Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
File: O3vGRy6lJXXOlb3KeCbppR-qzkk.mft (raw, json)
Hash identifier: oLliqRV06I1S0SsECnbLxxR8BAmmRpKiliaPhGL3fsE=
Subject key identifier: 14:BD:DF:65:7F:4C:66:A5:A0:0E:07:AC:09:87:54:8A:3E:9F:5B:49
Authority key identifier: 3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
Certificate issuer: /CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Certificate serial: 01991B40F0B208F69141C8E8E86F73F3EFC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
Manifest number: 015E
Signing time: Fri 05 Sep 2025 19:01:04 +0000
Manifest this update: Fri 05 Sep 2025 19:01:04 +0000
Manifest next update: Sat 06 Sep 2025 19:01:04 +0000
Files and hashes: 1: 9kI0xW5MbOx76ceEc1r6lL1zLqw.roa (hash: EBfX8OboRteLfAyp7yvYOpYG1nnQo1fO08vfwQ0PAY0=)
2: O3vGRy6lJXXOlb3KeCbppR-qzkk.crl (hash: zLv9MhD2rRMDwpFZvxk6TmgZx57G7o3FYqj3I16ju6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 19:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1b:40:f0:b2:08:f6:91:41:c8:e8:e8:6f:73:f3:ef:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Validity
Not Before: Sep 5 19:01:04 2025 GMT
Not After : Sep 6 19:01:04 2025 GMT
Subject: CN=14bddf657f4c66a5a00e07ac0987548a3e9f5b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:13:89:ef:28:83:9d:02:d1:ac:04:26:b5:49:
37:96:28:d9:68:bf:3a:53:fd:94:49:21:39:87:dd:
70:8a:2d:e3:59:03:40:a9:e9:f8:91:3a:c8:76:fd:
72:1d:e2:ee:b1:f1:08:2c:aa:ab:a4:6e:e9:d0:49:
17:a3:fd:9b:6d:6a:07:1a:d7:b8:9b:25:5f:dd:23:
b2:b9:ee:a8:d2:93:c8:67:41:5a:96:cf:9a:3e:f6:
e1:98:83:ce:4f:ca:82:95:2b:f0:95:97:57:49:54:
7c:e6:12:39:d5:bd:e5:53:72:30:86:6d:f8:9c:dd:
9d:99:2d:4b:5b:e2:ae:e0:ae:ec:d6:78:2e:4b:b1:
fd:56:8d:d9:66:1f:73:d9:06:3c:fc:2d:6f:29:1e:
bc:a4:7d:c9:9f:ae:75:39:da:0a:5b:41:45:88:13:
2f:80:52:53:d4:63:b6:9e:31:97:64:bb:38:96:9b:
d2:44:6e:3f:86:fc:21:69:4a:2a:bb:a6:71:c0:cb:
2e:b5:19:15:9c:da:78:d6:41:8d:4c:3c:90:d8:a2:
81:db:e3:ef:de:ae:58:a7:da:a6:74:d3:1d:d0:53:
85:69:b1:58:86:06:39:4c:d6:cf:30:cb:af:8f:67:
06:c9:99:e1:68:dc:96:29:a3:a2:3d:4a:79:39:47:
cb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BD:DF:65:7F:4C:66:A5:A0:0E:07:AC:09:87:54:8A:3E:9F:5B:49
X509v3 Authority Key Identifier:
keyid:3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:3e:66:d7:3a:76:d6:e1:0c:51:9b:28:4d:3b:81:63:8d:4b:
98:d1:04:f1:9d:d0:66:3a:9f:d0:1b:c9:6d:4a:22:90:b4:6c:
9f:68:25:4d:f9:be:72:3f:17:a4:0a:6d:b3:a9:8f:d3:45:3f:
ac:2f:d9:2f:87:4a:cb:6f:c8:e9:fd:1d:62:64:b2:5d:6b:50:
5b:21:c1:a7:0e:1b:57:a0:ee:c2:0d:b8:2d:d3:ef:ce:c3:0f:
03:28:cc:3a:f1:ec:0e:7a:88:97:e8:7d:4e:cd:64:f8:58:c8:
df:19:0a:26:d7:10:3d:b0:74:04:25:e0:97:30:64:66:f6:10:
a1:c6:c8:82:19:c8:4a:c1:91:b4:26:b0:d0:9e:47:81:97:27:
68:6d:9f:8f:e6:1e:85:2b:38:2a:01:9e:79:1f:42:e8:1a:3d:
c1:07:54:cc:19:6b:ee:a5:58:0d:2f:8c:75:cb:25:67:8a:1f:
d3:e1:5e:f4:8f:be:0c:d5:37:6c:31:92:4f:79:8b:9b:55:c1:
08:4f:04:47:76:1f:31:d7:88:3c:00:80:91:30:51:64:cd:47:
0c:86:b2:8f:ef:c2:f3:4e:f0:af:90:28:c3:37:c3:c2:ca:7e:
8b:e7:ac:04:c1:7e:bd:77:42:e1:e2:9b:c1:da:2c:bf:b6:a7:
62:1c:d8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 05:15:48 2025 by rpki-client