Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: 7ojJqOjjRtdLsRR73AwUXWIhxD35HNEbwNWZrpwPmAY=
Subject key identifier: 64:A9:7A:D8:58:DA:04:D2:B8:04:1E:BE:8A:E3:7F:A6:4C:52:4C:58
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019923D5C95990F4929D7EDF52EF2546A94E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0E86
Signing time: Sun 07 Sep 2025 11:00:37 +0000
Manifest this update: Sun 07 Sep 2025 11:00:37 +0000
Manifest next update: Mon 08 Sep 2025 11:00:37 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: 696in1X7vMS+22be5c0VPZ5l+EQS7j3u8YaKLAM/xNk=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:c9:59:90:f4:92:9d:7e:df:52:ef:25:46:a9:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Sep 7 11:00:37 2025 GMT
Not After : Sep 8 11:00:37 2025 GMT
Subject: CN=64a97ad858da04d2b8041ebe8ae37fa64c524c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:18:e1:b5:67:a6:f6:74:05:93:2d:f3:6f:33:
a0:e3:e0:c8:38:00:61:fd:c3:ef:9d:64:ca:77:5f:
4a:15:af:56:c5:7e:8d:02:2f:3c:bf:4e:e1:0c:8d:
ba:fc:63:5d:0d:f0:ef:54:c5:17:be:86:bf:7a:54:
53:82:5b:70:26:34:3f:d8:dd:53:fe:a7:1c:fa:5d:
66:f1:42:9d:95:37:60:2f:67:15:e3:0c:0e:16:d8:
98:94:81:93:a9:46:20:46:cc:72:c1:0d:62:14:09:
f2:2a:b9:84:0c:94:27:15:b7:16:52:a5:3c:e0:4b:
59:65:25:23:68:38:63:a2:71:2f:87:1a:0e:cc:46:
14:cb:58:96:6a:08:fb:57:45:b8:f1:2c:33:c3:db:
c3:3c:89:80:03:76:d6:dd:f1:f5:b0:a5:d8:73:da:
39:eb:a9:79:2b:b4:7b:3c:66:d0:4b:11:f5:56:b8:
73:da:5a:80:c3:b2:33:3c:aa:ef:33:f2:21:6a:d4:
46:bd:f3:e9:a0:53:2b:f6:a2:2f:99:11:0a:69:23:
53:4f:85:80:9b:f9:ab:18:e4:3b:f8:f7:b1:14:f2:
50:fc:64:ec:1b:ac:6d:ae:7c:da:11:94:20:ee:cf:
14:a4:54:3f:f9:ca:a7:90:fb:49:7b:51:24:fc:13:
31:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A9:7A:D8:58:DA:04:D2:B8:04:1E:BE:8A:E3:7F:A6:4C:52:4C:58
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:67:72:2a:e1:0b:22:e6:c1:02:fd:db:fc:54:5e:5e:0d:22:
c5:57:29:3d:57:21:e7:c0:85:fe:95:da:76:8b:2f:13:59:86:
38:ca:44:51:ba:ee:9b:aa:11:d3:65:5e:79:37:83:bf:d1:75:
85:0e:ed:57:78:b2:9f:b3:04:88:e2:94:55:e6:6f:d9:56:21:
fe:0a:76:6f:43:e6:ba:07:96:ee:91:ec:7d:de:23:9a:a6:7b:
3c:78:ba:24:82:02:45:c0:20:e6:80:b9:c3:a9:12:8b:44:c9:
bc:9f:a0:f3:ef:c1:e9:62:df:8e:0d:b5:aa:15:e6:c7:c8:78:
45:55:cc:fc:25:55:42:6b:99:ea:d4:24:0b:08:72:01:70:e3:
7e:19:78:36:54:4d:23:13:02:40:36:82:13:ac:1d:65:72:6f:
9d:8c:97:1b:f4:9c:00:1e:cc:51:f4:0a:10:0f:88:ab:40:75:
56:f6:a1:17:ec:70:56:5e:5d:74:4e:5f:ac:be:7e:04:54:2d:
96:83:34:46:6e:1a:94:e4:93:a2:5d:ac:21:73:24:c9:83:75:
90:2b:5b:fa:12:42:f1:5e:18:29:26:cd:bd:4d:56:06:3b:1f:
32:15:bc:82:e5:8c:46:fe:84:f1:4f:2a:c6:46:10:49:70:38:
61:88:34:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:50 2025 by rpki-client