Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
File: OCvsQ90a_pemT1brhUx58WP6TuY.mft (raw, json)
Hash identifier: 64hPFGWtUP0kWjitW9haQ3u2l+OWrpZAFe2A/LPT+C8=
Subject key identifier: C3:D7:E0:6C:EC:94:2B:8F:79:16:AD:9E:96:AD:3E:20:E6:8B:9B:C7
Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Certificate serial: 01992331215010AC8824BE4BB1D03556C91F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 08:00:46 +0000
Manifest this update: Sun 07 Sep 2025 08:00:46 +0000
Manifest next update: Mon 08 Sep 2025 08:00:46 +0000
Files and hashes: 1: OCvsQ90a_pemT1brhUx58WP6TuY.crl (hash: TcHs0c5vfj/9pT0NMDBShRZVmYGmeF0pwn8zZHfkhVM=)
2: ZcMWvBkTNFkQiz2yA0G8DNGlqp8.roa (hash: ElsDKcX3/AeNMZDxpF6Opg+D9XtiydscqeFlhPJCg+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:21:50:10:ac:88:24:be:4b:b1:d0:35:56:c9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Validity
Not Before: Sep 7 08:00:46 2025 GMT
Not After : Sep 8 08:00:46 2025 GMT
Subject: CN=c3d7e06cec942b8f7916ad9e96ad3e20e68b9bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bb:e9:7c:f3:02:c4:b2:c2:6b:9a:e6:54:02:
4f:99:a4:9b:36:51:c1:9d:0f:45:87:44:03:21:a4:
07:8a:94:2e:9c:ca:3c:40:e9:a9:d0:da:3c:1b:2d:
6f:2c:e6:d4:f7:d1:5c:0e:76:89:ac:9d:a2:b1:86:
af:56:b1:fb:a8:59:f9:d5:6f:34:69:27:d1:30:5f:
ff:a5:4f:97:99:11:8c:41:cc:ba:ae:f5:bd:2b:38:
bc:38:42:c3:d4:91:7d:05:e2:c6:61:8f:df:a7:08:
bc:75:98:a3:66:c2:6c:d1:af:e5:e3:27:db:a7:8d:
ff:eb:3d:1a:ca:10:f5:05:8f:2a:63:89:74:43:b1:
de:57:cc:8c:90:c5:47:0d:0a:ec:11:e2:d2:d8:84:
66:f8:55:f1:13:46:37:a7:f4:95:90:32:33:ac:b7:
bd:79:02:02:1a:c3:04:74:d7:3f:a7:14:50:0d:62:
06:bd:5a:2e:75:95:bb:b2:3c:b8:97:08:dd:5d:4b:
1a:37:11:b1:e7:3d:db:0a:90:64:11:b3:0b:4a:f6:
6d:0f:45:ea:c2:24:5e:f5:6c:b8:bb:e0:c0:e4:2b:
24:98:b8:66:02:83:68:0b:e0:9b:8a:75:08:1b:45:
1f:bb:91:e5:e7:16:4d:0b:8f:00:3c:5c:3f:f1:b2:
54:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:D7:E0:6C:EC:94:2B:8F:79:16:AD:9E:96:AD:3E:20:E6:8B:9B:C7
X509v3 Authority Key Identifier:
keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:03:00:9c:c4:a7:2c:9d:99:30:ad:89:8d:c1:52:04:8a:c2:
e4:85:ae:fc:a1:3c:b3:5c:d6:35:da:03:b7:83:c8:ae:1e:fc:
fd:69:3a:fc:17:07:2e:f2:27:d3:91:a3:fe:7f:ea:78:ed:9e:
65:1c:77:45:98:55:fe:04:f7:33:ca:9f:fe:ae:75:fd:cb:98:
c4:72:bb:7a:25:c1:c9:51:35:21:d0:2e:5b:e9:a0:e3:65:47:
63:00:12:4b:fe:e7:5f:f9:22:71:be:53:d3:32:ce:e4:82:f8:
0f:59:88:1a:98:c2:e2:f9:7b:0f:47:68:5c:5c:e3:93:4a:95:
d8:e3:db:f2:56:19:24:8b:f6:e8:89:35:e4:a0:2e:c1:c8:70:
df:3c:89:c1:71:dc:74:a8:a7:b0:c8:a7:c6:2e:da:84:ef:24:
ef:31:af:e3:51:68:bd:c2:3e:7d:81:e9:62:f9:73:3e:73:f9:
78:fe:4a:b5:cb:f5:ab:f0:9f:91:ce:70:cf:c5:2b:be:7c:b4:
89:ff:18:e4:76:14:f7:64:66:2b:69:08:65:61:38:64:b3:8c:
0f:b7:c0:cc:3d:9a:77:69:c7:97:19:e0:d3:cf:a6:fd:e9:36:
a5:61:77:4d:75:da:02:30:8c:2d:3a:e4:52:13:b9:21:8c:4d:
6c:57:aa:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:58 2025 by rpki-client