Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: 0Zd68wuGlsv+37acgoeo6+XjsbQk/nhVr76rrnpFetI=
Subject key identifier: 74:2C:E5:B9:33:FA:43:77:10:DC:0F:D1:45:D1:14:9D:BC:D6:FC:17
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 01992330E4CAB33FA950AD30F7294FF4DAFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 0537
Signing time: Sun 07 Sep 2025 08:00:30 +0000
Manifest this update: Sun 07 Sep 2025 08:00:30 +0000
Manifest next update: Mon 08 Sep 2025 08:00:30 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: P9D4KDA1p8D9s2HfpIe0JQHh9jJM0YtgPuF3ywXqPXY=)
2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:e4:ca:b3:3f:a9:50:ad:30:f7:29:4f:f4:da:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: Sep 7 08:00:30 2025 GMT
Not After : Sep 8 08:00:30 2025 GMT
Subject: CN=742ce5b933fa437710dc0fd145d1149dbcd6fc17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:5c:7a:fc:82:28:85:92:c1:17:fc:8d:9c:
6c:35:55:c3:15:e9:e6:c5:61:30:80:26:74:cd:04:
7c:e3:70:dc:ea:e6:3f:da:37:22:c5:15:9f:03:bd:
39:5f:d4:35:8d:fc:d5:74:d5:45:71:39:55:b3:e2:
9c:c5:bb:58:d2:57:ea:5c:5d:43:85:bf:5d:f0:a5:
3f:e4:2e:b6:de:78:f4:9a:e1:a8:0b:db:09:9a:4b:
8e:50:9e:30:8c:5f:cf:f9:14:25:b2:bd:f9:75:5c:
1b:e7:01:4e:6b:d2:15:7f:48:34:28:5a:41:01:52:
32:fa:81:36:cb:a6:75:dc:8e:f5:bf:3e:d4:3e:1a:
01:00:91:33:f7:2a:a2:47:2c:95:95:03:5a:7a:bd:
e0:2a:4d:49:9e:9f:a3:00:4a:9d:4b:6d:43:01:6d:
e3:04:2c:2a:14:95:06:64:15:a3:be:17:76:d0:ad:
40:76:ba:e5:d8:36:1e:6b:cd:a0:13:13:ff:9f:39:
e0:02:99:2e:75:16:98:14:0f:d7:e6:15:7c:45:16:
2c:2e:c6:0d:13:3b:07:7c:e7:73:1a:51:b8:42:a6:
81:e4:65:66:14:a1:27:59:3e:ec:62:41:13:60:1b:
86:d5:7e:e4:9a:38:aa:fe:f6:ae:dc:fa:84:d1:e9:
a4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2C:E5:B9:33:FA:43:77:10:DC:0F:D1:45:D1:14:9D:BC:D6:FC:17
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:9d:c1:71:d5:86:b8:46:92:fe:83:5a:fb:16:6b:62:81:80:
bb:04:c2:e2:99:46:6b:44:7d:2d:f4:3e:0e:70:a7:05:c8:c6:
ae:6e:9b:63:43:90:0d:b9:ef:80:79:a2:cc:e1:7b:88:cf:c7:
14:f5:11:47:c2:a9:06:78:23:84:11:36:10:7a:b2:d2:0b:77:
74:4c:7c:bf:55:da:76:f3:36:18:ab:ec:99:fe:8c:fa:0b:92:
93:34:13:09:7b:4b:26:af:2f:cf:92:8f:05:a1:73:9b:f1:08:
b4:a1:ec:51:c5:48:db:38:ac:fa:de:a2:ec:91:5a:8e:18:27:
6a:d4:56:b8:e0:fe:b9:86:9d:ca:4b:10:ea:a3:8b:9f:49:01:
47:84:2d:fc:56:f4:94:1f:71:b9:15:dd:7c:a7:20:10:7e:49:
0a:0c:62:94:6b:e2:a7:eb:44:5b:0f:4e:d0:bd:4f:9f:85:55:
ec:a3:ce:ba:4a:9e:8f:8e:e7:55:22:89:c5:80:90:e9:c5:96:
97:ab:2f:80:a8:e7:71:23:d2:9a:e3:82:cd:96:cb:28:22:19:
a6:71:ff:ef:f9:28:b6:f4:ee:45:13:7c:b3:3f:c1:9d:31:f9:
ec:a9:d4:7a:8b:4f:72:e7:e8:df:fa:69:8b:5d:7d:17:ff:c5:
be:2b:86:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:23:03 2025 by rpki-client