Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: EuKk0G1cVhbGyxHv9uxjkSRirsjSbMhUfWDq2EZNjI4=
Subject key identifier: 4C:DA:6D:29:06:3A:4A:F1:9F:73:2F:BC:37:0C:58:E2:C5:7A:DE:A8
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 019921B08364A578B608E137018469B7A5FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 1663
Signing time: Sun 07 Sep 2025 01:00:40 +0000
Manifest this update: Sun 07 Sep 2025 01:00:40 +0000
Manifest next update: Mon 08 Sep 2025 01:00:40 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: VKIaFeWaWo3OUFOL+232Sa7NA6OMwu6DlxS9ZJMmdBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:83:64:a5:78:b6:08:e1:37:01:84:69:b7:a5:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Sep 7 01:00:40 2025 GMT
Not After : Sep 8 01:00:40 2025 GMT
Subject: CN=4cda6d29063a4af19f732fbc370c58e2c57adea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5c:6c:53:14:2c:d7:61:18:cc:4d:f3:24:38:
fb:76:df:47:d8:02:2f:e9:08:8b:46:4a:00:87:7c:
ea:cd:46:2d:bc:14:4e:83:18:50:ee:e3:e5:7c:3b:
98:7c:0c:2c:16:8a:31:ca:92:66:02:f8:b0:06:b2:
10:27:c9:5f:1e:28:8e:33:90:20:eb:f0:93:1b:de:
00:15:6b:87:d7:e7:a4:77:8f:83:a1:66:76:46:d3:
00:e0:af:b3:ab:e1:48:5d:48:89:3a:1e:bf:3c:0d:
8b:83:b1:8f:0c:36:0d:ce:e0:44:04:73:8a:01:c2:
91:13:c4:4f:ca:78:12:21:fd:28:49:3d:16:6f:8a:
d4:b1:2f:33:2d:2d:a1:0c:e5:bc:f7:bf:d1:64:45:
fd:59:76:36:b6:f3:a5:5f:7e:ee:8c:c7:08:98:9c:
a9:a8:54:5a:0d:e3:ce:6e:33:46:a3:59:72:6e:c9:
f1:c9:56:89:4f:7b:a8:ff:51:bf:8a:9f:fd:74:0a:
0b:f5:0d:6b:01:46:6c:a6:c2:82:db:b9:df:3c:ba:
52:4e:8b:69:63:53:f6:8d:fc:ca:60:d4:54:6e:d5:
28:a6:a7:7c:c7:d9:65:0a:17:0a:66:8a:87:7c:0c:
2e:c9:da:17:1e:3e:90:90:39:59:24:90:68:22:16:
c8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DA:6D:29:06:3A:4A:F1:9F:73:2F:BC:37:0C:58:E2:C5:7A:DE:A8
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:9f:a8:49:f5:8f:03:fd:40:2b:f1:b7:f5:23:e2:02:ee:f2:
ea:14:ad:9f:11:67:2b:9c:fa:a2:04:72:46:a3:ed:66:e4:d2:
a6:48:ec:d3:a0:ef:fe:af:aa:91:01:b1:ec:b7:81:d2:b9:0d:
57:33:f1:f8:bc:bc:26:fc:2c:d0:0a:0e:fa:66:52:d6:99:85:
6d:8c:87:1f:32:c2:ea:cc:c7:f5:59:27:34:fa:60:5f:2f:8e:
cc:db:80:bc:95:50:9c:2d:e3:a8:be:21:ae:3e:ab:6e:4f:9d:
15:07:43:d4:58:0c:f2:04:a4:12:fe:6c:1b:88:11:ba:ef:2b:
31:8b:57:73:68:06:0a:ee:75:f7:7d:fd:a5:63:5b:86:aa:81:
f2:46:a0:01:6e:3e:9c:bb:bd:b4:27:85:31:15:d3:d9:57:9b:
fa:ff:c7:a5:20:db:5f:3e:eb:8c:39:a6:e3:99:c7:1d:30:89:
17:3c:15:df:af:78:a2:30:6c:d1:01:55:97:fc:ce:f6:32:0f:
f4:db:8b:55:b4:c9:02:a8:a2:8e:b4:dd:4e:f7:e1:6c:42:02:
a3:6c:f2:5e:cf:17:4d:d6:f3:5c:10:76:dd:04:ff:d0:80:22:
5a:60:c0:38:17:2e:a3:8e:98:be:81:2a:9e:61:cc:0f:d0:a0:
c0:17:4a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:58:24 2025 by rpki-client