Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
File: OuUFv8f9kXaGscizohj1UI9aNwo.mft (raw, json)
Hash identifier: EfDOrId2CFK406hecoqEDff5eauF9Z9lz6p2xYi0i14=
Subject key identifier: EB:CA:62:A6:F1:4D:1A:52:A1:A6:DA:4D:A9:1F:D7:80:19:ED:57:C3
Authority key identifier: 3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
Certificate issuer: /CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Certificate serial: 0199FFFEB8665BE020E812E26CDA688D8845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
Manifest number: 0334
Signing time: Mon 20 Oct 2025 05:01:47 +0000
Manifest this update: Mon 20 Oct 2025 05:01:47 +0000
Manifest next update: Tue 21 Oct 2025 05:01:47 +0000
Files and hashes: 1: OuUFv8f9kXaGscizohj1UI9aNwo.crl (hash: LGOqcOnrbfENPYT4hhwXJQ/1I1CgXPMxdk5c+uvgl2Q=)
2: lhV68OSkur6ZsAA_2dy8-L_4IL0.roa (hash: BvvVh8/fqP1HPi1uOxwh0N4UEkoJk2nM455CRrFSNec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:b8:66:5b:e0:20:e8:12:e2:6c:da:68:8d:88:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Validity
Not Before: Oct 20 05:01:47 2025 GMT
Not After : Oct 21 05:01:47 2025 GMT
Subject: CN=ebca62a6f14d1a52a1a6da4da91fd78019ed57c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2b:8e:98:50:6e:da:54:01:1d:5c:24:16:d9:
7c:65:1f:90:cc:34:70:91:05:1b:d8:22:64:f2:27:
39:54:2a:47:ab:70:14:3e:eb:80:1f:1f:74:aa:a5:
4a:b9:7c:2f:19:ce:f2:f4:c6:b0:9e:3e:35:7b:47:
3e:f4:27:88:6e:6b:ce:65:d2:1f:74:dd:6f:30:3f:
c7:cd:98:6a:e9:db:3d:dc:e5:d4:e9:bd:57:74:36:
d8:ed:77:35:5e:b1:1a:ba:45:ec:00:18:8f:9c:2c:
08:56:7a:68:9b:ea:be:74:92:ab:20:3e:5d:97:aa:
6e:27:80:dd:00:be:dd:64:6b:4f:dc:65:a5:1e:c4:
34:7b:ae:4e:9c:83:1a:68:d0:61:fe:7a:04:d8:5a:
7b:65:8a:46:61:4f:4d:0c:64:b1:9b:12:71:96:87:
b8:28:7c:ed:f6:73:dd:1d:65:88:e9:2f:f1:a1:1c:
56:60:fc:56:b6:f4:55:06:84:8b:f0:5d:6a:f4:70:
77:7a:ca:6c:a0:c7:76:c6:a2:30:3a:43:55:63:9f:
81:19:16:4f:77:c6:54:57:01:e4:4e:cd:1f:ae:50:
4a:df:3c:48:b7:9e:2b:14:aa:45:29:73:b9:6e:1c:
df:3e:11:fa:64:bb:12:da:7a:a3:fd:2b:d7:a9:d9:
4b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CA:62:A6:F1:4D:1A:52:A1:A6:DA:4D:A9:1F:D7:80:19:ED:57:C3
X509v3 Authority Key Identifier:
keyid:3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:21:64:65:1d:1f:e0:1c:1b:27:23:3b:39:42:e4:c4:0d:63:
ae:4f:d5:81:e8:dd:06:82:5f:c9:e7:81:96:be:92:6c:4f:c8:
a9:6f:ff:e6:fb:dd:f1:7f:7a:d5:74:a9:85:19:29:8b:6f:11:
31:9b:3d:ec:6a:40:a2:44:d5:60:60:8a:8c:d3:e1:0b:7f:ef:
37:4a:51:ff:d3:bd:9e:78:e5:29:52:cc:5f:c5:89:30:42:73:
7a:c1:78:8a:50:d5:ff:d9:75:ec:59:9c:bc:4e:e9:b5:60:27:
a8:e5:dd:1f:4d:e8:b8:ad:0d:2e:1d:4c:ed:4e:83:14:76:f4:
90:b4:0c:28:5e:5a:01:55:ef:b3:12:f5:01:89:30:37:4b:0f:
a5:86:10:6a:07:77:79:81:f5:3c:a0:1d:b1:d7:3c:e3:9a:63:
ff:31:17:5c:7a:f4:70:48:cc:5b:d0:58:e0:fd:31:94:ae:56:
1d:7d:4c:e4:f9:00:4d:62:ef:f1:46:46:2d:a3:4f:c7:10:b8:
f9:87:05:4e:de:5b:07:9f:ef:cb:82:fb:76:1a:51:e2:35:b9:
dc:15:ae:7f:7d:d9:00:31:19:a1:f7:fc:d7:a4:49:00:63:d0:
00:ef:46:c6:c2:cf:bf:cf:64:f3:3b:32:94:cc:3f:81:13:23:
d0:9a:fd:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:47:38 2025 by rpki-client