Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: WRtTW9Pgm97lsYH9XOfZJ+yi47gbfr5KOlMG55qclpE=
Subject key identifier: 07:C0:82:C9:EA:DC:EC:C6:16:9A:DA:AE:3C:E3:CB:ED:01:0C:F5:21
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 0198D515F0206454D818DD448AC6DE023240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 09F6
Signing time: Sat 23 Aug 2025 04:00:41 +0000
Manifest this update: Sat 23 Aug 2025 04:00:41 +0000
Manifest next update: Sun 24 Aug 2025 04:00:41 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: SX20j/DsBRAzSYwvgylXkCoPaxGxQH8OaukT5WztgU4=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f0:20:64:54:d8:18:dd:44:8a:c6:de:02:32:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Aug 23 04:00:41 2025 GMT
Not After : Aug 24 04:00:41 2025 GMT
Subject: CN=07c082c9eadcecc6169adaae3ce3cbed010cf521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:30:56:bc:7c:4f:65:81:5f:72:6c:39:d0:
44:31:dc:89:28:3e:f2:62:63:0f:ce:63:c0:eb:00:
94:3d:9b:00:e9:c3:9e:72:34:26:df:11:89:6b:48:
a1:99:ae:46:72:9a:f9:c6:ec:fe:75:aa:3a:f7:16:
70:d2:1f:46:c5:4e:70:fa:a7:fe:c5:57:8b:d9:fe:
05:e5:98:56:9b:91:06:63:38:44:d8:2b:73:18:eb:
8f:b8:89:3e:2e:e6:77:3a:c5:aa:08:75:8c:8c:5d:
b9:84:4e:f6:3a:ab:80:d2:1f:83:18:dc:08:49:d8:
ea:5f:48:46:3e:45:6d:97:d5:13:92:e2:eb:82:ac:
f3:90:aa:b0:97:66:cb:6b:1f:78:bd:a9:0f:b3:21:
df:ca:30:70:5f:cb:cb:21:21:9f:13:7a:3c:65:76:
23:5c:38:17:cd:55:46:60:7d:3f:bb:03:51:c4:70:
93:ed:a2:d9:76:53:f3:5f:e0:41:ac:1b:30:29:70:
bc:2c:17:e8:cb:b0:5d:28:f5:7e:90:fb:72:b0:19:
59:d9:45:e3:8e:52:63:3e:99:f3:9c:c7:f9:38:be:
b9:22:ca:b4:43:90:f7:85:f9:22:21:43:e8:05:1f:
67:28:d5:8a:ff:2e:ea:cd:16:70:17:2d:fd:6d:25:
89:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C0:82:C9:EA:DC:EC:C6:16:9A:DA:AE:3C:E3:CB:ED:01:0C:F5:21
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:36:b5:0b:a8:d2:99:4a:8e:10:f7:78:bc:fa:27:ea:fa:a7:
d4:fd:f9:55:95:f3:64:cd:a4:60:48:76:c5:bc:fe:2f:d9:c4:
4a:0a:52:f0:8f:e5:c2:60:15:10:e3:4a:b4:3a:b7:ae:a3:03:
b5:52:19:8f:19:44:1b:56:f0:71:a9:05:fd:fc:86:85:57:8a:
9b:1d:a0:91:de:44:a6:fa:5d:ba:98:f7:08:b1:f9:81:6d:ee:
5f:ba:b3:a1:fb:86:5a:85:d3:23:f7:5d:a5:1b:f9:02:40:25:
63:33:60:6a:e2:4b:2c:3a:a1:15:dc:74:30:59:c6:9f:41:43:
ca:de:9a:fd:99:d1:ac:bb:a5:8c:e4:79:d0:fe:97:21:31:2d:
2d:d0:f2:8e:0d:73:cb:0e:69:8b:d7:a2:dd:26:e4:19:92:2f:
49:f1:21:88:60:3d:fd:41:de:ef:e8:18:ea:78:81:b8:e4:12:
db:a2:41:05:8d:70:b0:dc:e7:de:03:15:50:8b:8a:dc:07:4f:
92:58:05:3d:f3:ba:06:7b:39:ed:c0:24:1a:99:49:9a:68:82:
39:8f:64:3f:10:8f:e1:78:e4:47:4e:ea:c2:48:eb:83:b5:6f:
8f:16:16:fd:7e:5b:95:c9:e9:41:8a:2d:f4:17:5c:04:ff:4f:
88:e1:99:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:36 2025 by rpki-client