Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: fyaBGvSSbH+s5PigI5/gcuHISWOYE40zl8gfcFi4wHE=
Subject key identifier: 37:F8:DE:2B:EA:AF:49:9B:FD:1B:C7:FB:09:A2:96:11:C8:DC:C2:7E
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 01992CD8BBF918F400B12112629A8C847FA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 0A76
Signing time: Tue 09 Sep 2025 05:00:25 +0000
Manifest this update: Tue 09 Sep 2025 05:00:25 +0000
Manifest next update: Wed 10 Sep 2025 05:00:25 +0000
Files and hashes: 1: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: Ld2u2jvasrw3PYYazEI0l6GZEzEFqh1M2kKCx1Xj8H4=)
2: bEP6BpgWEwuDr5XbU9fjHciv2p8.roa (hash: HB6oz88QvFlDq+Znta3S+P5pPZ539cdh6eC3HVLovgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d8:bb:f9:18:f4:00:b1:21:12:62:9a:8c:84:7f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Sep 9 05:00:25 2025 GMT
Not After : Sep 10 05:00:25 2025 GMT
Subject: CN=37f8de2beaaf499bfd1bc7fb09a29611c8dcc27e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:26:4b:67:8f:04:fd:a9:c5:4c:5c:49:67:ef:
7a:82:4a:09:a9:d2:8f:7f:47:d1:25:78:b7:21:33:
7e:a8:e0:2d:f0:94:f4:37:12:16:dc:a6:31:fa:4e:
0c:02:6a:ce:1e:7e:a5:14:83:5f:94:f7:e2:12:53:
6c:cb:94:00:96:62:5e:cd:de:85:1c:97:79:4b:52:
c5:45:91:36:34:15:0b:cb:f2:b8:82:7d:7d:10:7d:
e8:1d:4f:e6:4b:3c:fb:a9:95:43:3f:2c:af:db:f2:
c2:7e:6b:e8:bb:46:81:f6:ec:46:66:76:53:11:93:
e6:07:e9:3b:29:ec:c8:5d:65:4a:76:f2:07:66:f8:
f4:cf:96:67:ad:40:93:7f:86:6b:46:62:ed:a8:8f:
79:0c:83:7a:b5:1c:d9:ae:14:04:c6:63:07:2a:67:
04:a1:53:bf:fb:45:b6:66:0a:a1:f1:21:48:44:dc:
aa:87:93:8a:7b:27:41:a9:81:91:1c:56:9e:30:ea:
6e:83:45:64:ab:b9:74:d4:4f:6d:c6:32:2c:6a:8f:
9e:59:14:5c:8c:80:24:ae:fa:86:ca:7b:5f:84:f8:
e7:cf:d9:71:84:a0:d0:2d:24:2e:fc:8f:25:ea:00:
fd:8a:0b:1a:5c:a5:42:c5:3f:5e:57:48:c8:0d:f8:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F8:DE:2B:EA:AF:49:9B:FD:1B:C7:FB:09:A2:96:11:C8:DC:C2:7E
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:42:96:ea:f4:33:78:c2:09:72:61:69:a6:33:c8:b7:f2:4a:
b0:b8:24:90:a1:b9:a2:29:b0:1f:c8:37:67:4b:30:5b:89:28:
63:47:3a:3a:61:c1:4c:17:07:81:2d:ab:bf:0f:7e:fb:f3:78:
ac:5b:c1:0c:78:08:b4:9a:ea:87:ce:42:f8:52:14:f7:08:65:
b0:e7:8a:2c:93:15:9e:58:c3:01:ef:34:4d:1a:ce:1c:c0:84:
a3:ba:ca:5f:0f:85:6a:28:8f:fa:4d:94:ea:b3:dc:e9:7e:d3:
fa:af:f7:dc:7a:ba:a5:a3:02:b4:ac:ed:47:dd:e7:32:8e:1f:
d1:fb:98:4f:17:b4:31:6e:a5:1e:c8:cd:63:bf:e0:cb:92:0a:
22:b6:45:ea:a0:2d:6a:12:91:e3:4b:6e:11:01:42:3c:b2:19:
62:82:e3:42:d1:f6:aa:46:94:c1:50:98:49:40:15:b0:21:2e:
d9:b1:bf:3d:d0:41:54:f0:11:50:cd:ea:4d:de:0d:5a:29:e2:
a1:84:6c:85:a3:4f:2b:ff:64:e5:fd:84:92:f5:1c:2f:7e:f1:
2d:c5:18:84:29:77:f6:dc:2c:3a:8a:65:5b:bf:66:18:d5:0f:
ca:f9:87:16:77:3e:17:d0:91:e5:27:b9:c3:7c:86:10:b8:55:
c6:07:63:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 14:04:47 2025 by rpki-client