Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: 3gChED+fwAoyM5WOgJFx0j4bak69Hl2QjKYs4qE4k78=
Subject key identifier: 33:69:CB:41:3E:33:E7:DC:15:D5:0B:A3:18:DC:56:B6:08:28:5D:D1
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 01995154F96B92688FE21C261FF742EC8B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 089B
Signing time: Tue 16 Sep 2025 07:02:27 +0000
Manifest this update: Tue 16 Sep 2025 07:02:27 +0000
Manifest next update: Wed 17 Sep 2025 07:02:27 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: w8LusfMxJNQha7BykCKWEc840OAPr2cXxLMRDm4xi8k=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:51:54:f9:6b:92:68:8f:e2:1c:26:1f:f7:42:ec:8b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Sep 16 07:02:27 2025 GMT
Not After : Sep 17 07:02:27 2025 GMT
Subject: CN=3369cb413e33e7dc15d50ba318dc56b608285dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:4c:f7:9c:6d:7b:5a:dc:04:7c:5a:2b:45:
f8:21:3d:84:b0:f4:e3:c5:bb:3f:49:85:1e:80:e6:
67:31:56:e3:e2:39:d0:b9:88:1e:0e:72:43:38:ce:
f3:f9:f0:61:82:a6:d0:93:9b:b2:b2:c0:a9:2a:80:
ce:24:9b:33:26:42:fe:fc:42:56:3a:1a:7a:18:c2:
6e:dd:a8:7a:0b:ab:d4:e4:8e:f8:fc:a5:08:36:59:
e9:51:25:f5:bb:d0:bf:bd:de:95:e6:7e:b5:a8:c5:
8c:57:90:92:26:35:8b:ff:2c:cc:1a:13:5a:06:d9:
46:2f:45:1f:a0:89:e7:51:d6:a7:b3:48:cc:cd:8a:
eb:c5:02:ff:70:31:99:13:53:ce:a4:be:ca:ec:c9:
af:d5:59:98:f1:ce:b8:a7:f2:b0:14:0d:0b:36:09:
14:5b:2c:87:87:96:1f:23:78:ad:45:96:17:7c:7a:
bc:95:91:64:dc:6f:31:f3:da:2c:87:f1:75:31:ed:
b2:87:a8:13:d4:6e:43:b7:6e:87:88:62:8f:db:b5:
fa:d2:8c:39:78:01:2d:fd:f8:fd:d1:0a:bf:18:69:
0d:f5:c8:98:f6:6e:65:6d:80:7f:fb:b4:47:a7:c8:
7e:4b:a2:da:ab:df:72:a6:25:82:61:ec:86:fc:71:
42:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:69:CB:41:3E:33:E7:DC:15:D5:0B:A3:18:DC:56:B6:08:28:5D:D1
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ab:c9:33:8a:2a:dd:a4:7c:44:51:8b:24:63:1f:32:b0:c6:
31:15:97:dc:b2:10:13:fe:40:20:89:c5:1e:e2:af:4f:d8:42:
76:e1:00:e9:59:b5:f7:68:ea:78:ff:4b:74:da:da:9b:b1:41:
c5:9e:4a:a2:f0:72:90:af:e2:13:c9:09:3e:e8:2f:43:f4:37:
e1:5c:53:22:17:f1:63:0c:78:44:cf:e7:72:51:94:43:1c:35:
28:57:3e:c1:1e:f4:d0:04:20:f9:f9:02:b8:0a:75:30:15:f7:
a3:96:3b:2d:46:d9:a4:cf:57:c0:b6:6f:b4:70:dd:86:88:08:
ab:d9:20:53:13:bd:4e:bc:13:ee:b4:fc:79:68:8c:22:e5:fd:
69:46:6c:3e:c4:d2:36:28:04:8a:51:c4:e7:f9:03:37:2d:3b:
b1:65:c9:cc:a5:ac:9f:c9:26:ee:ac:7e:20:90:e2:c0:9e:58:
1c:61:98:e9:c4:e7:bb:1a:67:02:20:ab:0c:ec:49:c9:69:4d:
4c:6f:4a:12:a7:09:d0:80:ea:02:b9:d8:a6:5e:f2:25:08:7a:
79:b5:fa:c8:94:dd:fb:aa:9f:36:c4:97:5c:38:ab:ea:4c:ff:
9e:c4:b4:78:d3:f9:34:b3:5c:38:52:17:fb:a5:ef:ec:30:2e:
8f:3b:09:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 08:32:04 2025 by rpki-client