Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: Br/Rt9hnqlKkn2D8mDLrJxigi8wyQ35TiZyaunszUBQ=
Subject key identifier: 0B:CF:56:81:65:0C:75:90:04:DE:2C:0C:C5:D1:ED:4E:4B:6E:22:92
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 01992FD9D3F0A862F87C11B617ABB4BFB7D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0F3C
Signing time: Tue 09 Sep 2025 19:00:28 +0000
Manifest this update: Tue 09 Sep 2025 19:00:28 +0000
Manifest next update: Wed 10 Sep 2025 19:00:28 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: jKSL7q1ZYkJSrRQVlHb6CLx7aN/vtNKP8vx+VbnRAAA=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:d9:d3:f0:a8:62:f8:7c:11:b6:17:ab:b4:bf:b7:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Sep 9 19:00:28 2025 GMT
Not After : Sep 10 19:00:28 2025 GMT
Subject: CN=0bcf5681650c759004de2c0cc5d1ed4e4b6e2292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:16:48:b4:04:3a:5a:28:67:de:dd:19:35:8e:
e6:62:28:e2:fe:83:ae:4d:ce:1a:8b:5b:1d:95:97:
16:49:9d:11:51:4b:7c:b0:03:4d:d5:f4:90:03:14:
f4:2b:0c:8e:44:09:90:b3:ff:1d:9f:f2:7a:25:98:
1c:94:f8:13:5b:ee:9e:84:5e:45:d5:8c:96:13:d8:
62:37:3b:af:de:b2:ec:f3:d2:9e:4c:9f:b6:74:96:
27:fb:d8:b5:56:f3:23:59:06:f6:fa:94:e2:2c:87:
99:e7:9f:94:e8:1b:98:ad:7d:f3:42:ea:89:3c:1a:
d0:0b:a2:bb:41:d2:95:c4:2a:b2:2b:90:b5:fb:44:
1a:9e:ed:9b:a6:6b:a4:e7:27:b0:8f:27:45:31:0a:
6b:e6:b0:fb:ff:ed:d5:0e:c2:f1:41:dd:cd:d2:e8:
9c:9f:80:61:dd:97:01:90:9c:d7:1d:39:95:93:18:
4d:5d:d7:20:43:70:38:3a:49:b5:0a:5b:76:41:ed:
45:2a:e1:37:1a:d6:7d:6b:09:90:1f:2c:fe:2d:17:
c3:4d:d7:dc:1e:14:46:68:31:25:34:c6:43:ce:d8:
25:d2:b5:b2:5a:f9:f7:96:8a:d2:a2:b0:2a:17:41:
cf:41:15:16:2f:93:02:7f:a2:77:52:cf:37:29:0a:
59:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CF:56:81:65:0C:75:90:04:DE:2C:0C:C5:D1:ED:4E:4B:6E:22:92
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:55:7c:da:9d:48:ff:26:7b:4a:2a:e4:93:3b:19:4a:0a:c6:
69:f7:4b:8d:3d:8f:4c:fa:1c:ae:5c:02:5c:5c:23:18:21:dd:
f1:ee:a5:55:3b:90:e8:7f:51:81:4e:51:f9:59:ed:86:45:38:
b2:c7:68:12:c8:d1:7e:3a:88:be:75:5a:5f:a1:94:bb:c2:12:
2b:9a:4e:f1:2b:89:65:3a:18:1e:ef:20:16:74:21:60:d6:c3:
87:51:ae:6e:df:fc:7b:da:1d:aa:55:a6:24:8f:7f:94:24:85:
e3:f0:4c:ff:ed:ef:ad:15:62:6b:37:df:6a:bd:2f:a1:19:6f:
cb:01:2b:5b:85:3f:52:c6:d0:a3:2c:f7:11:c2:6b:14:b8:7a:
3a:a0:a1:6d:24:09:75:9e:b8:7d:ab:c7:fe:49:c5:6f:c2:ee:
a3:25:ac:71:44:eb:c2:d7:76:1f:a0:80:40:f3:07:c1:a6:ee:
c8:56:b6:59:ee:90:36:04:df:8f:cf:76:ae:74:d7:1b:05:e9:
44:68:b5:d7:09:40:9d:7f:48:91:94:08:35:ca:d4:bb:e6:fc:
b1:b9:3e:19:ce:45:86:4e:58:ea:f8:13:e3:44:ca:78:ff:8a:
f8:f3:a4:a8:b5:d0:40:4a:6e:f4:0a:55:0e:48:d9:75:c9:42:
2b:5c:de:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 00:28:56 2025 by rpki-client