Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
File: OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft (raw, json)
Hash identifier: BFdINH+e0xriaDF8ja/l4BxVg+F3btCoeYe80QqWnL0=
Subject key identifier: C7:59:74:79:9E:AA:59:7B:BF:56:5A:EE:ED:9A:A4:7B:03:B1:8A:C2
Authority key identifier: 38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
Certificate issuer: /CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Certificate serial: 019923D5B0E50ED93B098FFBBC19104B8550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 11:00:30 +0000
Manifest this update: Sun 07 Sep 2025 11:00:30 +0000
Manifest next update: Mon 08 Sep 2025 11:00:30 +0000
Files and hashes: 1: OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl (hash: JQSzQg2aRu0d3PIm3qe75fgiCqLBBs7G823eQI/sHAY=)
2: Q4SQTvELqYETYT6vjRCA2iGLGgc.roa (hash: tzC8sef+XSgDXhot9EyLUIit2vwD1a0sRJU8Ks3S1wY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:b0:e5:0e:d9:3b:09:8f:fb:bc:19:10:4b:85:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Validity
Not Before: Sep 7 11:00:30 2025 GMT
Not After : Sep 8 11:00:30 2025 GMT
Subject: CN=c75974799eaa597bbf565aeeed9aa47b03b18ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2d:aa:df:d7:70:e4:5c:ff:b5:8e:60:5b:94:
35:e3:50:e0:4c:93:f8:78:63:a7:a0:6a:1c:15:59:
f7:b4:a9:5c:84:32:6d:7a:34:d1:2d:2f:a6:f9:d9:
52:6b:c7:fb:d2:48:fd:b1:d0:96:c6:44:ad:67:26:
70:dc:5a:bc:a2:81:c5:76:4a:03:35:ec:34:0e:03:
47:a8:dc:aa:c8:2b:87:5b:2d:d6:c4:6a:35:d2:06:
aa:3b:02:41:59:80:e5:a7:c5:cc:e0:26:61:ad:34:
27:7c:08:45:4a:7d:d6:ba:35:ff:5c:a8:8f:f5:d0:
69:35:cc:29:34:9d:e3:89:2e:e9:37:3b:4b:f9:32:
e1:d1:03:d7:46:9f:e7:62:3b:ee:97:eb:c0:88:76:
b3:e3:63:79:85:5d:70:b7:99:39:ef:c3:14:ed:92:
6a:39:6d:d5:f8:a6:ad:89:47:00:e6:38:8d:81:1e:
eb:44:dc:79:d7:0f:ad:07:e8:6a:45:3d:cf:37:28:
31:34:f5:1c:e4:15:5d:0e:6e:c7:89:16:3c:85:cc:
20:24:e3:a4:7b:ce:ab:c8:6a:f4:4a:c3:6d:75:e7:
a0:d6:66:f9:a7:d4:91:b4:42:12:52:c2:e9:03:e5:
93:6c:ad:77:f8:c8:ee:49:cb:1a:bf:7b:56:9e:ce:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:59:74:79:9E:AA:59:7B:BF:56:5A:EE:ED:9A:A4:7B:03:B1:8A:C2
X509v3 Authority Key Identifier:
keyid:38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f2:1b:18:18:24:4e:23:8e:c1:7a:d4:a5:6b:c1:ea:3e:ce:
4f:e3:c6:8a:f6:a8:b4:00:1e:81:23:35:86:2c:20:85:99:b3:
4d:f9:c4:dc:21:60:27:d8:40:3b:9c:93:28:a2:89:ae:f6:3c:
5d:49:fd:86:e5:40:01:b1:5e:a0:26:a9:2c:09:2c:29:c4:9c:
8d:fa:bb:d3:31:dc:04:0e:c2:da:5c:3d:b3:b0:97:f3:f9:a7:
98:2c:eb:f3:15:0d:b2:9b:2f:ec:cc:70:b8:c5:dd:7e:7f:ed:
c8:37:95:98:5e:b5:de:e6:3a:d9:0f:90:e1:c5:ab:b8:7d:87:
00:b5:22:e5:ef:1e:a4:58:50:09:21:b0:2a:62:f0:3c:6d:ee:
03:a2:41:bb:ea:90:7a:37:81:a2:db:11:ac:4e:26:c3:24:be:
68:8a:69:11:a7:b6:a5:38:ba:77:f6:10:9f:96:c2:db:33:ed:
4c:29:a5:50:3e:cb:65:0c:2a:66:08:61:38:2f:df:2b:6b:d3:
76:0f:1e:e8:b2:62:60:e1:88:48:f8:e5:69:4f:a6:73:8b:7e:
c8:64:ed:1c:28:35:2a:8b:f8:1b:fc:00:fd:dc:30:dc:44:e5:
16:b0:70:3a:47:aa:e0:77:cf:bb:5c:c5:b5:70:1f:c6:76:8e:
3b:db:03:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:35 2025 by rpki-client