Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: gxNVp8L/RuQFQ9VTy96aRZTS7pRnuS+v8KmblOxRcTg=
Subject key identifier: 2B:36:57:05:EC:5D:08:21:CC:54:77:06:C2:C4:C0:AD:9C:01:8C:EA
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019A232E263A071CEC8C399449022C26A687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 15DE
Signing time: Mon 27 Oct 2025 01:00:18 +0000
Manifest this update: Mon 27 Oct 2025 01:00:18 +0000
Manifest next update: Tue 28 Oct 2025 01:00:18 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: /n41ErEEaWsS2NccVDhk4ZIamNfK0GC4oIbHLcemR3c=)
2: VIlea1HGjGCn_MVKwJV926-pJjE.roa (hash: A01QP610OFwth+XnetlpJQSsjmOQSdq9hALxJi5jMPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:2e:26:3a:07:1c:ec:8c:39:94:49:02:2c:26:a6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Oct 27 01:00:18 2025 GMT
Not After : Oct 28 01:00:18 2025 GMT
Subject: CN=2b365705ec5d0821cc547706c2c4c0ad9c018cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:28:f9:7b:3b:ec:d0:70:ab:03:f7:2b:90:4b:
f2:bf:6b:ea:b3:48:9a:1b:87:d4:7a:ae:1f:f9:8e:
ed:d3:81:ce:4f:3a:16:2d:d0:a1:e8:b9:d5:a3:2c:
b7:73:58:1c:65:b1:ef:99:aa:75:6e:51:f3:92:a5:
b7:82:d1:d0:05:37:3e:28:90:97:76:5b:7a:9e:4b:
15:4e:fa:60:05:12:ee:11:46:bd:88:44:fb:d6:68:
36:01:3d:45:56:e0:2c:3c:d5:c6:de:ab:9e:ca:3e:
c3:f2:0d:eb:b6:30:bd:c6:7d:2c:c0:b1:10:45:01:
08:69:4b:c6:cc:0b:3a:d6:35:d9:db:e3:ce:39:cf:
5a:b5:71:d5:d8:e1:93:29:8a:27:88:d2:da:20:54:
2d:a4:53:cf:5c:81:0c:75:69:cc:53:6e:eb:bf:99:
1a:74:f1:0f:e8:30:e4:c4:9b:08:70:6e:11:9d:b4:
02:d5:8f:bc:f2:c2:46:b9:c4:60:79:75:50:bd:0d:
31:21:00:38:30:f8:15:2b:c5:a0:b7:a3:f3:4c:e7:
0f:4f:c6:31:b9:f5:41:d9:95:c4:6c:1a:b4:0d:bd:
93:72:bd:97:a7:80:42:59:0d:80:8a:37:c8:2c:fc:
6f:cf:37:ee:20:5c:6b:b7:6e:af:af:50:d1:04:11:
7e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:36:57:05:EC:5D:08:21:CC:54:77:06:C2:C4:C0:AD:9C:01:8C:EA
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d4:39:8f:68:93:38:7a:06:12:38:82:4c:1f:c2:e3:20:12:
94:6c:22:90:b7:f8:73:20:3e:23:ae:12:31:13:60:7e:a5:28:
65:95:d7:27:ea:12:5d:56:45:49:9d:2e:11:48:34:43:cb:87:
56:d0:15:2d:53:a2:64:51:93:0f:e4:46:f8:ca:2c:89:01:cb:
28:90:ca:6c:06:ba:30:a5:b9:dc:98:e5:69:a8:6c:35:2b:54:
ad:9a:ba:27:06:8a:a3:09:13:2d:9d:9f:12:ef:1e:94:f0:b8:
a3:92:83:53:25:5e:d9:6b:20:6d:27:f3:84:c2:2d:c6:1e:2f:
3d:7a:e1:e1:5b:2d:f6:e9:49:38:62:60:76:a1:4b:74:67:df:
c3:8a:4a:9d:49:4c:b9:58:ff:3b:6c:aa:5b:05:a1:4b:05:30:
b5:2b:bc:14:d4:8e:a5:8f:09:28:61:be:73:f5:d0:7f:20:76:
b1:d8:b9:1f:cc:4c:65:b4:ce:12:67:44:cc:91:f6:7a:b6:bb:
1b:8c:5e:84:02:37:44:f3:a5:65:d5:d9:d2:72:6f:7a:8c:af:
dc:03:c9:24:2c:79:c6:00:c4:8a:cc:7d:45:6d:20:e0:89:25:
82:e8:e1:6e:60:42:65:a8:a3:6d:64:6e:46:bc:f3:f1:35:47:
d7:a2:da:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 07:08:26 2025 by rpki-client