Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: sjSwbEweNqT5saG2jN4saQZRifZW76M1sChXijFTF74=
Subject key identifier: 0E:89:80:92:8C:17:50:D3:7E:4F:ED:6C:49:5A:16:31:A3:08:BE:71
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 0199FD6B07D9CD36A0A02071D7E79A910D88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0B72
Signing time: Sun 19 Oct 2025 17:01:13 +0000
Manifest this update: Sun 19 Oct 2025 17:01:13 +0000
Manifest next update: Mon 20 Oct 2025 17:01:13 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: 2Sg4Pyr1xWLkBJAdU6K909mW5LiGLCSYZRvmAHywqAk=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:07:d9:cd:36:a0:a0:20:71:d7:e7:9a:91:0d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Oct 19 17:01:13 2025 GMT
Not After : Oct 20 17:01:13 2025 GMT
Subject: CN=0e8980928c1750d37e4fed6c495a1631a308be71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:31:07:b1:7d:49:68:7d:47:79:83:23:64:
00:e4:09:b9:41:92:05:f3:90:45:c1:6f:89:90:e7:
8b:7e:01:10:04:55:e7:f8:dd:b5:28:b3:93:27:2b:
81:d3:18:d7:0e:0c:60:6c:af:b4:cb:7c:33:61:0a:
e5:3d:c5:23:af:25:cc:40:b9:f9:ef:9b:84:1b:02:
aa:b0:6f:14:66:bc:90:e4:f0:2d:ff:90:99:b2:d1:
f2:c9:dc:7b:6e:84:ed:4f:a5:f3:63:0c:57:7e:bc:
49:a5:01:29:2e:bf:96:3f:fd:dd:23:16:03:99:61:
78:85:fd:9e:5b:e1:1c:d9:43:84:96:20:1e:a9:ff:
15:0a:8f:fc:e2:b1:c7:89:3d:2c:02:f2:bb:10:86:
db:fc:b2:0d:e0:7a:1b:79:5f:13:87:b1:34:c6:27:
45:4d:b0:d9:f5:03:7b:75:84:55:2d:72:54:0f:dc:
d3:43:d3:21:86:e3:55:ab:20:2b:b0:22:ca:67:7b:
ba:df:83:cc:ff:40:9f:23:95:d4:d4:c1:0e:f4:35:
61:5c:c4:cc:ad:59:7e:80:8d:c8:a0:3b:eb:23:c1:
cf:ce:eb:81:b3:ce:03:a1:ce:a3:91:b0:af:6e:5d:
29:68:9c:e6:1e:b7:c2:a7:e6:d0:cf:13:57:06:42:
f9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:89:80:92:8C:17:50:D3:7E:4F:ED:6C:49:5A:16:31:A3:08:BE:71
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d7:5f:df:7a:84:ed:52:ff:20:3b:3c:5f:c5:e3:22:c3:a7:
20:95:91:83:6a:45:54:35:10:53:3b:51:f7:6d:e6:21:7d:e6:
8d:0f:df:05:68:77:72:74:c7:ae:d0:08:9e:f4:5d:c3:99:31:
5e:eb:4f:80:9e:26:c0:1c:d7:7f:96:e9:3d:59:8e:7b:13:df:
5d:a4:7b:54:29:54:b6:c5:04:6b:bb:f1:c5:26:24:7c:23:bb:
23:c0:0e:45:3b:82:7c:d3:72:d2:c7:49:a3:a2:d4:74:76:96:
f3:3a:f7:3d:ee:2b:e6:13:d6:99:67:40:59:70:48:fc:b7:e8:
bc:c4:a0:b2:ca:e0:85:fa:f6:c0:7b:d8:ff:b4:3c:ad:c5:e3:
c9:3b:59:c4:4d:11:36:22:fb:22:09:18:93:60:93:7e:cb:b4:
b8:fd:69:43:ac:52:f5:6d:78:d8:5e:54:c3:6a:09:71:7b:7c:
3d:38:45:4b:ee:bf:93:47:02:c5:71:ce:fb:40:d7:bb:33:aa:
9f:80:a2:14:b7:e1:42:18:45:b4:a1:f3:4a:42:dd:cb:fd:cc:
3c:7d:a4:27:38:83:60:f5:60:e4:d3:c7:91:a1:32:80:56:bf:
fd:d0:e5:42:40:89:69:3b:d4:7b:40:85:93:79:42:23:7c:bc:
c7:f7:79:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:44:18 2025 by rpki-client