 Sep 2025 08:00:33 +0000
Files and hashes: 1: OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl (hash: WzOtdBNcD3ojEKaL8po+Y9AwnLYqGybAhGj1xMM5a18=)
2: PQhWLSkGUa_VMVGVuYBQSUZ_P_A.roa (hash: 3kRwsyvbLLbFqSNU/EJCsmBYkp3oO56TR7kGsRhAuv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:ed:7b:f1:00:b9:5f:61:06:3a:d0:e6:41:03:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Validity
Not Before: Sep 7 08:00:33 2025 GMT
Not After : Sep 8 08:00:33 2025 GMT
Subject: CN=452312a4c115be97135df92043698a6c1e6a84ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ab:14:c6:aa:bd:71:ef:17:c7:38:ce:12:db:
9d:14:ae:57:a0:3c:c1:6f:7e:5f:86:54:59:ab:da:
01:b9:2f:2c:e7:af:e1:ac:a4:ee:47:38:ab:fe:9f:
11:05:87:2a:09:35:dd:7f:eb:e0:97:a9:7e:17:73:
4f:5d:1c:09:04:7e:03:96:20:2b:2a:b0:46:3c:7d:
5e:4d:0f:7c:a8:d6:e3:2e:6e:15:8c:70:8d:9b:61:
5b:42:e8:4d:94:70:5a:7f:0f:dd:c0:a2:bc:9f:47:
2f:b9:16:08:d9:50:b0:65:d2:0d:de:75:05:db:b8:
e7:b1:1a:94:15:93:c1:bc:cd:cc:6b:0d:98:ee:09:
89:94:3c:c3:82:b7:29:90:3c:10:70:fb:da:b3:42:
f2:5d:40:9b:20:ac:65:d9:56:be:67:2f:8e:2b:e3:
4a:2d:fc:97:fa:0e:87:76:60:eb:54:0d:15:44:66:
26:76:4e:cf:09:59:a1:6c:82:e2:b5:ee:45:12:c6:
1f:1c:0a:ad:8a:74:e8:c5:f0:26:9d:2b:8b:e4:40:
af:3b:57:2a:b1:b7:ab:26:f7:70:ce:13:dd:1b:0a:
c7:d2:69:32:a1:fc:4a:ed:bf:e4:f4:d6:80:15:f2:
a8:a9:7d:17:da:74:b1:12:14:ea:10:16:c3:9b:5e:
c3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:23:12:A4:C1:15:BE:97:13:5D:F9:20:43:69:8A:6C:1E:6A:84:CE
X509v3 Authority Key Identifier:
keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:2e:05:4b:e0:1d:5d:f5:a3:50:41:75:fe:9b:1f:31:3c:69:
2c:d4:7d:c5:9f:fb:cc:7c:8f:f8:9a:e7:a7:c7:ca:ff:30:91:
98:92:c0:ec:73:2c:db:df:fb:a6:99:40:ba:b1:ea:8a:23:f8:
d6:8f:f0:e3:bc:bc:ab:de:61:af:af:ef:d1:b7:1d:30:dd:d4:
00:e8:14:05:ad:e6:4d:f3:26:38:55:0f:ed:0a:4d:d4:2e:ad:
1e:da:f0:00:7d:15:9a:37:35:d3:c0:70:a2:30:af:46:f9:c8:
38:a7:d1:29:cb:6c:db:dd:a4:aa:42:f7:10:66:bb:13:8a:f8:
d5:90:6f:30:fe:d7:39:4d:d0:a1:45:7d:dc:0e:98:3e:fb:39:
ae:9e:63:bf:f2:71:bb:e3:7e:f3:c5:47:6b:02:37:18:16:4d:
e9:75:0a:e5:47:0b:bb:82:93:64:00:0c:2f:29:83:1a:1e:99:
5b:48:f5:10:ec:f7:69:7c:30:8b:f8:a0:91:7c:d8:b6:3c:3d:
cb:9e:84:e6:61:e4:7d:38:65:92:ec:b1:d7:5a:73:49:fe:97:
bc:66:2d:91:36:85:38:d7:1d:eb:0b:67:ec:44:89:32:ed:a9:
38:61:b0:bc:d4:72:da:7b:b1:6a:20:08:2c:50:c0:44:9a:f3:
c8:15:ca:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:54:17 2025 by rpki-client