Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
File: OzNj5H5p68XRwiUd3V2sfJiYmSI.mft (raw, json)
Hash identifier: kHsA6wVXQU/7raOJ/t0Q/ICFcoClJCXGWnyHu6HG6vU=
Subject key identifier: E9:96:49:FB:53:CE:FA:B0:A4:AF:B5:CE:B2:4C:CE:AD:56:B2:57:9F
Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Certificate serial: 019A096E605A0FC33D0A6CACF1054D324AEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
Manifest number: 16EA
Signing time: Wed 22 Oct 2025 01:00:19 +0000
Manifest this update: Wed 22 Oct 2025 01:00:19 +0000
Manifest next update: Thu 23 Oct 2025 01:00:19 +0000
Files and hashes: 1: OzNj5H5p68XRwiUd3V2sfJiYmSI.crl (hash: JmyiihXztrKu6y8rHDtwscErqbU7RIFlcGIwGGnGEM0=)
2: vYaPE7wk6Qo5Lm2fpqZ1rhvLpDU.roa (hash: ZL2srvtFB3ZUj0RuUE6dDGpy3UL8CY63qkKeS+BMJ20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:6e:60:5a:0f:c3:3d:0a:6c:ac:f1:05:4d:32:4a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Validity
Not Before: Oct 22 01:00:19 2025 GMT
Not After : Oct 23 01:00:19 2025 GMT
Subject: CN=e99649fb53cefab0a4afb5ceb24ccead56b2579f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6f:89:d7:c5:23:b2:ad:13:7d:e8:4a:87:28:
39:b4:3c:53:4e:0f:ce:ad:28:92:d5:8b:31:25:1a:
90:fd:e7:40:fd:3d:a4:b0:53:c1:39:e0:f8:fe:1a:
49:8d:04:39:0d:1f:f1:67:37:c4:bd:e1:60:1d:06:
1d:55:01:82:90:dd:95:d4:d3:3b:d4:71:8e:f1:49:
36:84:12:61:e2:6d:bc:7c:be:ec:d8:3e:df:ae:4f:
7f:78:47:0c:c0:2a:48:c3:1d:13:f5:3c:b2:e5:c3:
4c:80:19:73:29:68:d1:6d:4c:4f:80:50:ac:8d:e8:
ba:93:bf:19:5e:5a:81:9a:05:a6:53:03:b9:6d:66:
8d:73:6d:78:b9:5e:72:63:5a:c2:36:62:27:e9:f2:
43:c4:6d:0c:af:3f:ac:13:00:19:26:c6:b0:6c:88:
83:50:31:45:09:3c:d4:c7:88:63:50:98:87:01:7e:
73:71:d1:6f:cb:ae:a3:84:19:00:84:fd:d4:9f:7a:
c8:a7:de:da:9f:e2:3c:95:18:b5:f3:2a:cf:ec:68:
48:7b:50:9e:4e:54:96:fd:c8:40:a8:33:97:4e:e3:
71:79:18:7d:13:53:97:8d:b3:83:45:0c:4f:c5:d3:
e7:b1:c5:53:b7:43:c6:e8:60:f4:3a:84:07:38:d9:
46:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:96:49:FB:53:CE:FA:B0:A4:AF:B5:CE:B2:4C:CE:AD:56:B2:57:9F
X509v3 Authority Key Identifier:
keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:79:cc:55:4a:9f:3b:53:af:b3:62:14:8e:24:6e:02:38:1d:
8c:06:66:33:fd:26:29:b5:e0:5d:6b:22:61:4b:cb:7e:68:5a:
21:5d:74:d5:e8:81:13:3c:bd:38:6e:a1:db:2a:b7:48:f3:13:
98:90:d1:f6:e8:56:b7:a9:17:90:d4:1e:7e:5b:db:96:f0:56:
32:67:52:b1:4d:b4:41:a8:12:d6:aa:02:f1:a8:2d:94:3e:9e:
9d:8e:71:61:85:c3:cd:92:ac:3d:d2:3d:68:23:70:5b:0a:36:
27:90:82:b9:34:92:05:fd:d9:ae:81:22:a1:9a:13:54:49:a4:
f6:3e:51:95:71:a0:4a:ce:d5:73:cc:7b:5c:a8:3d:0a:3c:2a:
38:c0:1a:02:25:f3:c8:a7:50:7f:25:a1:cf:fe:cc:37:d4:a5:
cf:8c:e6:9f:a4:5c:4f:66:d8:60:39:63:0c:ca:ad:33:2a:84:
db:eb:7d:84:87:79:f3:eb:31:52:3e:37:b6:be:2e:69:28:13:
13:2f:6b:94:fc:ae:90:ed:8f:df:d8:20:dc:41:52:ff:b4:e0:
fb:c4:52:6f:d5:7b:de:39:bc:1a:03:c9:38:ec:df:09:18:41:
06:85:3b:b3:a1:d6:55:2c:28:a8:86:88:bd:3d:95:59:57:2d:
d2:57:fa:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 07:39:00 2025 by rpki-client