Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: 5LIZofkUyggvLCc92WVrdyewvwQo7LwT+sL0Zx0iS18=
Subject key identifier: B3:70:9A:13:BB:C7:2F:13:97:0A:F3:F6:58:7E:20:B0:7E:B3:60:7B
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 0199240CDA57A157C287A2E08BB0A49188A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 10D9
Signing time: Sun 07 Sep 2025 12:00:46 +0000
Manifest this update: Sun 07 Sep 2025 12:00:46 +0000
Manifest next update: Mon 08 Sep 2025 12:00:46 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: lkzHxX7E4nCfmmG+rcVMCzs1q6py8akTQxm/nmc9ohc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:da:57:a1:57:c2:87:a2:e0:8b:b0:a4:91:88:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Sep 7 12:00:46 2025 GMT
Not After : Sep 8 12:00:46 2025 GMT
Subject: CN=b3709a13bbc72f13970af3f6587e20b07eb3607b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:19:57:dc:2f:f9:1d:bc:37:a3:44:c3:74:
d5:25:c3:a3:5a:27:f1:f0:59:e8:84:af:99:2f:32:
26:5b:37:64:ab:a5:70:62:d6:fc:be:b9:54:a5:82:
d2:ce:e1:71:ea:a8:56:47:a9:f9:32:5e:4a:32:5a:
fe:b1:aa:2f:2d:80:6a:23:78:9c:03:b8:40:a5:31:
5a:83:ff:c4:b5:80:ac:ea:fa:03:83:b6:6b:19:3f:
c3:e2:92:d0:36:00:95:25:0b:f9:5e:b4:c4:88:8d:
23:84:28:36:04:ef:09:de:79:e2:d3:c4:30:86:54:
bd:49:9e:5e:6e:69:9d:4e:46:ec:c4:d5:80:06:95:
23:b7:61:7b:8c:12:01:db:c1:e9:86:70:e8:1b:da:
29:89:58:c9:cf:98:4b:9f:4c:c1:d0:21:fd:0c:60:
49:6a:cd:10:41:a4:77:70:e1:de:a6:ba:2e:29:d1:
f2:1e:03:7a:50:ba:07:59:67:bb:a3:2a:ba:74:bb:
02:ed:51:06:45:2f:bd:41:20:3a:db:07:59:0a:df:
67:b1:8e:66:23:92:31:9d:5e:e1:d2:68:07:43:74:
71:08:46:89:1e:b3:84:74:6a:37:c1:9b:fc:64:74:
0a:01:21:ae:2b:67:01:e1:bc:c5:19:04:4e:de:4a:
ce:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:70:9A:13:BB:C7:2F:13:97:0A:F3:F6:58:7E:20:B0:7E:B3:60:7B
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:40:4b:d6:dc:ba:c5:b7:3f:21:21:87:87:e6:4d:d6:8f:62:
7b:88:75:21:c6:cb:04:67:f8:ab:1d:de:3a:94:4e:35:14:34:
d1:e8:7c:7b:2d:64:59:1c:ea:f8:57:b1:de:72:4f:48:b0:63:
31:2f:58:84:01:51:9d:44:b6:d4:1a:bf:a1:7f:66:06:8a:18:
69:ae:e1:d4:cd:d7:ba:da:3d:4e:39:48:62:86:49:c2:41:d2:
4e:0f:bd:51:ac:55:cb:c6:ce:b0:74:7f:1c:7a:95:04:a9:73:
d4:10:fc:0b:f6:2f:34:c7:a2:98:7a:b7:89:c9:61:8f:88:30:
e1:e0:18:f0:11:e0:07:1e:9b:1d:9b:79:9d:fa:57:cf:a4:4e:
30:d3:7e:f4:fd:79:8f:7d:a6:05:aa:02:5e:18:7f:a7:41:2b:
08:79:08:cc:32:59:66:ae:68:7a:e7:ab:e2:8b:12:43:38:57:
af:ec:5f:8e:8a:2e:ed:ef:36:01:67:a7:8a:55:15:50:cb:ef:
e5:82:1a:32:66:c3:95:1d:f1:cf:68:94:02:b4:6c:b3:ad:51:
ba:c0:b4:5e:86:29:f6:3b:bf:1a:a4:a6:57:df:f4:69:b1:07:
95:6d:70:7c:19:1e:f3:18:bc:7e:3a:57:82:89:fd:5a:bd:f6:
aa:5f:e1:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:16 2025 by rpki-client