Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: psGjmPVQgq4nX06ZUlFSdkoCLKTq7sKZZxrKQmZ0h5Y=
Subject key identifier: FE:F0:9E:77:6E:09:D8:00:C2:33:99:F7:15:57:99:F8:8E:D6:59:19
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 0198D54E83C175C8E41932A4B637F81FB64D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 09DA
Signing time: Sat 23 Aug 2025 05:02:29 +0000
Manifest this update: Sat 23 Aug 2025 05:02:29 +0000
Manifest next update: Sun 24 Aug 2025 05:02:29 +0000
Files and hashes: 1: 5-5dw7BQUILpSuBDRasWi_TUWvo.roa (hash: hm9ysYElh3sbrH5I7xkNigsOqhpocQkIVZkL8ahr+uU=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: ebkdmBEiFB6ITBubip4BJOoINFtBFwQIWfMly3a+sqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:83:c1:75:c8:e4:19:32:a4:b6:37:f8:1f:b6:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Aug 23 05:02:29 2025 GMT
Not After : Aug 24 05:02:29 2025 GMT
Subject: CN=fef09e776e09d800c23399f7155799f88ed65919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6e:86:7f:c5:e0:13:4e:be:94:e4:60:62:7e:
52:10:52:75:6a:27:a9:8e:fe:54:42:50:2e:61:55:
24:58:f3:e5:f6:aa:ba:33:06:77:e6:06:e5:bb:68:
bb:03:e7:a0:a0:fd:99:41:dc:cb:4f:ed:e3:55:f8:
f6:08:e6:22:e0:79:95:df:0e:c7:1a:97:cd:a1:2d:
b3:48:37:f8:bc:12:12:62:d1:9b:d9:b8:9f:15:e0:
92:fd:21:9f:9d:4a:44:73:0c:a9:30:7e:ba:a4:51:
04:8a:1e:2f:28:d7:51:b4:80:26:3e:91:09:88:bc:
5c:59:37:1f:ba:33:a4:04:f6:81:26:cb:8c:76:92:
7f:2e:0b:b5:22:09:17:40:89:b6:79:9e:a6:f0:31:
aa:8c:be:89:1a:67:2d:d2:b3:51:6f:eb:21:fa:7d:
74:7c:62:94:26:0f:79:75:69:7f:fe:22:11:59:72:
8d:3e:ed:f1:84:e0:82:dc:cd:22:c2:df:3b:d3:97:
08:45:d0:6a:6a:93:f2:ed:9f:40:00:bb:4a:89:a8:
b5:e6:27:16:a1:c8:ac:ef:0d:61:8c:db:5a:4a:06:
9b:1d:7b:0c:e6:ad:ec:5f:53:a1:be:17:0c:d1:85:
b2:64:59:fc:e4:63:89:75:d5:ff:33:c2:a2:6b:83:
8b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F0:9E:77:6E:09:D8:00:C2:33:99:F7:15:57:99:F8:8E:D6:59:19
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:c4:8e:dc:8e:06:00:3f:50:9e:a3:ea:4a:bb:24:a3:66:f1:
06:de:3d:a3:3c:e6:83:c3:20:9d:a7:0b:d0:7c:8e:9d:c9:11:
ed:37:f7:12:f7:fb:79:86:8d:10:19:28:6b:4c:d9:ad:bb:24:
0d:a0:84:b5:0f:66:e9:ae:ef:f5:b5:9a:55:8a:dc:94:76:cc:
40:0d:17:5a:19:51:d3:72:e7:23:b8:b0:3d:33:d2:63:6b:11:
50:b1:c7:c1:bf:97:8c:43:86:22:b1:14:e2:e1:66:1d:30:86:
06:f3:f2:84:9c:b6:ea:5d:aa:44:f1:ac:e1:5d:8e:44:16:16:
8f:4e:67:ba:b3:56:6c:31:ff:c7:64:1f:c5:f4:3b:be:5a:86:
36:22:df:eb:ac:6d:07:ab:0c:e1:41:87:26:5b:04:45:53:ec:
b8:ef:c0:46:6f:7b:94:f7:e2:ea:1c:c0:eb:42:8e:37:53:70:
ff:d1:9d:3e:a1:31:70:5d:6c:df:a1:a3:b1:30:fe:38:22:df:
e7:8c:bd:79:77:a1:5a:5f:ec:a9:aa:15:88:12:7a:40:d5:69:
50:94:61:ae:11:c1:e7:21:1c:bf:b5:f7:d7:b4:c9:55:58:be:
11:24:21:14:e3:e5:8d:81:cc:d9:b0:dd:f0:fc:ae:78:00:0e:
3f:ad:1e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:52 2025 by rpki-client