Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: T4G4gxx/upgm0/ONrFIrzkhdP0Lugd3m1+aI6WvTtlI=
Subject key identifier: E6:9C:2F:6C:58:80:35:EA:7D:B2:A0:A3:B1:5B:15:6F:FE:D9:93:01
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 019A1E3F28852EB9840628E11D189F002D24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 0AF3
Signing time: Sun 26 Oct 2025 02:00:46 +0000
Manifest this update: Sun 26 Oct 2025 02:00:46 +0000
Manifest next update: Mon 27 Oct 2025 02:00:46 +0000
Files and hashes: 1: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: CQbXCT2rMX5I73U31wmUrtxZqiVMWxXsVLZDxAsxOvI=)
2: bEP6BpgWEwuDr5XbU9fjHciv2p8.roa (hash: HB6oz88QvFlDq+Znta3S+P5pPZ539cdh6eC3HVLovgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:3f:28:85:2e:b9:84:06:28:e1:1d:18:9f:00:2d:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Oct 26 02:00:46 2025 GMT
Not After : Oct 27 02:00:46 2025 GMT
Subject: CN=e69c2f6c588035ea7db2a0a3b15b156ffed99301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:b0:78:c5:4a:bd:6a:a9:50:37:ab:25:9c:
f0:23:fc:45:80:9b:db:30:a4:5d:88:fa:b0:b8:a0:
36:1c:b8:1e:7e:cf:60:76:a5:97:91:45:c5:14:da:
84:fe:50:7b:86:79:77:c0:cc:40:09:6a:5c:fe:26:
3a:0f:08:e3:17:7d:69:2a:4d:2d:30:e1:b0:10:52:
78:81:af:29:43:4c:f5:e5:e6:e8:a4:28:45:59:53:
4a:4f:09:10:9f:be:ca:6d:6f:d7:20:30:2a:9e:c4:
bb:8d:b4:80:f4:ef:fd:41:24:f6:be:42:98:3c:9f:
8b:b8:e6:b0:a8:d0:8b:c5:13:1f:59:ff:06:e3:41:
94:a8:6a:12:a5:3e:0f:b9:4b:21:f8:b3:46:16:45:
ab:75:b4:0d:91:e1:70:e8:cd:60:89:ef:1b:3e:de:
e2:c9:05:eb:ef:a8:6b:a5:95:de:21:1e:13:5e:d4:
f2:dc:d7:2b:3f:a6:c8:66:0f:c7:b3:75:4c:0a:d9:
1c:58:df:3b:c2:cc:3a:7a:f3:35:3c:89:f2:8a:e7:
c3:ab:1d:0b:81:87:fb:5d:28:a0:ee:96:fe:73:bf:
a7:30:90:6d:96:db:01:32:58:27:36:bb:40:27:1a:
2d:df:08:eb:0b:ad:5d:c9:fe:be:e9:bf:d5:ba:f8:
f9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:9C:2F:6C:58:80:35:EA:7D:B2:A0:A3:B1:5B:15:6F:FE:D9:93:01
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:1a:8e:f2:5e:0d:57:35:17:a3:38:6c:c4:4d:ff:f9:8b:02:
f1:2e:a2:aa:07:1d:f9:93:c4:13:fe:76:e2:eb:b0:16:e5:2c:
ea:ea:02:c1:c7:96:e4:1c:fd:72:89:62:25:49:b6:ec:ec:99:
3e:3d:be:eb:b9:b9:15:4e:c2:04:d8:81:c0:f6:55:4f:34:ec:
fe:d9:69:e8:6e:87:54:1d:c3:b2:95:f0:bc:29:c6:91:c6:a3:
e0:c4:b2:db:5b:98:7d:af:fb:e4:32:72:e3:6f:ef:2f:b9:1f:
b6:64:9a:56:a9:37:e0:67:cb:43:2b:6e:64:62:93:92:0a:ac:
98:cf:3b:0a:21:9a:9e:82:90:7f:3b:d6:7e:1f:4a:ff:1c:4d:
1d:ea:29:56:8b:99:48:d2:86:16:ab:d8:3a:f8:78:e0:70:d6:
b7:81:7f:7f:9e:6e:79:b1:53:0c:d7:2f:86:23:4e:2e:83:42:
d2:61:41:84:48:87:5d:05:40:2a:90:da:69:e1:bb:78:b1:b3:
b7:04:db:a7:e1:39:d0:19:01:d2:72:11:89:13:44:19:0c:81:
00:db:9b:25:2a:cb:16:8e:1d:28:c1:45:84:c4:a8:b6:6d:85:
fb:fc:5f:ea:2e:9f:84:c3:37:bb:ad:b2:e2:80:55:b2:f7:9e:
15:32:00:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 03:18:46 2025 by rpki-client