Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
File: O3vGRy6lJXXOlb3KeCbppR-qzkk.mft (raw, json)
Hash identifier: WhKid8qEwjlltoiJJGFjC4kjgOWz+IIWw2eyxFmarRU=
Subject key identifier: D2:3F:45:5C:76:07:EF:D8:BB:8B:C4:0E:E3:02:B9:13:49:4A:53:21
Authority key identifier: 3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
Certificate issuer: /CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Certificate serial: 019A0AB8596F6F5A62A297B4FB704B344CAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
Manifest number: 01DA
Signing time: Wed 22 Oct 2025 07:00:44 +0000
Manifest this update: Wed 22 Oct 2025 07:00:44 +0000
Manifest next update: Thu 23 Oct 2025 07:00:44 +0000
Files and hashes: 1: 9kI0xW5MbOx76ceEc1r6lL1zLqw.roa (hash: EBfX8OboRteLfAyp7yvYOpYG1nnQo1fO08vfwQ0PAY0=)
2: O3vGRy6lJXXOlb3KeCbppR-qzkk.crl (hash: IcyM+8CgHYNiQpPVZcONZoJZyVVC14E20nqU+ulbg7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0a:b8:59:6f:6f:5a:62:a2:97:b4:fb:70:4b:34:4c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Validity
Not Before: Oct 22 07:00:44 2025 GMT
Not After : Oct 23 07:00:44 2025 GMT
Subject: CN=d23f455c7607efd8bb8bc40ee302b913494a5321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a3:c4:9c:6d:24:f4:04:7b:59:5d:8f:95:3d:
53:1c:ae:2b:99:27:26:89:b0:04:9c:44:80:97:22:
2b:63:a4:23:71:c8:c5:f8:4e:64:35:ef:c8:fc:91:
d8:59:46:e7:79:62:70:bf:91:95:7c:57:19:0c:97:
19:0d:12:64:0d:5c:c2:73:71:3a:87:eb:9e:f6:7a:
36:a9:3d:a1:1d:20:9b:61:1a:45:c8:db:87:e6:bd:
c4:97:1f:f3:2b:46:15:f9:dc:dc:5f:1f:19:41:c4:
34:11:34:db:69:f2:9e:e4:1e:2c:d5:63:33:38:92:
13:43:fe:78:7a:3e:86:b0:60:73:07:54:cf:10:4a:
ad:5f:ba:70:f3:bc:15:08:1f:a9:54:5d:c7:d6:1a:
ca:df:32:8a:f4:7d:2b:84:84:25:10:c5:13:f1:ac:
ef:ff:27:d8:bb:c9:fa:f9:18:2d:54:d5:1f:ab:3b:
47:1e:d4:31:e6:5d:26:dd:e4:d3:4f:92:8d:91:05:
70:2d:80:28:10:ac:94:98:87:b8:0f:ce:4b:66:0b:
14:be:33:50:ac:e3:b7:6f:4d:bc:0b:18:a3:c6:62:
c3:67:ba:cf:73:2c:e4:65:08:c4:6b:d1:f7:5a:3f:
1a:26:b4:f1:63:21:6c:a5:7d:44:57:07:0c:be:f8:
58:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3F:45:5C:76:07:EF:D8:BB:8B:C4:0E:E3:02:B9:13:49:4A:53:21
X509v3 Authority Key Identifier:
keyid:3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:68:15:c5:5f:ae:c5:e0:df:f5:67:5b:26:5e:da:9f:07:c2:
7c:7d:4d:fb:25:96:8e:cd:ed:70:4d:e5:f5:81:db:fc:73:3c:
e1:94:1f:1c:18:bf:68:36:06:95:69:d5:ce:ae:85:b7:ae:7c:
f2:69:f6:89:77:35:1b:89:c5:10:6d:d0:8f:45:1d:1c:d7:19:
7a:01:3d:7b:31:3f:8d:e6:80:4f:a3:2e:03:33:e2:af:00:e2:
59:05:c9:8f:3d:e0:ce:c8:11:59:56:7c:b7:b6:a0:70:d0:25:
e7:c2:93:0f:b1:66:24:22:08:31:2b:e1:c9:91:24:96:3d:38:
59:84:24:9c:93:fa:8c:cd:ef:52:45:d4:46:2b:6e:ae:03:2a:
3c:e8:ff:4b:74:61:0b:39:d1:c9:1f:1f:9e:1f:fb:d9:d0:7c:
5c:41:e6:e1:38:06:8e:93:37:c0:48:a9:d0:e6:ac:32:2c:62:
23:1d:c8:3e:20:32:04:7c:81:01:23:cb:db:c3:73:98:9a:fe:
70:c4:76:00:63:ec:b7:2c:32:e6:30:93:e8:3f:a7:9a:f0:1b:
7f:3a:8c:c3:10:fc:8a:5d:11:1d:29:bc:d3:eb:18:1a:4d:77:
18:e8:0f:e9:1c:de:9e:d9:b8:2d:cc:dd:d7:e8:10:fb:95:ee:
0d:6c:84:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 15:23:57 2025 by rpki-client