Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: Uvv61bXRn019F8YX7XSZtvmxgR7i+lVzD0BirdN0y8E=
Subject key identifier: A4:85:1D:D2:77:14:58:05:6F:F7:5D:EF:42:A1:BD:71:66:74:63:0D
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019A1B74AFE220E1E09F081AC00D16468664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0FB6
Signing time: Sat 25 Oct 2025 13:00:23 +0000
Manifest this update: Sat 25 Oct 2025 13:00:23 +0000
Manifest next update: Sun 26 Oct 2025 13:00:23 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: NHK4FhiEj4J4TNhVmJCjssPfE475AVJsy/Nyfu5SCgE=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 13:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:74:af:e2:20:e1:e0:9f:08:1a:c0:0d:16:46:86:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Oct 25 13:00:23 2025 GMT
Not After : Oct 26 13:00:23 2025 GMT
Subject: CN=a4851dd2771458056ff75def42a1bd716674630d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:da:d9:09:6d:a7:54:f3:20:cb:81:41:2f:15:
68:8b:2e:e3:1f:9f:b2:f2:d1:55:89:d6:ee:52:ec:
67:eb:63:b9:18:ac:d3:b5:af:fe:4e:9b:36:58:7c:
9d:95:63:31:b3:1d:44:ed:ee:06:44:c3:0f:2c:0a:
b4:a9:42:aa:a1:93:db:51:1e:8a:17:53:33:7c:11:
4a:a7:b6:90:6a:3a:71:f5:3c:7f:39:14:64:3a:74:
9f:ac:3e:ca:72:66:84:96:b5:5b:8a:59:22:52:16:
59:1d:33:fc:3d:31:24:6f:02:60:dc:5c:34:50:a9:
64:3d:fb:a4:bc:d8:50:78:17:b7:c2:b6:1e:2e:95:
9a:be:ce:ba:85:cf:13:98:80:eb:b7:90:fe:b9:af:
d3:bc:2b:63:41:70:3a:dc:35:4d:5c:96:25:f7:c6:
bc:67:42:db:76:98:e3:d9:93:ac:70:14:3e:e3:e7:
fb:3c:69:28:13:c0:ae:a4:66:e1:a3:94:03:5f:25:
24:3c:98:57:a1:f1:97:ef:8c:cc:ee:30:2c:b6:8f:
21:e7:04:7c:dc:ed:1a:b6:45:a6:7a:21:13:e9:d5:
0e:8c:6a:77:61:ad:7c:cd:1d:ff:ba:04:8c:e3:9a:
db:6d:d0:95:0e:0e:ba:c0:26:63:ca:55:51:e0:99:
b1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:85:1D:D2:77:14:58:05:6F:F7:5D:EF:42:A1:BD:71:66:74:63:0D
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:7b:4c:3a:b1:09:f3:93:4a:ca:49:10:1e:15:ea:e0:45:c1:
af:ae:05:17:bc:a8:43:bb:4b:63:4f:35:16:ec:97:05:f1:fd:
56:28:f6:f6:23:47:9b:cd:64:b7:2c:21:1f:3b:82:44:3b:61:
6d:79:b4:4d:84:97:2c:5b:96:fe:60:00:13:e8:15:09:d1:f5:
f4:ca:ef:61:7d:18:63:52:56:f0:f7:d3:3c:62:c1:38:3f:e7:
f9:ae:ba:c4:bd:3c:e6:46:e6:9c:1a:4b:2e:83:5e:93:9c:d1:
c8:c4:94:ec:e9:1a:cf:db:e6:f5:0c:78:64:c3:6a:cc:74:4a:
6f:07:ba:b0:7f:87:29:56:f1:07:43:a4:93:0a:1a:b5:8d:9f:
7f:c7:6f:ee:8e:3c:5b:75:d9:ae:eb:a5:d9:e7:83:aa:93:13:
7a:00:22:6c:60:df:b7:dc:57:e6:ac:9b:35:1c:53:f7:9a:ce:
d4:73:f5:ce:ba:78:73:e6:88:8b:01:65:b9:8a:fa:13:4a:be:
29:d9:ad:bf:1e:44:48:6e:db:9f:1d:34:72:36:75:c3:31:9b:
7b:ee:f6:80:f3:2d:35:0c:93:2e:b8:95:c3:d8:ee:c8:56:5a:
74:0e:11:1d:38:71:d8:33:34:e2:b0:8f:b2:7d:cf:e6:0f:25:
1e:39:4b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 21:50:48 2025 by rpki-client