Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: /ObUTIor0uQut5LmtnrYeOJ1PIVtoQhWyQQoEzbM9So=
Subject key identifier: 24:EC:83:A0:95:96:1C:B0:F9:EE:EE:50:9F:FE:7F:0C:14:A5:3A:5E
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 0199228D0B3C6130E6F60156DABA554C05F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 1677
Signing time: Sun 07 Sep 2025 05:01:32 +0000
Manifest this update: Sun 07 Sep 2025 05:01:32 +0000
Manifest next update: Mon 08 Sep 2025 05:01:32 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: KLmieOeZKamClqCWkMo2Itp1bET7fJp3f4468gGEYf4=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:0b:3c:61:30:e6:f6:01:56:da:ba:55:4c:05:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Sep 7 05:01:32 2025 GMT
Not After : Sep 8 05:01:32 2025 GMT
Subject: CN=24ec83a095961cb0f9eeee509ffe7f0c14a53a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3c:75:bc:43:ea:21:ce:62:b3:fd:a0:42:4b:
af:8e:97:dc:07:23:6a:92:eb:17:63:ff:27:7a:1c:
6f:70:ea:e6:d5:52:53:b5:fa:9a:75:2d:9c:da:36:
fb:98:c1:fc:1f:1e:88:65:42:48:58:2d:c9:c6:76:
96:13:b0:80:47:8e:3e:03:ea:d2:c6:5f:64:d7:13:
dd:80:9f:69:ba:fd:20:c6:68:5d:d5:64:be:83:03:
88:76:2e:cc:34:f7:ba:2c:5c:ac:c1:f8:ae:95:a2:
77:74:28:90:e1:a8:cb:8e:8f:85:ac:1d:94:db:3d:
9e:57:c5:f7:49:34:9a:f7:35:03:84:28:f3:51:31:
78:7c:2b:6c:42:a2:c0:76:23:e5:33:aa:47:20:f0:
53:42:59:9d:e3:c4:61:7c:b6:d1:ae:3c:09:54:1b:
d7:26:bf:bc:bd:50:21:da:ef:2f:2a:3d:19:e3:62:
94:3a:32:f2:08:d8:23:c3:55:8d:45:d0:c3:fc:e5:
69:65:8d:f8:67:53:09:6c:c9:2f:d9:2d:c9:fa:3a:
c1:d4:85:95:d3:a3:c8:89:45:26:5b:0a:25:fc:06:
e7:85:a6:0f:60:44:91:43:7e:8e:d0:f0:2e:ed:f6:
89:78:30:74:d3:e2:97:18:e6:42:55:bd:63:de:39:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EC:83:A0:95:96:1C:B0:F9:EE:EE:50:9F:FE:7F:0C:14:A5:3A:5E
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e9:70:3f:5b:69:ee:e6:47:25:df:e3:ce:63:1e:d8:01:9f:
77:90:d4:4b:6f:10:a5:2f:df:06:34:fc:37:ae:dc:ed:e9:0a:
0f:08:44:d3:00:78:2c:89:0a:51:6d:4e:41:56:78:cc:f0:9a:
68:0d:be:49:e4:ea:4e:1e:53:dc:bf:02:ff:ad:b4:25:b6:cd:
f7:0b:cc:2e:54:8b:e9:7f:11:24:f9:cb:99:f0:bc:38:dd:c5:
6e:19:7e:18:9c:5f:86:4c:ec:5c:ab:65:52:90:61:c3:c5:db:
ee:0a:bc:97:a1:ee:6c:dc:11:e5:c9:6b:2f:96:6b:b9:ae:f3:
83:5d:cd:35:de:6d:c0:53:01:77:aa:5a:8f:44:41:b0:e1:79:
8d:a9:ae:34:00:a9:22:e3:e5:aa:ba:c3:ce:55:87:85:26:ed:
e5:c1:3a:21:4d:00:c7:13:82:d2:70:56:23:c3:23:5d:7b:8a:
6d:41:1d:fc:4c:1f:6f:91:0a:32:7b:83:b2:87:cb:c3:08:a4:
4c:a9:42:1f:aa:23:bb:ba:00:37:2c:ca:90:2c:f5:17:18:3e:
4e:c0:a0:d0:95:c4:79:43:19:df:07:53:7b:d6:3e:15:2d:a1:
6a:dc:39:10:6e:1f:86:dd:c2:82:8b:81:28:07:d3:13:6b:99:
6b:4b:d5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:32 2025 by rpki-client