Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
File: O_zNSgBCLIZfUJO4W7howrswxGk.mft (raw, json)
Hash identifier: cadtv69k5NZcuAAAiGG5gJYfDc5O+7qcIqlhF4qSEfg=
Subject key identifier: 00:97:3C:CE:09:22:F2:5B:CF:14:8E:43:1F:5E:65:FD:4F:8A:1C:41
Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Certificate serial: 0199225551D8F135DF9B3CA74BCE5F3BCABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 04:00:40 +0000
Manifest this update: Sun 07 Sep 2025 04:00:40 +0000
Manifest next update: Mon 08 Sep 2025 04:00:40 +0000
Files and hashes: 1: 3U1ZWgNoASiRwWRzOTs9a26_aSI.roa (hash: rfiPEMHu4Dy2ke39aiCtx6HNVMRJPDS81QuXHyTH8CQ=)
2: O_zNSgBCLIZfUJO4W7howrswxGk.crl (hash: u7jrMfZN2YzPX+GDLM++NqTBOS1+NWMw0RY5VeZtU3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:51:d8:f1:35:df:9b:3c:a7:4b:ce:5f:3b:ca:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Validity
Not Before: Sep 7 04:00:40 2025 GMT
Not After : Sep 8 04:00:40 2025 GMT
Subject: CN=00973cce0922f25bcf148e431f5e65fd4f8a1c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:d2:fd:94:b5:51:df:08:57:4e:39:34:21:
cc:17:3d:2d:b2:8e:18:8e:d9:8c:4c:ab:15:af:7d:
b1:46:58:df:8c:f4:80:88:42:ed:2f:26:58:4d:29:
2c:47:8f:a3:27:af:e7:87:b2:b3:aa:ab:d9:5f:d9:
17:00:3d:4f:ec:fa:36:bb:bb:c2:ac:de:ba:94:6c:
95:6d:ad:ea:53:ce:b3:b7:90:01:47:53:8b:f9:4b:
a5:0d:c3:95:da:a9:09:73:5c:80:0a:c8:85:fe:e6:
4c:c2:e0:fd:3e:81:0d:86:05:37:f9:d5:e1:8d:50:
e7:cf:08:c5:ee:24:36:72:68:87:2f:23:fd:12:ac:
bb:30:b3:15:97:30:8e:b7:cf:e6:08:c3:44:fb:50:
91:3a:76:c7:84:98:29:92:7d:4f:7b:bd:40:92:86:
58:b7:0f:09:34:cc:a7:48:4f:1d:49:ec:19:81:67:
d2:11:4a:0c:ac:49:3f:3d:58:fa:fb:97:58:51:7e:
7e:f7:00:b0:67:aa:85:1f:22:4f:ea:f5:44:bd:64:
a0:aa:7e:08:2f:9b:50:3f:fd:22:29:ad:ff:c3:32:
66:87:e2:6b:8c:65:96:a9:27:71:ce:35:e0:e9:79:
26:fe:b4:59:ca:30:5f:93:f8:36:91:49:be:70:59:
a2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:97:3C:CE:09:22:F2:5B:CF:14:8E:43:1F:5E:65:FD:4F:8A:1C:41
X509v3 Authority Key Identifier:
keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:71:e9:bb:8a:4b:29:ec:5e:58:02:61:b1:28:b3:43:03:af:
01:b8:da:83:6c:05:29:ee:e7:b5:96:0d:1a:de:b0:a9:68:ea:
b5:17:47:37:d0:2c:40:dc:e1:f6:46:e7:4e:cf:5e:86:3d:f2:
3c:16:75:13:39:e8:5e:13:23:da:76:59:94:04:5a:b2:87:4e:
db:01:e4:30:60:64:9f:65:18:b7:84:4f:f2:18:53:50:28:63:
98:41:71:45:82:9f:6c:17:8d:42:bd:80:8f:39:c4:6a:26:58:
c5:0c:f1:40:57:9b:ae:26:0a:ca:dd:95:e1:f3:68:d4:3e:ec:
b2:0b:2d:e0:1d:7d:0d:cf:55:5b:8c:ce:9f:87:34:3a:aa:8a:
3c:9a:48:00:c6:df:7b:20:ab:9f:dd:d5:4c:14:0d:19:e4:b7:
9a:34:79:e3:8a:58:31:1b:8a:92:51:b2:f5:83:b9:37:fc:14:
0e:c4:79:70:da:b1:ac:3b:85:9b:5a:70:07:a8:4c:d7:c5:c8:
de:41:20:4b:05:63:fe:1b:34:34:02:f7:6b:0d:f8:17:d2:15:
bc:ce:39:99:49:ad:fb:6c:03:4c:cb:28:99:4c:b8:a2:d6:e1:
64:57:16:c5:c9:b2:69:1c:4b:82:7d:aa:9c:22:47:a9:85:f5:
5a:25:08:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:41:48 2025 by rpki-client