Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: FsPOPRLdG9tjB5jEoFb2kdpe76pLzp/4gVMmyOEPDsE=
Subject key identifier: D1:6A:CD:46:80:0E:06:E6:88:23:F5:FC:F7:36:0A:66:27:F2:72:0A
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 0198D4045EDACC32F6B690AD57601A8C65ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 014E
Signing time: Fri 22 Aug 2025 23:01:52 +0000
Manifest this update: Fri 22 Aug 2025 23:01:52 +0000
Manifest next update: Sat 23 Aug 2025 23:01:52 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: v4zTOH0E332eQjL1TQrBEw+LBNpdCzmqgZt5rbxZ/yE=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:5e:da:cc:32:f6:b6:90:ad:57:60:1a:8c:65:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Aug 22 23:01:52 2025 GMT
Not After : Aug 23 23:01:52 2025 GMT
Subject: CN=d16acd46800e06e68823f5fcf7360a6627f2720a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:89:90:21:a7:b3:8d:8f:a4:85:b3:56:dc:e4:
14:1e:e4:b8:04:ad:42:0c:06:a0:3b:4f:f9:63:a3:
a7:93:54:19:80:a1:6b:0b:a3:6d:bd:09:cf:38:7e:
3a:78:e3:2a:2f:33:c7:cc:f2:fe:43:e8:20:98:86:
34:6d:4f:9e:b5:90:dd:cb:f7:69:e1:75:d4:f9:8a:
1c:89:63:04:ea:f3:4a:e8:1d:a7:6d:a2:f7:8f:26:
1c:0e:69:fa:28:2f:03:45:b4:63:ab:a1:d1:67:4a:
1b:f4:92:c6:57:3b:ab:64:c7:cb:a5:33:17:4a:75:
7a:60:f4:fe:de:21:d6:67:43:9d:82:f0:37:5a:94:
21:e3:47:f5:c0:19:53:64:d4:77:16:11:11:c7:12:
8b:b9:ad:59:04:76:46:53:23:60:5e:4a:59:18:c9:
de:b5:46:5e:37:23:f4:e4:a3:84:83:d9:0c:59:64:
3b:7c:c7:24:ab:c3:0d:bd:56:10:95:85:eb:d5:b0:
5e:fc:92:ab:91:c6:6a:62:e9:41:96:b7:f4:8e:5e:
de:c3:a7:2e:eb:e7:4c:50:7c:30:3f:1a:49:34:df:
7a:05:d4:00:b3:06:8e:7e:66:08:59:d9:06:b6:c0:
1f:bf:99:d4:c6:31:0b:52:bf:23:76:23:cc:e0:d4:
6c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6A:CD:46:80:0E:06:E6:88:23:F5:FC:F7:36:0A:66:27:F2:72:0A
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f1:65:19:5d:16:0e:1d:e3:8a:e3:2c:3b:f5:54:c7:8f:70:
9d:9e:b5:fc:9a:d6:51:86:bd:07:b1:f2:ba:2f:da:eb:89:e1:
02:ab:e6:ff:29:6a:2b:c9:05:6a:92:2b:fd:9c:ff:32:d7:07:
99:ff:b5:1c:08:67:d4:79:ce:ad:10:e2:57:00:3d:a6:d7:10:
fb:d2:40:c8:e4:c4:86:33:69:08:fe:ee:2f:5b:b6:69:43:30:
dd:b9:1c:ea:e1:01:54:a5:34:76:7e:92:46:38:f4:7c:a1:74:
34:16:93:f8:95:2d:02:fe:8c:42:3d:a3:25:3f:a4:be:ac:05:
99:13:21:25:09:32:96:d8:e7:ed:92:37:a8:4f:4e:1f:f0:39:
b3:01:0b:da:fe:bc:b4:80:85:6b:24:99:47:2c:25:1d:de:e6:
5c:8c:6a:34:ba:99:a1:d6:3a:02:de:0d:ea:b2:4b:4a:c8:04:
27:61:a8:b1:b6:39:6e:0b:d0:10:e0:9c:2a:7f:69:0a:53:03:
d1:92:6d:94:73:71:ef:00:01:b6:f1:3d:c0:45:94:b7:57:4f:
e0:22:e8:85:c8:ea:bc:11:54:bc:63:ff:93:8c:95:d2:ad:ef:
dd:ff:91:d2:eb:02:32:93:72:5e:94:79:a9:41:e6:21:1e:9a:
03:12:61:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:19:20 2025 by rpki-client