Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: JpRogECb01071FuY5gTEWSKOPwOzRMKw0ginMtiZ9QU=
Subject key identifier: 96:27:7D:1C:19:5F:AD:C3:F7:AE:79:5C:73:B7:FD:D1:6B:94:6A:68
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 0198D404AEE3F4E7515E3B345A061F40F0E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0AD8
Signing time: Fri 22 Aug 2025 23:02:13 +0000
Manifest this update: Fri 22 Aug 2025 23:02:13 +0000
Manifest next update: Sat 23 Aug 2025 23:02:13 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: D5juz9AKlBuJGSw6KomsHK/eLjRdrH3uSPZDyE54rUk=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:ae:e3:f4:e7:51:5e:3b:34:5a:06:1f:40:f0:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Aug 22 23:02:13 2025 GMT
Not After : Aug 23 23:02:13 2025 GMT
Subject: CN=96277d1c195fadc3f7ae795c73b7fdd16b946a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b9:ae:4d:d2:da:09:2b:17:73:de:0d:87:90:
12:7d:ec:15:15:1d:82:8b:90:f3:87:cb:c0:41:23:
76:fe:35:3f:26:94:d7:9e:5c:87:d6:a1:ac:da:f8:
5b:e6:65:ce:06:22:4b:b9:02:0c:d7:13:44:b0:7b:
4c:bb:fa:23:be:39:ed:39:a0:a6:69:45:fa:b0:ec:
b1:eb:d5:b8:13:0f:12:ff:94:a6:44:16:01:d1:0e:
61:7a:cf:83:75:ee:d4:ea:c2:17:ef:f5:aa:7a:03:
24:68:ba:86:62:ca:74:e7:f1:cf:24:45:f6:26:f5:
3e:58:af:d4:87:5a:83:cb:b4:79:7b:4e:36:8c:18:
a7:7b:05:67:be:39:b0:71:37:db:63:bd:46:87:7f:
e3:97:ec:4b:f3:23:56:79:41:86:c4:05:3d:d6:d9:
50:f1:0b:83:f4:ed:66:e5:7d:6a:78:23:7b:4a:eb:
30:64:a6:90:e8:14:4a:ff:ac:3d:27:51:d0:49:31:
7d:6e:ed:69:33:63:03:9d:93:01:17:7a:6a:ce:b2:
c0:58:b2:c9:01:5c:27:ae:9b:df:46:9c:4f:8d:d2:
f6:a5:a9:d5:1c:8a:31:0c:35:02:c0:ce:04:c7:43:
5f:5c:b8:ee:a5:5c:c2:42:a9:09:79:53:c9:11:9b:
9f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:27:7D:1C:19:5F:AD:C3:F7:AE:79:5C:73:B7:FD:D1:6B:94:6A:68
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f9:1e:7f:ef:ce:19:7a:44:2a:2a:df:86:90:fc:3d:96:d5:
69:02:d2:d0:e7:66:9d:fa:b6:2a:ba:53:83:41:f6:1a:23:55:
c2:f0:b8:b5:65:0a:d6:19:2a:ff:fa:08:59:04:1d:d6:6f:1c:
9f:30:a9:ea:e5:04:5d:0d:2f:a2:9a:21:f2:0b:08:a7:57:f2:
94:70:d6:6f:2c:7a:bd:a9:75:5f:95:98:3d:f7:5b:a7:13:57:
a2:78:5d:f9:ed:e7:e9:0d:57:de:ec:dd:97:b1:bd:73:64:7a:
fc:78:30:dc:0f:bd:34:79:60:70:a3:5d:16:89:1c:33:38:6d:
63:38:2e:f2:31:e1:43:b1:6b:dd:97:19:a2:ef:ba:52:d6:67:
30:d7:3a:40:25:15:66:ec:58:25:e7:31:c8:cd:f6:0e:73:7b:
92:ff:6a:23:2a:fa:e3:85:03:49:ae:1d:3d:13:08:02:1d:9b:
c3:af:d6:fa:77:b6:cd:96:a3:ed:08:1c:0b:4d:ed:e0:a9:cb:
0d:f1:7f:f0:a9:50:98:69:c0:5a:ca:6f:85:ca:50:bb:e6:3b:
f3:6c:6e:cb:bb:32:34:70:27:38:3a:83:80:1b:32:e9:d9:d8:
3f:8f:2b:d6:d3:74:28:05:3e:f6:ed:94:d8:41:07:ae:08:8c:
32:70:44:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:36 2025 by rpki-client