Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: dAIO1WgJOWiv7L9AJeowPNFuF0PTfwfkVF51ueaJ+9k=
Subject key identifier: B3:CF:9F:AF:E7:D6:C3:74:AA:91:C9:9F:23:14:42:4A:84:E4:7E:AF
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 0198D5BC2728D9EA648B3219B962C0F677B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 1167
Signing time: Sat 23 Aug 2025 07:02:14 +0000
Manifest this update: Sat 23 Aug 2025 07:02:14 +0000
Manifest next update: Sun 24 Aug 2025 07:02:14 +0000
Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: tjFXNKiIxGtwk1gqARuK2CCdEctwsrSR3BDHcOQ9LX0=)
2: RzF4b3sIXe3DzFdXYIh4DACfNyQ.roa (hash: NzaYQenLUpyVGKDKds+F+mtyj0Y2xs4JaXrSTsoxdK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:27:28:d9:ea:64:8b:32:19:b9:62:c0:f6:77:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Aug 23 07:02:14 2025 GMT
Not After : Aug 24 07:02:14 2025 GMT
Subject: CN=b3cf9fafe7d6c374aa91c99f2314424a84e47eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5a:d1:55:32:3c:ed:a1:9c:f6:47:b2:f8:b2:
ba:43:78:94:36:88:8d:51:51:b1:e9:d4:00:4a:ef:
b4:42:3b:29:0d:12:2a:85:04:30:ff:b9:a5:c5:a2:
7b:9f:e8:e5:34:ef:a6:fe:da:6c:31:59:37:8d:9e:
1a:a8:32:fd:7a:23:77:00:b6:5e:34:d5:74:55:44:
18:99:c5:4a:99:f9:a6:64:e1:83:ff:76:ed:bf:e4:
6d:7e:e8:81:b3:27:77:cc:48:ca:2e:67:ec:58:98:
e4:e6:2a:10:11:5b:7e:48:34:35:df:d9:d6:30:57:
bb:36:da:ea:f4:f6:30:6f:ee:4e:45:1a:ac:2d:64:
1b:06:f8:28:3d:35:fb:20:3a:99:88:b2:52:88:4f:
1e:c8:ed:8e:0b:ef:54:1c:24:69:06:8b:93:36:01:
86:71:6e:2b:0c:83:a1:61:4a:9e:59:02:49:7d:93:
a5:4a:58:0e:07:37:4a:ce:c2:9e:d0:3e:8f:18:de:
b8:4f:37:e8:bf:c2:8d:9e:cc:e8:67:7e:f5:8b:e3:
e8:30:80:b7:a7:84:54:8a:2b:60:4a:6a:28:ec:a9:
a0:1f:34:c0:e2:6a:ed:8e:ff:8a:c0:d7:cf:4c:f7:
3b:4b:7e:2d:04:43:b4:6c:35:cd:0f:9a:dd:56:5d:
d3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CF:9F:AF:E7:D6:C3:74:AA:91:C9:9F:23:14:42:4A:84:E4:7E:AF
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:29:2f:18:07:e4:78:d1:da:57:66:5c:5a:ac:03:83:a8:e9:
47:52:bb:56:93:87:7d:23:55:c5:1c:41:49:97:1a:72:27:20:
f3:5a:62:9a:29:8a:3f:3c:00:74:ad:2c:fc:45:a7:9d:4e:bc:
d4:bd:9b:e8:26:10:69:cc:01:ee:90:da:19:3e:4c:91:1d:86:
d9:21:53:87:3b:80:cf:16:55:89:dd:6e:0e:56:86:5d:d8:ac:
fd:d7:30:3c:0e:f0:eb:d0:de:6a:a0:2a:1d:40:9c:3f:8e:05:
b3:a5:9f:13:88:93:a1:15:77:84:57:0f:60:a8:1b:07:30:51:
8e:78:60:d1:ba:89:cc:c3:39:99:d0:9c:db:fb:b9:4d:69:3e:
cc:95:7e:1c:79:55:5a:67:f0:3f:63:87:68:a1:be:a3:73:27:
51:16:7f:40:27:f9:f1:de:5d:61:c1:38:85:61:76:8d:36:31:
50:50:20:f6:76:45:a1:51:2c:b3:c7:44:04:dd:0d:ee:fc:a1:
0c:df:8a:ba:b4:66:73:9e:98:09:d6:c8:84:ce:b5:aa:41:4f:
37:ce:90:7e:fd:89:08:d8:9b:aa:c2:eb:d8:b9:78:3b:b6:6a:
8b:4f:c6:f6:92:5a:54:9b:ba:f3:21:eb:12:cb:da:1b:24:1a:
df:ca:31:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:32 2025 by rpki-client