Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json)
Hash identifier: QiAFzm2uP0m31uT7uipdKjRowpdiK57D103UGNzA4R4=
Subject key identifier: 4F:2F:0A:28:54:AD:36:89:58:3B:1C:B2:3A:75:33:88:66:4B:81:BF
Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d
Certificate serial: 019923D60403B923D42C159FFCA613ED167E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
Manifest number: 0C72
Signing time: Sun 07 Sep 2025 11:00:52 +0000
Manifest this update: Sun 07 Sep 2025 11:00:52 +0000
Manifest next update: Mon 08 Sep 2025 11:00:52 +0000
Files and hashes: 1: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: GrIGgc4NidoJLdyvn95bcdXyZadOeExCQ7J3erYjqiE=)
2: vm_KzfoiY4cVzVJi9fJVQUcZlJs.roa (hash: lyBGyAokiSjopS7O45WDbuUZk8SIrQSCpnYKsmtEQ5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:04:03:b9:23:d4:2c:15:9f:fc:a6:13:ed:16:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d
Validity
Not Before: Sep 7 11:00:52 2025 GMT
Not After : Sep 8 11:00:52 2025 GMT
Subject: CN=4f2f0a2854ad3689583b1cb23a753388664b81bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ed:07:6e:70:a7:78:0c:6a:29:ca:33:bd:6a:
69:fc:85:b6:d8:e6:16:08:bd:73:4b:17:42:3b:e2:
a3:40:70:d8:48:a8:50:02:48:2e:b5:7b:81:d6:b2:
00:8d:2b:97:9d:2a:1e:f6:a4:c5:2d:59:4e:00:b4:
93:f3:88:b4:49:54:48:d6:21:20:86:95:b9:cc:83:
04:10:78:ac:9c:47:01:20:fc:f1:27:05:21:90:ba:
2d:2c:5e:45:34:1e:5d:ee:d0:8e:ba:0e:75:c9:98:
38:d3:b6:fa:20:02:e4:39:27:24:82:24:01:92:58:
ad:f7:c6:03:60:c1:15:ba:dc:a9:9c:bf:d9:64:2f:
3a:8b:f9:b4:a1:c4:87:4b:95:81:ab:01:18:82:b2:
40:2f:8f:e2:21:28:1d:28:97:6b:56:d1:a1:e5:f2:
2d:ce:09:0e:70:4a:5b:e7:2c:16:23:ee:95:b8:73:
93:b9:75:ab:d0:eb:aa:bd:c1:d2:6a:75:71:e9:cc:
67:b2:a9:e7:25:61:39:a5:bb:93:14:1e:a7:ab:9f:
44:c3:71:42:37:27:97:6c:34:80:43:6e:eb:d3:00:
8d:b3:6f:f7:aa:e3:8c:74:f2:bd:09:1e:7a:7f:29:
58:a8:e4:4d:8f:b5:58:bd:5a:6d:e3:c4:09:b7:52:
6e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2F:0A:28:54:AD:36:89:58:3B:1C:B2:3A:75:33:88:66:4B:81:BF
X509v3 Authority Key Identifier:
keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:57:ff:11:c9:8b:69:5b:11:0e:83:a5:91:d7:61:ad:c0:46:
48:23:9d:49:1d:a2:42:53:34:32:e4:81:2d:c8:37:eb:52:76:
ac:f4:4c:e1:44:a8:ee:6b:28:90:fe:8c:30:27:a0:bd:14:02:
cc:c6:ea:9f:76:a6:5c:fc:88:a4:00:69:6a:1d:0a:cc:5e:35:
7b:74:03:eb:73:a3:e5:15:49:bc:5f:6b:2e:ff:e5:88:2a:41:
f8:ed:cf:5c:56:04:2f:d2:af:a8:fd:22:ac:2a:42:ed:ff:c1:
fe:aa:e5:db:55:42:46:99:42:5f:d7:d6:d2:62:27:b7:d6:95:
c0:e2:18:fe:da:4f:91:cf:72:28:ca:14:8b:f0:c9:97:38:2b:
7c:4f:98:fe:e5:3c:1c:bb:5f:10:76:67:88:56:36:62:c5:31:
46:cf:bf:c6:5c:24:ba:57:4e:1a:d0:cf:f0:6a:32:b5:1e:af:
9b:66:8e:77:c3:f4:74:de:6a:91:cd:9e:02:da:73:67:5d:54:
8c:68:cd:d5:6d:af:1e:7f:10:cb:a1:b2:b7:f7:b2:3a:b3:14:
eb:b4:f7:a0:f1:f4:31:3d:61:f2:6d:fb:4c:25:85:21:76:53:
83:94:c6:66:db:3d:b7:e2:20:f6:6f:6a:eb:91:76:da:7a:c3:
9f:fc:92:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:38:09 2025 by rpki-client