Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json)
Hash identifier: wIRvqyWY/NphroM9h+zmDSPMvw35HaOTYCNupRbH5WY=
Subject key identifier: A9:F5:BA:77:67:58:EC:61:06:72:5E:27:0F:C1:51:F2:DB:2A:35:36
Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Certificate serial: 019A0DEFF69814AF3FB06F0A5841B9A87906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
Manifest number: 033B
Signing time: Wed 22 Oct 2025 22:00:21 +0000
Manifest this update: Wed 22 Oct 2025 22:00:21 +0000
Manifest next update: Thu 23 Oct 2025 22:00:21 +0000
Files and hashes: 1: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: VcjAhj12lIfPICyQ7c7Jx9j8jmmItZlJCpw+wPq/33s=)
2: Xpmq2qI8X7GAALvPIhXOimJgH5Y.roa (hash: AgxExCu/sRjU92nC3fyyQWh5ZarDgbI5r/jd4t48QXE=)
3: qjyhGLzSjen3GpqWTeSFco9KSwQ.roa (hash: kp7IkbSOmQC+WxD6X5wnwhQy2Cc5wCQoIJuVSNYbr0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:ef:f6:98:14:af:3f:b0:6f:0a:58:41:b9:a8:79:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4
Validity
Not Before: Oct 22 22:00:21 2025 GMT
Not After : Oct 23 22:00:21 2025 GMT
Subject: CN=a9f5ba776758ec6106725e270fc151f2db2a3536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:60:fe:a2:95:5d:13:03:28:a9:89:e7:4a:30:
f6:9f:67:74:73:f5:5e:f6:ae:49:a7:9b:e4:c9:ec:
aa:aa:22:55:52:0a:2c:eb:72:d0:29:c9:7c:92:0d:
8c:61:46:5e:43:f6:6a:aa:95:23:17:4a:7c:86:e5:
c2:a8:5b:f8:74:58:05:b0:3f:35:c9:f2:63:2b:41:
d9:0e:b9:a2:31:41:e0:8c:ec:79:6e:b8:24:6e:38:
4c:97:75:07:b8:44:e9:cb:76:36:74:3b:20:4e:21:
73:19:44:70:2c:20:c9:96:d4:31:83:c0:fe:d2:72:
cb:d6:48:50:07:b8:49:d0:47:82:aa:73:9a:7f:d7:
00:de:53:d0:be:e5:4b:5a:d8:43:bd:89:48:50:c9:
f9:1f:c9:e8:d0:a1:67:91:d0:17:ae:f5:99:91:f1:
1b:79:64:3b:02:f4:bc:94:47:ae:c0:bb:ab:a4:41:
4f:c1:dd:4b:3b:5a:92:c5:d1:7c:40:11:9c:a9:0a:
09:6e:7a:2d:2e:1b:6d:a9:1b:55:45:7c:df:85:fe:
41:40:c5:02:d0:43:a0:1d:97:0c:fb:74:d0:b9:fa:
87:06:f7:3f:27:47:ef:2f:47:10:25:7f:28:4a:46:
b8:83:0e:57:dc:bf:aa:1b:19:00:f5:7d:65:d5:0b:
95:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F5:BA:77:67:58:EC:61:06:72:5E:27:0F:C1:51:F2:DB:2A:35:36
X509v3 Authority Key Identifier:
keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:34:9b:0a:c5:77:21:d7:ab:67:a3:9c:98:95:95:69:b3:56:
7d:3b:6a:04:ea:0f:6e:1e:0e:c8:62:05:ad:85:54:0f:0c:4a:
96:96:12:53:19:7b:fb:62:d8:1e:52:f8:8f:8e:01:45:7f:a8:
0d:89:0d:87:64:f3:19:df:51:98:d4:40:26:cb:93:c0:0f:bc:
eb:3d:2b:11:c9:80:c5:23:69:77:84:b0:8c:35:ca:fe:55:3a:
e9:17:d6:c6:6b:bd:56:c4:ee:63:40:93:f9:e4:93:1d:42:84:
7e:d0:2f:27:80:b2:2a:bc:e9:d3:1b:13:be:2b:c3:49:ac:a6:
30:27:52:d2:87:5c:83:3e:1c:9f:2b:b0:26:f2:99:6b:6c:46:
9b:d4:c6:3e:91:a8:c0:b5:91:59:5d:53:7d:fe:97:16:99:44:
4c:ae:48:18:e4:70:fc:18:72:be:81:ad:e2:eb:4e:77:36:7f:
43:84:13:72:ba:30:8c:32:be:26:8e:5f:93:a0:90:37:2b:b1:
41:20:d6:b1:fc:32:ae:1a:8a:0d:be:ca:c4:92:e7:2b:86:36:
5a:3f:54:e5:a6:ae:87:31:3f:6b:06:47:fd:6a:29:bd:7b:bb:
57:6e:b0:33:e6:98:96:a6:e8:f8:a6:fa:21:14:63:c8:b4:5b:
b8:4a:48:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 07:39:41 2025 by rpki-client