Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
File: o3F-pUuVlC-tgalD7bHBD535Svs.mft (raw, json)
Hash identifier: yXxoTnxfS/dHqgRHolN//B/T7mZDghZ4K0yg6fqxlP8=
Subject key identifier: AF:0E:17:13:A2:CC:11:E8:EE:33:13:33:C4:C1:FE:83:2B:96:7F:43
Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Certificate serial: 019A29674125C143B0EEFCD2B14012297B8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
Manifest number: 1681
Signing time: Tue 28 Oct 2025 06:00:23 +0000
Manifest this update: Tue 28 Oct 2025 06:00:23 +0000
Manifest next update: Wed 29 Oct 2025 06:00:23 +0000
Files and hashes: 1: o3F-pUuVlC-tgalD7bHBD535Svs.crl (hash: Yzc7abQVabf56wo4PG+wmGdeAHQ9UBUyOXjA5hD22kw=)
2: pg44eaa6uLO77ZBpldSyzPpFh88.roa (hash: 0sb9vGZUz6J5OEzKPCflxf4EwPkYpEMJhVhuM9KBJfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:67:41:25:c1:43:b0:ee:fc:d2:b1:40:12:29:7b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Validity
Not Before: Oct 28 06:00:23 2025 GMT
Not After : Oct 29 06:00:23 2025 GMT
Subject: CN=af0e1713a2cc11e8ee331333c4c1fe832b967f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2e:4e:4e:94:0c:ce:d3:dd:bd:4b:71:31:36:
ec:9c:a2:26:16:72:fb:68:1f:bb:80:45:1a:17:02:
68:7a:a2:c9:02:91:59:67:8a:5f:68:8f:3c:75:ca:
23:c0:55:7e:08:18:31:9e:80:72:65:09:34:1d:e5:
15:18:02:6c:b0:d4:02:fb:b1:da:c5:26:95:fe:6d:
66:5a:e1:c5:04:46:8e:8a:41:b3:33:24:f7:ee:90:
1d:c1:b9:8e:fe:5c:32:9e:5a:99:b0:e6:f9:93:e3:
ab:29:26:71:e7:36:88:2d:94:b7:a8:99:a6:9f:01:
b4:68:22:c0:37:98:61:53:7f:4a:ff:4c:33:1f:2b:
0c:0d:93:c7:79:37:a7:67:ed:f0:46:5e:f5:ff:bf:
49:e5:3e:a9:c7:0a:43:aa:d1:84:d7:48:63:df:96:
d2:68:2f:f0:80:81:ac:46:fb:10:54:e7:b8:cb:5d:
a6:40:b7:97:f1:92:26:6b:9d:cb:00:af:22:a5:9b:
cf:46:e9:b7:27:b9:d7:f1:d6:fd:8d:0d:ee:58:97:
17:fa:4f:9c:88:db:f2:43:73:b2:eb:66:b6:d6:fd:
e3:53:3d:38:f4:a7:7a:74:46:73:d4:2d:00:d2:a7:
65:2d:04:82:f5:b7:bf:c7:b0:38:65:08:a1:f5:eb:
e4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0E:17:13:A2:CC:11:E8:EE:33:13:33:C4:C1:FE:83:2B:96:7F:43
X509v3 Authority Key Identifier:
keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:e2:41:e9:cb:8d:be:86:9a:2c:3b:ac:07:ff:1d:6b:dc:0e:
b6:2c:b8:7c:38:d2:69:8e:ad:e6:21:94:f6:04:89:fb:92:6c:
21:6f:ff:cf:27:3a:d1:4c:b6:ca:33:c1:49:b9:0e:78:9f:da:
8e:75:ab:e2:b8:03:b5:6c:8d:13:92:8a:89:7c:d3:8b:18:7a:
45:d0:9f:30:d7:57:6e:b0:38:5b:1e:2d:e5:56:a8:97:40:1b:
ec:de:1f:a1:74:1e:6b:c5:d4:73:f3:97:1f:f3:ee:21:a7:08:
95:1d:b0:9c:e3:09:fe:c1:96:f9:12:d9:a6:c7:34:07:dc:ef:
d0:fd:b7:b4:da:37:92:e6:bd:25:d0:5a:a1:c7:65:60:29:b4:
4f:4a:47:f8:42:95:c7:7a:2f:3b:56:9c:44:9a:d1:cf:04:e9:
a6:76:87:64:c9:68:e9:9b:62:7b:63:76:31:ae:e4:cf:01:75:
f3:55:3a:04:57:e8:bc:39:86:37:00:05:89:07:08:cd:21:1c:
cc:ac:96:9e:2f:09:cf:3f:3c:6f:26:18:57:1f:b4:15:a8:b8:
9e:c7:b2:eb:3c:ce:f6:13:07:25:d6:ed:a5:38:87:ac:bc:ac:
29:e3:4f:57:1d:2f:e4:6f:bc:12:81:e2:fb:2e:57:8d:23:54:
da:95:67:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 10:52:22 2025 by rpki-client