Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: FNpQcG6sZHaT6yejJfShDVaQJDbXcdvFqS2SRBQ6RM0=
Subject key identifier: 25:38:CE:95:B6:4A:42:F8:90:58:78:61:C5:77:E3:FE:98:C5:E2:7C
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0198D473CC633773CB09B4F81F131D5FA7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 11C6
Signing time: Sat 23 Aug 2025 01:03:35 +0000
Manifest this update: Sat 23 Aug 2025 01:03:35 +0000
Manifest next update: Sun 24 Aug 2025 01:03:35 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: wyftz58x30hi4ueMka6f/F6xh35y9pQZgD04lW/j7M8=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:cc:63:37:73:cb:09:b4:f8:1f:13:1d:5f:a7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Aug 23 01:03:35 2025 GMT
Not After : Aug 24 01:03:35 2025 GMT
Subject: CN=2538ce95b64a42f890587861c577e3fe98c5e27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:17:c8:2d:81:80:ff:af:2f:da:e9:d0:ce:c8:
68:20:3e:25:ba:83:c4:55:91:45:b0:9e:25:a3:ba:
9f:7c:89:74:ed:39:93:86:13:72:eb:98:db:2e:98:
00:40:ed:d7:ca:e3:9c:94:4d:5a:0d:e4:2d:27:e7:
83:f8:1c:45:4c:c8:17:0b:34:f6:e3:81:65:95:7a:
50:f3:18:1e:8f:56:1a:5b:c3:ae:61:25:42:95:07:
57:2b:e5:64:91:e4:60:56:ab:cf:92:c8:02:a1:97:
85:9f:d3:30:d7:08:27:02:90:6b:ad:ec:13:6b:7a:
38:21:f6:c1:74:a9:4f:50:5a:4a:49:59:e8:e7:dd:
e8:3d:10:69:b7:14:6d:94:45:02:eb:e1:51:3e:82:
1e:b7:ac:e6:76:a6:de:cb:29:57:81:e6:df:2c:2e:
67:04:e6:c2:d7:d7:3c:64:b3:38:e0:d3:d6:9a:da:
2d:b0:71:b5:91:08:f7:c6:8a:31:8c:66:0a:20:50:
a8:4f:db:e0:32:eb:bd:9d:3c:d8:49:97:4d:5b:80:
33:1c:17:3e:11:06:6a:48:84:87:54:88:0d:a1:14:
9b:c8:18:5e:eb:8a:60:cd:58:14:84:82:13:5f:a3:
7d:04:09:44:40:e9:55:c5:af:38:81:79:9b:28:1b:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:38:CE:95:B6:4A:42:F8:90:58:78:61:C5:77:E3:FE:98:C5:E2:7C
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d0:0b:65:7c:1b:51:ac:bf:3a:eb:c9:0b:39:85:b2:89:b5:
2b:97:d3:54:d5:61:a8:5f:64:0c:39:9a:cb:03:7b:54:a0:71:
62:03:6d:61:b0:12:8f:17:0b:af:db:37:dd:ac:54:f9:12:34:
90:7b:91:66:f4:3b:f4:50:8b:d6:48:89:0c:73:4b:08:41:d8:
c3:2d:16:95:9c:30:f2:2f:18:ee:7f:c4:d2:af:fe:4f:63:7c:
ff:43:99:d1:88:45:3f:88:b0:85:10:16:31:11:ca:ba:39:65:
04:6f:56:d6:6d:88:26:52:93:72:06:bd:ef:34:d7:81:19:d5:
b5:4c:a5:16:22:ee:20:ee:7b:43:29:55:be:50:5c:d1:72:f8:
c4:6d:9e:fb:c1:15:8e:43:e9:cd:2d:8a:8e:3d:81:de:bc:f6:
9a:c7:71:81:42:d8:8f:cb:38:af:35:09:13:f6:ea:a9:2c:7b:
e9:cc:90:25:d5:df:48:a1:c9:9f:13:11:9f:92:9e:df:04:5b:
c4:fa:9a:eb:ee:fe:11:08:1d:da:62:80:31:a2:3d:11:b1:95:
77:17:80:58:7f:59:15:87:0c:0d:12:17:5e:01:d1:43:57:20:
29:48:3c:8c:ac:c5:1e:77:7d:22:b8:81:6c:48:22:e3:98:81:
9f:9f:cc:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:32 2025 by rpki-client