Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
File: o3F-pUuVlC-tgalD7bHBD535Svs.mft (raw, json)
Hash identifier: ht0eHMzH+28uXIP2sV8Yj1FwnDgmV1cbUq4VMHjzrYg=
Subject key identifier: F8:9C:53:32:D4:7B:2C:AD:A4:C2:F9:A8:C1:02:28:81:95:26:34:81
Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Certificate serial: 01993236BEE2822D101935957ECD00FBAAA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
Manifest number: 1601
Signing time: Wed 10 Sep 2025 06:01:12 +0000
Manifest this update: Wed 10 Sep 2025 06:01:12 +0000
Manifest next update: Thu 11 Sep 2025 06:01:12 +0000
Files and hashes: 1: o3F-pUuVlC-tgalD7bHBD535Svs.crl (hash: FoYo43XKT5y8xahni3dQ2MQoSuPp5YVgjMaFt1Fzz2k=)
2: pg44eaa6uLO77ZBpldSyzPpFh88.roa (hash: 0sb9vGZUz6J5OEzKPCflxf4EwPkYpEMJhVhuM9KBJfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:be:e2:82:2d:10:19:35:95:7e:cd:00:fb:aa:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Validity
Not Before: Sep 10 06:01:12 2025 GMT
Not After : Sep 11 06:01:12 2025 GMT
Subject: CN=f89c5332d47b2cada4c2f9a8c102288195263481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c1:1d:d4:88:13:5b:bf:ae:dd:63:06:32:3c:
f0:9e:9c:ab:51:46:c8:4a:c6:9f:ad:b7:2a:ac:7e:
51:04:04:ee:65:fd:59:7a:3c:e6:82:37:1c:4b:93:
fd:5c:c3:c8:43:75:5d:49:35:f1:99:c7:ac:eb:bc:
bd:9c:d2:a7:7e:55:b2:60:21:6a:49:e6:a1:e8:d0:
6e:ae:78:a9:d5:2e:ae:66:01:c3:2a:55:7f:a2:c9:
7e:8e:ca:91:f6:07:7e:1c:a8:45:05:96:77:ee:bb:
34:09:96:0e:ea:76:e6:88:7a:ed:3a:bd:f5:f6:e9:
8e:43:d5:fb:36:aa:b0:ec:38:34:c2:11:b1:be:59:
7d:53:6d:bf:f8:13:87:62:17:53:e9:77:f7:f3:df:
9a:55:89:ba:80:01:98:3e:e5:69:c4:66:6e:8e:8a:
1c:f3:f0:33:4d:be:22:54:df:24:e9:f2:bb:51:e2:
2b:fd:7a:47:f9:78:83:53:2f:47:26:15:c2:82:e1:
6b:47:e1:80:17:cf:da:db:07:55:50:ff:78:6d:78:
b8:96:a1:8d:a5:f7:14:df:e1:88:4d:b4:70:60:62:
ac:5d:06:21:6d:8e:5f:50:87:f9:03:39:86:46:96:
93:6f:29:ac:29:75:98:8f:b2:3e:e1:32:04:9b:4e:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9C:53:32:D4:7B:2C:AD:A4:C2:F9:A8:C1:02:28:81:95:26:34:81
X509v3 Authority Key Identifier:
keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:b7:f1:8b:d3:55:0e:44:23:41:0d:b9:db:cd:3d:f6:b3:32:
bb:46:d8:05:6d:61:5a:81:29:cf:93:da:85:20:71:27:11:32:
62:fd:b6:9e:f8:dd:00:b0:9e:0f:77:d7:bf:94:48:38:36:63:
a8:38:e9:3d:bc:2e:18:76:ce:c4:9b:dc:08:fb:63:02:05:94:
20:6b:86:25:4d:94:7f:35:02:2e:a4:48:13:da:d8:9c:2d:fe:
9b:f7:a6:ba:de:a6:4b:ad:25:35:75:56:7f:2b:9b:f3:c8:3b:
e7:7b:e1:0c:35:00:bc:f2:5f:ec:35:bc:73:bf:2a:4f:b4:9d:
82:fc:34:12:44:a2:61:77:d2:55:c5:4e:a3:09:07:e1:a4:b3:
3f:22:cb:4c:c8:9a:05:ef:b5:56:94:93:ea:f8:31:cd:75:d9:
5e:27:be:94:99:9c:85:4c:e3:a1:2a:36:90:02:a7:95:83:23:
bb:a4:dd:26:24:e6:42:86:db:47:c8:87:f7:99:a6:14:4f:b5:
f9:98:c2:24:9f:0f:9a:ed:64:ba:5c:08:30:27:33:f9:08:ae:
5a:33:8c:df:23:f4:5f:31:61:8b:f9:98:f0:a1:ad:fd:e6:c6:
e3:fd:b6:3f:81:20:9d:c5:1d:ad:44:93:d0:f2:86:22:5b:83:
3f:88:5a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 13:42:17 2025 by rpki-client