Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
File: OCeQLuylKp8IFACI9VjkUuDslV8.mft (raw, json)
Hash identifier: O6/plvm7yDVwCm580PrBG5Vo79gpgO1DahxpqtXs29s=
Subject key identifier: 22:AB:AE:A8:79:EA:62:2A:DD:C7:E5:F6:5D:50:FF:1D:33:5C:B4:A6
Authority key identifier: 38:27:90:2E:EC:A5:2A:9F:08:14:00:88:F5:58:E4:52:E0:EC:95:5F
Certificate issuer: /CN=3827902eeca52a9f08140088f558e452e0ec955f
Certificate serial: 0199239EF813C166833325859F0CE1A7D251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
Manifest number: 0137
Signing time: Sun 07 Sep 2025 10:00:44 +0000
Manifest this update: Sun 07 Sep 2025 10:00:44 +0000
Manifest next update: Mon 08 Sep 2025 10:00:44 +0000
Files and hashes: 1: 7nhLLpXwqJ1voHCkK-P1ueQH-PM.roa (hash: Y5wnVvyZMdqfWGL6r50VzIWMh6QnpnoTzvTu5ABQUTI=)
2: OCeQLuylKp8IFACI9VjkUuDslV8.crl (hash: QAHAubhgvNlKFU1qTP3fP7QQHs1Bmise6L64YOx4+UI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:f8:13:c1:66:83:33:25:85:9f:0c:e1:a7:d2:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3827902eeca52a9f08140088f558e452e0ec955f
Validity
Not Before: Sep 7 10:00:44 2025 GMT
Not After : Sep 8 10:00:44 2025 GMT
Subject: CN=22abaea879ea622addc7e5f65d50ff1d335cb4a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5e:67:89:16:30:1e:59:2f:08:d2:b5:98:c2:
2d:0f:6b:7f:0e:bd:c3:85:a5:6b:29:7d:98:f8:d6:
23:cd:13:36:71:90:66:8a:0d:b3:d3:e6:fd:90:67:
b8:81:2b:4c:a7:6e:a1:a2:3b:5c:a1:e1:25:3e:ee:
36:e5:93:e2:69:3c:a8:3f:8e:11:8a:a0:f9:f4:ab:
0b:b6:88:35:d1:25:e2:33:47:b4:7b:10:b5:45:a8:
1d:be:68:df:3d:f5:11:6b:b2:42:e7:5e:bd:59:72:
82:6e:1b:5d:b3:ad:43:ae:16:a4:87:1f:87:f4:de:
69:90:6f:5f:51:38:03:bf:35:c2:29:82:a3:bf:eb:
c0:e0:af:5a:d2:ee:26:81:89:ee:a3:e1:c4:ce:e6:
6f:e4:5a:18:db:9d:48:3f:78:f7:59:22:5a:0f:b4:
9e:27:1e:04:a3:50:c9:45:2e:9c:2e:d8:ff:0b:46:
18:5c:f8:71:6f:e7:82:0a:75:2a:67:0e:44:4a:ef:
0e:32:07:49:8b:be:a2:d5:1e:8d:38:8b:c9:ed:0d:
d0:8e:96:9c:57:ed:67:c7:4b:e9:e6:4b:57:57:f8:
fb:84:00:c5:f8:80:ab:52:6f:37:62:d9:fb:8c:7c:
75:a8:93:7a:94:e7:12:91:c9:24:8c:91:d1:d2:02:
a8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:AB:AE:A8:79:EA:62:2A:DD:C7:E5:F6:5D:50:FF:1D:33:5C:B4:A6
X509v3 Authority Key Identifier:
keyid:38:27:90:2E:EC:A5:2A:9F:08:14:00:88:F5:58:E4:52:E0:EC:95:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCeQLuylKp8IFACI9VjkUuDslV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/19d13a-3ec6-4202-8d48-77db32647ca9/1/OCeQLuylKp8IFACI9VjkUuDslV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:bd:d9:a7:3a:f7:bd:dd:24:01:3c:5c:29:a8:31:96:4e:4f:
a9:80:fd:9e:3a:85:a9:7e:63:9c:c6:44:fa:8a:90:df:13:d9:
b5:0a:6d:82:c2:46:bf:ee:d2:b7:97:27:92:7c:6a:ec:8b:e8:
df:64:4a:37:cf:4e:59:84:92:57:c1:5b:8b:0e:81:66:51:1e:
74:5b:d5:bf:63:81:01:45:73:55:10:34:96:e1:ab:67:f3:3e:
c7:89:d1:3c:c3:8e:60:9c:c1:1e:0f:66:72:95:dd:b1:ee:cb:
5f:47:db:43:be:26:2c:b6:91:c2:18:8a:45:62:ab:b7:a9:d7:
1c:8c:83:9e:8d:63:59:f4:d5:b4:19:46:b9:63:87:26:15:93:
60:92:d1:d1:79:e2:13:03:f8:2a:3b:86:f1:06:b8:1b:4b:7e:
8d:8c:3d:5c:63:3b:bf:51:01:5b:89:f2:8b:d1:7a:7d:54:11:
a7:32:1d:a8:61:98:2d:3b:da:2a:ce:6a:f7:9a:3a:36:a6:82:
2a:fe:c2:a0:ad:2c:43:36:1f:11:ff:3d:f6:51:03:1b:54:2f:
f6:bd:f1:54:ef:ae:da:cf:3a:d3:be:32:ba:04:6e:30:04:6e:
bd:c1:ea:06:12:bd:0e:f7:10:ad:17:e4:17:85:01:ed:bb:f4:
a7:c4:ec:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:23 2025 by rpki-client