Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: m0bIWyMPRmMrrWAQOMKzQ86WdvQdMq9CjQH1DAtKNgA=
Subject key identifier: B9:9E:82:29:3C:0B:4B:81:27:7A:BF:19:FE:C1:56:BF:AD:38:92:AC
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 0199FCFDBCC44C4A65A262A558F192D5EDC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0E65
Signing time: Sun 19 Oct 2025 15:01:51 +0000
Manifest this update: Sun 19 Oct 2025 15:01:51 +0000
Manifest next update: Mon 20 Oct 2025 15:01:51 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: L873CFwfF+IzWLImAYZCl7ZRaL2qOz2p81ev8h2LLy8=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:bc:c4:4c:4a:65:a2:62:a5:58:f1:92:d5:ed:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Oct 19 15:01:51 2025 GMT
Not After : Oct 20 15:01:51 2025 GMT
Subject: CN=b99e82293c0b4b81277abf19fec156bfad3892ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:5d:68:70:0a:5b:13:d9:4f:01:00:ec:02:
a1:42:72:a4:0f:db:6c:22:ab:88:ef:d4:fb:94:1f:
2f:1d:a1:b3:9e:e1:f4:c9:c7:02:fb:da:ed:a4:9e:
4a:ef:95:09:45:3b:91:d8:7b:f2:88:88:f5:bc:c5:
84:7b:cc:4e:5e:64:4a:d4:27:b6:21:0a:60:43:32:
64:b4:54:3b:ff:7c:ac:33:f9:0f:c7:9c:99:63:8f:
9c:03:9c:14:1b:48:2f:29:5d:d2:8e:22:53:19:6b:
c8:cf:98:27:41:82:b2:5a:54:f1:b4:d6:8c:c7:ef:
6f:18:7d:3f:cc:8c:28:bd:4d:eb:c8:78:92:3f:b9:
ea:a0:75:1f:94:d9:d6:23:e8:17:be:5d:40:06:de:
4d:68:5f:24:40:15:79:ba:28:85:d8:b2:fe:09:47:
24:b6:c0:55:4d:27:eb:0d:6d:16:0c:f9:60:77:05:
ae:f9:b3:ab:26:3e:07:86:f6:6d:97:3c:bb:e9:6c:
94:41:02:0a:bb:34:a1:da:e4:0e:b2:9f:c4:88:8a:
4d:39:c5:28:97:b5:66:7d:bd:fe:ee:09:dd:5f:29:
c4:0d:f7:3f:fd:0a:cc:44:1d:ae:31:4f:f6:b4:d7:
0e:7b:4f:d3:e5:a2:51:b6:0e:5f:60:59:32:74:45:
ad:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9E:82:29:3C:0B:4B:81:27:7A:BF:19:FE:C1:56:BF:AD:38:92:AC
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ce:97:ed:58:2e:ec:10:40:9a:bf:23:56:f3:b0:8f:5c:32:
fc:86:c8:92:29:5e:41:30:0d:63:98:72:a4:b8:6b:1f:30:fd:
3a:dd:0e:c5:3e:eb:fa:99:d5:2f:bd:de:71:6b:30:b9:60:21:
4b:bf:89:d4:34:b0:dc:ef:3d:3a:5d:86:13:52:a0:2d:b0:2c:
6a:19:80:80:f1:dc:3b:d4:f7:32:9a:92:46:42:df:cb:11:4d:
84:3e:a4:66:36:60:92:4c:80:27:b2:c9:4e:75:39:b8:65:d3:
39:92:d1:6d:b0:f4:0f:86:10:82:d6:d9:63:37:c0:42:6f:76:
d0:74:f7:8a:85:4a:ef:fd:4f:ae:64:64:e2:7e:ea:47:47:08:
f0:1a:56:f5:f2:d0:3c:dc:05:71:5b:c0:65:1d:50:cd:02:25:
b2:83:0d:06:9c:a2:1d:c2:23:62:c1:3d:d3:95:f1:b2:08:3e:
66:b1:a5:06:95:9f:e1:09:78:81:48:c0:90:84:bc:10:47:9f:
9e:19:db:0a:ce:a5:7a:ca:61:27:34:c9:86:21:5d:43:23:ba:
2a:ea:15:ee:6b:25:4b:a9:f0:23:11:0f:4d:3c:36:ea:6a:f2:
6e:84:bd:10:be:19:09:5f:5f:a4:40:b1:fa:a4:17:29:fa:6b:
c8:5e:0d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:43 2025 by rpki-client