Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: kpHxQHEaaroWCNjpDAJaxHr0luHmF/sXvvYUaGXgy9k=
Subject key identifier: 9D:B3:B3:69:C0:AC:0F:DA:76:90:82:55:1C:3C:6D:F3:BD:07:DC:22
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 0199FD347F75DDE76FF295C2D9CC5D1FF885
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 1200
Signing time: Sun 19 Oct 2025 16:01:40 +0000
Manifest this update: Sun 19 Oct 2025 16:01:40 +0000
Manifest next update: Mon 20 Oct 2025 16:01:40 +0000
Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: y5tn993HZ/e3H/rWmQao/v7Jp+zFh4oz9MUI+qWkRm4=)
2: RzF4b3sIXe3DzFdXYIh4DACfNyQ.roa (hash: NzaYQenLUpyVGKDKds+F+mtyj0Y2xs4JaXrSTsoxdK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:7f:75:dd:e7:6f:f2:95:c2:d9:cc:5d:1f:f8:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Oct 19 16:01:40 2025 GMT
Not After : Oct 20 16:01:40 2025 GMT
Subject: CN=9db3b369c0ac0fda769082551c3c6df3bd07dc22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:76:b3:16:68:4b:6e:e0:75:06:6f:92:3c:4a:
57:e3:2a:3a:ec:f4:bc:ff:9d:7f:18:6f:67:f0:dc:
ab:0b:e8:37:43:1c:15:51:5d:e5:97:0e:1c:66:10:
bd:cd:68:fa:48:df:00:49:06:ec:2a:30:6c:79:13:
46:f5:df:22:6b:a9:f4:6e:d5:ea:02:c1:d5:3e:37:
94:15:2b:5f:78:25:ca:ee:b8:cf:82:9b:f3:37:4a:
69:30:9c:17:79:61:14:e4:1b:6c:6d:1c:db:24:c7:
d7:9f:74:7d:b3:28:c3:c4:56:63:e9:dd:13:1d:44:
a1:93:e8:af:c9:6d:1e:70:15:a8:cd:ec:c8:ce:a5:
33:59:7e:b5:28:b6:89:55:fc:54:69:b2:97:90:90:
f3:d9:69:3d:10:68:29:2e:2d:4c:47:7f:51:58:8c:
53:61:40:23:55:3c:e8:42:99:71:9b:30:d7:1c:5e:
85:83:cd:9c:c0:31:56:af:f5:96:c4:42:60:81:8d:
4a:e1:4f:f3:f7:c6:df:1a:ab:8b:f4:2b:40:6d:e6:
9c:ff:be:db:1c:bc:66:e8:e2:e2:d9:66:64:3a:55:
1b:89:8d:fd:71:0a:e7:02:44:a9:1b:1c:01:7c:46:
de:cb:85:6c:4a:8e:54:53:fd:15:33:28:27:0c:4c:
5d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B3:B3:69:C0:AC:0F:DA:76:90:82:55:1C:3C:6D:F3:BD:07:DC:22
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:99:1f:c3:b1:c4:84:ae:fa:4f:2d:dd:38:a2:99:27:a4:6d:
27:b0:a5:66:0a:a5:08:a4:25:c6:35:fc:3b:4b:49:98:cc:d1:
3b:b8:7d:f3:99:58:51:35:50:d9:49:04:93:b1:74:6c:60:fc:
b6:6d:5f:66:e8:c6:be:b7:b8:b2:b2:3c:74:b0:cc:f8:c0:96:
a1:e0:02:02:e2:d7:45:6f:29:b8:6b:72:da:9b:a2:1f:ec:99:
5a:d4:50:e9:4f:aa:3f:ee:e5:c8:95:6f:3c:7c:df:2e:9f:7d:
24:7c:c7:30:52:03:96:a7:3a:14:b7:0f:ec:ea:b2:25:cd:50:
98:72:8f:5f:5c:95:7f:01:72:41:6e:22:58:62:8c:7a:c0:1f:
9b:64:27:d9:2a:40:18:cb:3c:84:ef:99:28:19:91:fc:25:13:
5b:31:d0:5b:b2:65:2b:09:c4:11:3a:91:77:67:e8:27:c6:88:
ea:30:57:79:07:14:83:ec:e6:75:da:f0:b9:3a:69:46:16:22:
db:3f:33:4b:0e:0c:d0:6b:54:ac:3b:04:f3:de:61:be:3b:58:
d3:30:fc:bf:42:b7:50:85:ac:8a:0f:8b:4e:40:82:ba:54:4b:
94:9e:55:7d:33:21:70:9c:65:6b:74:4c:b4:21:38:08:20:fb:
e9:f6:24:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:48:50 2025 by rpki-client