Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: nTAdJ1O/2yDqBRMXJg7b+yAnihxLmYKGRpwWFi04cZU=
Subject key identifier: 6B:02:30:50:37:D1:7E:F2:C2:BF:BF:FB:65:F6:40:5D:F0:E1:F1:59
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 01992CD8D92408977F895280056F9764C3F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 017C
Signing time: Tue 09 Sep 2025 05:00:32 +0000
Manifest this update: Tue 09 Sep 2025 05:00:32 +0000
Manifest next update: Wed 10 Sep 2025 05:00:32 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: qanoq156S7FVtaKyV6lTPAXMPQ67bEzjB9CxLE8VJxw=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d8:d9:24:08:97:7f:89:52:80:05:6f:97:64:c3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Sep 9 05:00:32 2025 GMT
Not After : Sep 10 05:00:32 2025 GMT
Subject: CN=6b02305037d17ef2c2bfbffb65f6405df0e1f159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:db:54:c7:da:52:e4:23:07:42:97:1e:5f:
20:32:5b:a3:bb:77:c2:4b:b2:1f:ac:f9:ae:76:d5:
05:cd:5e:26:24:63:b5:47:99:e8:b6:3b:22:85:46:
20:be:6d:7e:ba:4f:b3:ff:5c:bd:3c:f3:6b:12:fa:
e8:c2:f7:66:9b:00:72:db:44:b6:ce:70:d9:2b:1e:
9a:26:aa:d4:aa:a5:ce:11:17:fa:25:01:93:93:2f:
89:2d:dc:ea:41:ee:49:f4:c9:a3:6f:2e:17:7f:da:
ab:57:a4:d2:a7:ee:0e:0d:ca:22:ca:24:39:e1:7b:
7f:47:63:9a:9b:85:2c:1d:02:55:b4:b8:1d:a3:bd:
be:d7:8b:52:41:3d:b4:7a:6e:bc:24:3f:5f:c6:3f:
c1:7b:62:ff:28:ed:4b:bf:f5:ff:de:2d:e9:c7:93:
00:9e:09:5d:15:6d:9d:09:f1:8b:b9:13:ef:0f:6d:
4c:6b:39:59:e5:28:7e:09:dc:3c:73:86:f2:55:b5:
8a:f2:e1:7d:40:00:93:7d:5b:d3:6f:36:b5:31:6b:
65:99:bb:1e:b4:0a:9b:3b:f8:91:4e:04:97:27:54:
7b:fa:f0:9e:27:fb:f1:a1:16:27:b3:17:5c:84:3e:
82:8f:bd:06:9c:d2:59:d7:a7:be:5f:f8:95:ed:0e:
e9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:02:30:50:37:D1:7E:F2:C2:BF:BF:FB:65:F6:40:5D:F0:E1:F1:59
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:a4:d6:53:61:35:cb:59:4d:30:5a:d2:4b:7e:6e:3e:b3:18:
fa:a3:af:84:fe:b4:7f:93:b8:05:10:15:59:ce:d8:d9:39:fa:
30:97:f1:e9:d4:91:95:1c:40:b8:ee:bd:d3:cc:71:af:9b:27:
80:63:18:a0:70:d9:cc:39:51:cb:39:25:27:48:21:b1:fa:d2:
58:11:4b:14:54:82:fd:54:63:66:b1:d5:37:69:4f:ab:a5:52:
ea:09:71:90:81:92:d5:80:99:cd:a9:be:0b:c8:7b:77:9d:20:
dc:d3:27:5e:c0:9a:3c:ef:7f:f5:09:42:e7:a2:78:7b:27:a9:
4d:29:27:22:59:f3:e8:64:ce:b0:01:8f:ef:e2:3b:78:cc:53:
5d:88:b9:2c:8a:11:5d:1d:8a:9c:4d:57:66:ab:5f:09:59:3d:
34:ea:4b:d7:a4:60:c0:a5:87:42:ad:2c:01:13:ec:57:db:78:
4c:10:f3:c0:08:fe:a5:6a:96:c4:cc:26:49:f2:05:d2:3a:ac:
13:b3:58:2f:9a:72:11:75:36:37:23:e0:4c:7c:81:2b:2e:0a:
24:c4:a6:ce:c5:09:ae:4c:81:6e:7d:82:7d:50:52:1c:49:8e:
52:21:51:15:b2:a3:f0:68:d4:5a:84:13:59:f0:94:93:d9:dd:
ef:86:f0:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 07:46:24 2025 by rpki-client