Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
File: OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft (raw, json)
Hash identifier: oMvSmwaB3qYTUrE1zudAFjpEzN0zo1KyaBLrLCePNfs=
Subject key identifier: DF:33:91:25:50:41:65:40:56:3B:D2:28:FA:2B:13:03:E4:12:49:93
Authority key identifier: 39:79:B4:35:A3:CF:EF:E7:C3:3A:84:B2:2F:60:33:00:9A:52:25:C7
Certificate issuer: /CN=3979b435a3cfefe7c33a84b22f6033009a5225c7
Certificate serial: 019934249809DCB79E14E50832F96B521D89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
Manifest number: 160B
Signing time: Wed 10 Sep 2025 15:00:37 +0000
Manifest this update: Wed 10 Sep 2025 15:00:37 +0000
Manifest next update: Thu 11 Sep 2025 15:00:37 +0000
Files and hashes: 1: OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl (hash: c/zYrN6WpRgL1x+CeHSknD/6wVEoGbGQrOcbAcsZ35U=)
2: VwXHoptHeR9mWbeRFzNgE273Y_Y.roa (hash: O7PmmfQJftPOiteORNgrKpX/pUfGsXyieeu22jdpW5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 15:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:98:09:dc:b7:9e:14:e5:08:32:f9:6b:52:1d:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3979b435a3cfefe7c33a84b22f6033009a5225c7
Validity
Not Before: Sep 10 15:00:37 2025 GMT
Not After : Sep 11 15:00:37 2025 GMT
Subject: CN=df33912550416540563bd228fa2b1303e4124993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3d:49:47:c3:43:04:69:21:11:8c:16:ee:73:
15:37:42:31:dd:1f:20:ef:62:7a:33:a8:c6:1b:7c:
11:bd:4b:12:8d:e3:6a:52:1e:e4:f0:30:6e:cc:da:
44:88:b6:a3:e0:df:c9:94:47:cf:ea:bb:c6:a9:1e:
81:59:55:ea:52:5e:c2:81:ec:59:19:c8:2b:45:79:
4b:f3:ce:cf:c6:8f:f5:62:f8:45:fa:f4:a7:1f:fc:
b6:38:ee:79:f3:8c:a6:f9:e5:a8:b0:82:b1:c5:77:
12:4e:54:71:e6:80:ff:d7:93:f7:32:43:61:a9:0d:
1a:5f:b9:73:f3:70:5b:3b:03:0d:14:4a:04:75:39:
96:34:e6:b5:14:95:1f:df:42:2b:9c:3e:3a:cc:76:
59:e8:14:07:dc:ff:9b:6d:f6:20:eb:e8:b2:9b:32:
88:c7:d8:49:b1:2a:6f:46:4d:bd:5b:a9:5f:5a:6c:
8d:a5:5a:0b:1e:69:60:f9:40:e6:fd:a7:5c:df:66:
83:b6:8c:85:8a:3c:9c:b6:8b:c8:d5:92:b4:4e:e9:
d1:e6:cd:be:78:3b:ab:f1:69:99:0f:1d:00:1e:a7:
c2:98:e5:11:d4:a6:8e:c4:13:c9:33:d8:f4:87:ea:
f8:06:45:ef:99:a0:0b:6d:90:a0:29:99:b2:3d:75:
af:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:33:91:25:50:41:65:40:56:3B:D2:28:FA:2B:13:03:E4:12:49:93
X509v3 Authority Key Identifier:
keyid:39:79:B4:35:A3:CF:EF:E7:C3:3A:84:B2:2F:60:33:00:9A:52:25:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXm0NaPP7-fDOoSyL2AzAJpSJcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/73a71e-446d-41ff-aabf-d5bc239f6a98/1/OXm0NaPP7-fDOoSyL2AzAJpSJcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:1b:cd:c1:5b:02:b1:b6:2d:54:3b:b3:2c:5e:22:a9:aa:24:
2a:54:31:87:dc:2a:df:61:02:4c:35:e5:f5:b8:7d:77:e8:0c:
a2:82:51:90:11:5b:cc:65:60:b6:da:24:13:c6:58:b9:70:f5:
94:a3:c3:5a:01:b6:d2:9b:0e:88:a3:ff:2b:c9:3f:d9:87:d1:
24:9d:85:a0:7e:ad:e7:25:ed:23:d7:35:5b:b1:09:98:2a:8e:
f5:36:6a:ef:14:d3:40:81:f0:81:7b:35:a2:ce:17:71:b6:f1:
79:8c:83:44:cb:ab:e6:e6:fc:1c:ef:79:6c:d5:5f:77:42:22:
f1:db:81:22:3b:3f:e4:31:db:d4:a0:17:f1:1c:95:f6:4e:35:
4f:b2:b5:db:b4:3b:1e:41:db:46:c9:c4:a2:fc:b0:57:99:6e:
56:4b:43:f4:85:1d:ab:bc:b9:ab:41:8c:98:92:d5:88:b9:58:
75:af:6b:4a:22:e9:91:3b:ff:38:d4:f6:a4:52:50:d3:e3:f1:
14:3d:56:b1:b1:44:a7:94:63:a1:c0:e8:4b:c7:cc:af:40:86:
43:3a:b3:98:fb:88:d0:cd:c6:4e:82:e2:8e:5d:3e:23:1c:1d:
0c:9a:47:68:f6:33:bb:d8:13:fd:e4:1e:86:f3:ae:23:f5:29:
46:ba:f3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:53:38 2025 by rpki-client