Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: SV5BGMBbTveqRe1gtRXkPF500vFkwEkKi8vzsVst6SM=
Subject key identifier: 8B:DC:5E:10:1A:04:6A:87:D7:6F:3F:61:E4:C5:0B:B9:08:CF:B1:BD
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 0199221E60CD44C5ED038852F8AC37A1D4E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 1571
Signing time: Sun 07 Sep 2025 03:00:40 +0000
Manifest this update: Sun 07 Sep 2025 03:00:40 +0000
Manifest next update: Mon 08 Sep 2025 03:00:40 +0000
Files and hashes: 1: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: ZjSsDwNcnTqsPZe7/eJCcmjbICUFr7D2bycRpU9LqRM=)
2: hE2ePAizZlQUV6uXdZuzIjMthNQ.roa (hash: +KNuL0RhbzwD+ZdqGTxpdbmElk+6cn62429cYK2AHFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:60:cd:44:c5:ed:03:88:52:f8:ac:37:a1:d4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Sep 7 03:00:40 2025 GMT
Not After : Sep 8 03:00:40 2025 GMT
Subject: CN=8bdc5e101a046a87d76f3f61e4c50bb908cfb1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3f:1a:d2:5c:c7:70:be:81:4c:fc:c4:1a:65:
87:b0:bb:f5:11:0d:a5:8f:b5:1a:d1:21:09:b7:e2:
e9:28:fd:8e:b3:d6:27:af:06:e2:0c:23:ee:c7:93:
aa:29:e0:c4:14:32:8c:b9:a7:cd:a6:4d:f6:e4:73:
26:9b:1a:31:45:5c:68:5f:94:2d:0a:1e:19:e1:09:
01:28:b9:9a:fe:e6:49:64:90:01:dc:3d:8d:aa:cf:
06:ea:9d:44:0e:56:6e:50:5f:16:7f:03:25:c2:33:
0e:5b:16:0b:10:3c:0d:95:10:6f:1c:98:63:16:4d:
8d:05:c2:fe:0b:de:65:69:92:3b:49:0a:9e:6e:2b:
d3:ee:24:9f:00:76:3e:de:60:43:97:28:f1:e7:ab:
e3:cd:c3:0e:f0:f2:94:cf:c1:d2:99:c5:ea:ea:d8:
58:e3:c3:fc:eb:9d:56:4a:11:1a:41:da:35:aa:03:
da:14:27:ea:f4:8d:a1:13:87:fa:10:a3:c9:bb:65:
2b:70:46:92:4e:39:9c:9a:cd:63:77:f5:25:d2:5d:
d0:ed:5e:f8:8d:cf:bf:76:f4:47:78:81:6c:e5:ca:
27:51:cf:53:83:ef:de:ed:4c:61:ca:0c:55:4e:f7:
88:e4:37:fa:37:dd:9d:56:b7:69:12:10:3d:e8:ff:
fc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DC:5E:10:1A:04:6A:87:D7:6F:3F:61:E4:C5:0B:B9:08:CF:B1:BD
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:49:20:cd:75:9b:9b:d4:c0:43:77:7d:17:ad:d7:bb:e9:99:
5b:2e:08:2a:28:04:92:77:92:86:56:e1:c5:34:c1:91:fd:96:
aa:ff:96:66:2b:64:d8:d1:82:22:4e:5b:4c:ea:95:78:41:73:
58:fe:09:b9:f6:f0:68:d1:d2:3f:1c:ee:ad:82:57:3e:cc:c5:
9c:fd:30:65:0f:bc:66:f7:16:bc:45:16:b8:51:3d:64:57:36:
ad:25:53:11:34:d9:a8:62:ab:c6:9d:63:c5:87:36:99:21:dc:
39:aa:7a:1e:64:19:3e:fe:ac:65:3e:da:6a:d4:c2:8c:65:3f:
49:1c:42:94:8c:43:7c:d3:a3:1d:e5:11:28:8f:f7:de:62:81:
02:4e:b8:46:e3:b1:82:7c:44:c4:5f:a9:5d:9a:18:0a:4a:89:
46:2f:b4:cd:27:82:fa:d0:92:2b:e4:4b:2f:b9:87:3f:1d:61:
b1:cd:bc:c2:f4:d6:5c:6a:7e:4f:5d:17:f2:94:71:64:d4:d0:
45:c2:7b:cf:fb:fb:f9:ec:3b:68:e9:4e:47:c4:cb:c6:65:d1:
e4:a4:c9:eb:2c:3e:42:f2:48:98:f4:fb:d3:1b:68:5f:ef:40:
89:22:24:9d:9b:96:68:86:3e:51:4c:9b:39:ea:98:df:d2:32:
40:e9:cd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:54 2025 by rpki-client