Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: GGyhA+lQxISfA48Vgsf+ISv1AsQzQWBzoDKBhNrqS1U=
Subject key identifier: B3:E4:29:3F:84:D3:4C:11:49:CA:11:B6:A0:6E:B9:4C:61:91:2C:9A
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 0199239F05A42B550EE3657702592F4ACC9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 0BBC
Signing time: Sun 07 Sep 2025 10:00:48 +0000
Manifest this update: Sun 07 Sep 2025 10:00:48 +0000
Manifest next update: Mon 08 Sep 2025 10:00:48 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: 6WCGmSlg6JTbehsr8apVbM8dq7WRVyt5zM6CjRZGbBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:05:a4:2b:55:0e:e3:65:77:02:59:2f:4a:cc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Sep 7 10:00:48 2025 GMT
Not After : Sep 8 10:00:48 2025 GMT
Subject: CN=b3e4293f84d34c1149ca11b6a06eb94c61912c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:58:6c:75:b4:9a:55:5b:90:4b:19:39:77:28:
cb:a1:59:5a:30:29:0b:ae:79:fe:98:9e:95:2d:a2:
a9:bc:23:60:08:f9:01:af:cd:4a:36:65:e4:02:b3:
7e:f2:dc:65:11:b5:7a:e2:32:87:9e:b4:dc:1e:33:
56:7d:7c:28:7f:cb:1c:0b:c5:2f:ac:07:77:32:6a:
95:17:c6:3d:5c:95:99:be:19:c1:4a:14:cb:e3:10:
96:6e:16:dc:83:5c:0c:45:87:b9:7a:92:56:d5:a5:
e6:58:76:03:36:e3:e8:e5:59:16:76:2f:db:7f:10:
89:64:e5:eb:5e:b0:7a:d3:02:eb:62:16:d7:22:db:
39:dd:ab:47:04:d6:41:26:45:3f:62:fa:9e:16:cf:
10:41:98:42:48:f9:28:a4:e9:2c:89:c7:e5:ba:4e:
9b:74:e0:ca:dc:e7:2f:35:df:37:ce:2c:39:18:9e:
f5:fe:d5:8e:9b:90:d0:6e:c4:06:04:80:65:6d:6b:
c4:53:58:fb:02:5e:04:12:57:df:8f:46:6c:a9:23:
d3:60:b9:28:c3:87:a1:fb:73:20:b7:9f:98:80:cb:
54:1d:66:35:0c:22:12:66:24:de:c3:a0:36:b1:bb:
58:da:35:15:7d:c9:dd:64:e3:7c:67:e5:e5:29:9d:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E4:29:3F:84:D3:4C:11:49:CA:11:B6:A0:6E:B9:4C:61:91:2C:9A
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:61:8d:9a:3e:24:f8:a8:73:6f:0f:f0:5a:24:7a:cc:a9:b2:
df:46:48:1c:ca:18:e8:41:e8:6b:32:d0:d5:d3:45:47:a0:ce:
84:c1:aa:b5:99:b5:7f:27:cf:76:dd:ca:0c:be:38:d4:2b:e3:
72:fe:e0:ea:21:4d:34:7a:f0:4f:96:c0:94:a4:c8:ef:fb:a3:
18:80:c7:3c:09:67:e4:cb:c0:2d:a9:f3:9e:b2:da:1d:d1:51:
74:51:01:14:60:98:ca:f5:73:0f:3b:05:78:67:18:eb:a0:13:
08:1f:74:e3:ba:83:67:8c:91:10:03:e6:1f:4e:8d:68:d3:46:
00:c1:a8:f6:3c:f9:20:e5:24:aa:c0:36:a6:b0:67:eb:e7:65:
9c:db:2d:79:f8:9c:d5:a3:b0:99:d0:8e:d1:38:ed:de:61:df:
7c:07:39:59:9f:0d:bc:04:aa:e0:19:5a:ab:39:92:d9:6f:ef:
ae:09:7e:cb:bd:10:b0:f4:d1:6a:b1:db:a1:bb:bf:49:fe:82:
74:97:94:c1:f8:1d:00:b7:0f:8c:73:4d:62:d9:e7:2c:e2:0b:
b6:b4:58:c5:5a:0f:8a:c7:f6:19:5e:89:ce:5a:21:fa:99:81:
f2:53:e1:d6:18:9a:39:bc:54:c8:05:de:42:04:d2:f8:8b:4d:
5f:fd:c2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:38:42 2025 by rpki-client