Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
File: OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft (raw, json)
Hash identifier: bm9U4gewd/QRrAmUmvvSlFMNAiXO+K4+qqFZuUFGrMU=
Subject key identifier: B6:C4:E3:EA:C0:9B:B4:30:55:07:B4:78:48:00:6A:77:E4:91:85:53
Authority key identifier: 39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
Certificate issuer: /CN=39d43c26468819c07b1925115fe4921f84203d16
Certificate serial: 019918095704D2F1684341554D5E531EE344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
Manifest number: 1669
Signing time: Fri 05 Sep 2025 04:01:29 +0000
Manifest this update: Fri 05 Sep 2025 04:01:29 +0000
Manifest next update: Sat 06 Sep 2025 04:01:29 +0000
Files and hashes: 1: HJiUdFRcnCCA97tz7GIyzHp366Y.roa (hash: yKaY+45Vcb3qR17Dz+EuLvkK0krevHkZZEA1gt2KjQg=)
2: OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl (hash: Wu5P2NHjE8g/pbLBy44ASFbrVm9wexqmki6aUE3OwY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:57:04:d2:f1:68:43:41:55:4d:5e:53:1e:e3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39d43c26468819c07b1925115fe4921f84203d16
Validity
Not Before: Sep 5 04:01:29 2025 GMT
Not After : Sep 6 04:01:29 2025 GMT
Subject: CN=b6c4e3eac09bb4305507b47848006a77e4918553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:3c:64:89:71:a9:36:59:20:47:e6:8e:9e:
c9:91:2f:b9:c8:97:03:df:30:89:a1:c6:54:bd:f6:
70:8b:2f:f8:4a:bb:13:e7:1a:7c:60:12:53:2f:37:
5e:97:af:fc:48:c2:e9:80:19:c8:0e:6a:fd:81:4b:
18:a9:ad:35:9c:81:43:83:5f:93:ff:91:05:3d:cc:
5e:f9:93:d7:a4:ab:9f:e7:fd:cd:cc:61:a7:e2:e7:
fe:c1:a6:9e:a2:a0:23:8a:ae:55:b1:8c:bf:28:ae:
1a:52:32:17:6c:3d:bc:41:9a:eb:1e:b8:3c:8c:ca:
dc:6f:51:51:39:0c:14:5e:cc:09:63:93:54:46:be:
af:32:a8:a0:18:6f:ce:b6:ba:f4:12:c4:6b:ed:6e:
90:bf:e1:cc:9a:7e:ec:fa:7b:e3:1a:6f:f4:e5:f9:
93:89:6f:f9:e8:0c:d9:09:7a:50:43:14:b7:a5:c2:
6b:c5:ab:7f:bd:35:14:c5:67:56:cf:10:3e:c0:6f:
71:fc:43:99:b3:50:95:d6:67:c9:cc:c6:28:b3:08:
0b:9b:aa:ae:64:95:41:20:62:b8:2c:57:ec:f0:a3:
0d:96:a0:67:d9:e2:96:c8:a6:1e:69:bb:0f:bf:0b:
65:68:aa:ce:e0:1b:f3:88:7a:b2:27:45:d6:22:4d:
3a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C4:E3:EA:C0:9B:B4:30:55:07:B4:78:48:00:6A:77:E4:91:85:53
X509v3 Authority Key Identifier:
keyid:39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:73:36:64:28:3d:f0:bf:20:bf:e2:a7:b9:bb:fc:96:bf:98:
a9:af:d5:69:e7:5b:6f:b8:84:93:f1:c7:64:4e:20:16:4e:33:
e0:8e:9d:25:a1:82:d6:c3:7c:ac:b0:0c:4d:32:05:21:3e:22:
f1:b8:f5:08:3f:9c:42:c7:c3:e6:9d:1f:64:86:e4:37:13:62:
24:15:91:ee:2d:77:71:92:a4:4e:67:21:ed:ec:15:8f:e4:c6:
b1:66:aa:3e:9a:72:17:97:60:c5:be:37:48:28:24:f4:71:8d:
58:2e:44:6c:b1:eb:26:03:4d:73:7c:5f:c5:29:14:90:ff:12:
06:07:69:2d:1d:d8:cf:61:55:96:b5:79:ee:9d:f7:7b:3e:62:
06:21:1a:cc:71:9c:25:11:fd:cc:d0:08:c1:5a:68:3b:bc:c9:
03:f9:f5:c4:07:0d:9f:7d:17:58:20:e4:6e:59:f3:6d:1f:95:
30:68:67:fc:d1:5a:87:35:54:b7:81:c8:e2:82:ae:ae:57:b9:
be:9b:b1:1f:b5:2f:b9:94:da:e4:8b:aa:13:6f:39:f7:d0:09:
f4:73:8e:2d:47:88:b4:83:6f:f2:d4:00:15:28:2e:70:de:52:
d9:42:6f:7a:d9:36:02:3f:b2:26:aa:c0:91:b4:76:c9:f8:d0:
76:22:05:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:33:07 2025 by rpki-client