Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
File: OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft (raw, json)
Hash identifier: fh8YsCQlYy9o7XT9UMrkl/uF0644Q5aUcQJ++Z62cec=
Subject key identifier: 8E:B6:F6:05:22:5B:9A:73:EB:72:EE:78:38:2B:DC:67:FD:78:66:98
Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Certificate serial: 0199FCC64AF0274C34901CED86AB78388B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
Manifest number: 0D1F
Signing time: Sun 19 Oct 2025 14:01:17 +0000
Manifest this update: Sun 19 Oct 2025 14:01:17 +0000
Manifest next update: Mon 20 Oct 2025 14:01:17 +0000
Files and hashes: 1: OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl (hash: ONSTFmIP/W9eyeOzx0+4Jivc+tND+O4L1oF9rdC0OLU=)
2: akjM-xe6r7wN8q85qvVsiC6HFoc.roa (hash: DJGYhYAc1tW0r6f5bvOKTaPIoda2gTETmwDHHbAC3Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:4a:f0:27:4c:34:90:1c:ed:86:ab:78:38:8b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Validity
Not Before: Oct 19 14:01:17 2025 GMT
Not After : Oct 20 14:01:17 2025 GMT
Subject: CN=8eb6f605225b9a73eb72ee78382bdc67fd786698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b8:0e:e2:8d:6e:c6:8e:82:5d:50:74:95:d8:
a9:4b:4f:84:1c:87:3f:16:da:49:11:37:cf:6a:44:
bd:3b:3b:29:c0:07:bd:1d:d6:0f:27:52:17:68:68:
31:89:ae:5b:db:60:d4:27:93:f2:ea:b7:49:f9:56:
2d:dd:96:ef:f7:64:91:f6:33:63:82:64:53:89:39:
47:48:1e:12:d3:43:35:0a:c4:c9:c3:26:be:6e:86:
1c:35:99:35:87:9d:91:fc:87:07:2f:ad:2e:32:40:
21:7c:9f:98:2d:b9:b2:0d:1f:da:06:aa:41:29:7c:
93:90:8c:7f:07:da:f3:2d:73:f4:88:ff:cf:78:b8:
79:95:62:96:72:00:cf:0b:17:9f:a0:89:17:82:0a:
8f:35:04:d3:ef:a7:57:40:0a:69:da:3b:98:34:db:
81:7b:59:6b:3b:68:84:11:6d:18:25:dc:a2:eb:3e:
52:b2:84:f6:b7:24:3f:52:07:a4:b7:3b:34:d3:93:
72:a7:bc:d0:8b:a7:1a:6e:33:7e:2d:f3:c0:87:8b:
58:ef:7c:3b:81:58:03:4e:c4:df:34:b3:f5:32:2e:
b0:1e:3a:aa:61:93:cc:94:e7:8b:cc:31:d0:d4:f5:
2a:a8:ed:cb:ac:73:a1:47:24:dd:af:cf:bc:8d:13:
73:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B6:F6:05:22:5B:9A:73:EB:72:EE:78:38:2B:DC:67:FD:78:66:98
X509v3 Authority Key Identifier:
keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b9:1b:23:b3:85:2f:4b:50:b6:e8:74:f1:ec:20:20:b6:46:
a4:80:e4:57:6a:99:72:ca:30:e4:d9:5e:c6:ec:ac:a9:e0:cd:
42:61:05:4d:6f:bc:5a:04:95:0a:46:c4:fa:9f:ce:75:4d:45:
6f:32:2d:6e:ae:d4:62:3a:c6:95:76:01:cf:8e:a9:95:9a:54:
fa:14:3a:22:39:64:6d:66:81:75:b6:ab:96:f0:07:cb:10:e3:
8c:93:77:b2:d7:de:e6:b8:72:e1:43:0a:eb:24:c2:d4:d5:c7:
b6:65:f6:88:04:c8:4b:fc:08:d8:0a:a9:4d:3f:86:a8:86:09:
4d:be:8b:9a:cb:60:15:cc:d0:f5:e5:64:bf:10:80:e2:c4:fb:
f5:3e:f8:26:59:fa:49:58:43:66:1b:45:81:b0:41:12:ef:48:
05:9b:80:0a:89:c7:f3:ca:b2:88:1e:87:17:41:8d:c8:29:eb:
ff:5b:48:36:8d:f8:d5:56:40:10:51:be:d2:3c:62:f8:b7:91:
32:fe:c4:03:75:3e:a5:1b:c2:43:da:ad:52:ac:bc:dd:f6:cb:
0d:a5:d9:e4:a0:93:e5:25:14:e8:e7:c9:cd:de:6a:70:65:fe:
94:11:7d:5a:4c:3f:9d:a6:34:6c:08:e7:21:aa:15:d8:25:90:
f3:99:85:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:57 2025 by rpki-client