Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: f4r9BLIlCUqWPy7V86QOYPVpb/srJMw/XjsYgZNp+E4=
Subject key identifier: CE:C3:0C:DE:0D:F6:54:B0:08:E2:4B:01:C8:09:51:CC:C3:35:E0:41
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 0198D5BB7CFA9F9DD93728D57BDA4A245108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0B17
Signing time: Sat 23 Aug 2025 07:01:30 +0000
Manifest this update: Sat 23 Aug 2025 07:01:30 +0000
Manifest next update: Sun 24 Aug 2025 07:01:30 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: X51GUAg2Rr38tZG3qu4jcJXtlBsz1PyIXloc3sLw2E0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:7c:fa:9f:9d:d9:37:28:d5:7b:da:4a:24:51:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Aug 23 07:01:30 2025 GMT
Not After : Aug 24 07:01:30 2025 GMT
Subject: CN=cec30cde0df654b008e24b01c80951ccc335e041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:58:f1:3c:f3:bc:50:40:d2:79:0c:b9:5f:a3:
2c:e9:9a:49:ef:97:30:72:96:f3:25:c3:db:ff:49:
15:a0:c3:46:3c:46:96:6f:77:5d:10:7b:87:aa:be:
80:e0:ec:70:a6:e3:25:69:c1:cc:d9:a9:b1:e7:dd:
5a:ab:27:98:3c:3d:4d:e5:55:ae:2e:93:2c:f2:8d:
e4:0f:90:39:d5:52:60:12:e5:32:03:22:31:5c:09:
35:a8:ca:22:61:fe:b3:b6:60:46:fb:6e:3b:2f:67:
c6:63:e3:7d:d6:44:3b:f7:5b:4e:54:8a:1f:f8:54:
a0:ed:f7:ec:5c:c2:f7:d0:ec:54:78:5f:4b:bd:23:
09:d3:34:03:cc:69:99:6f:e5:a6:be:9f:52:c7:24:
47:6e:7b:51:18:1b:b7:cb:24:31:fb:85:27:82:e3:
94:6b:e8:34:d3:fe:31:b6:1f:b7:ca:8a:56:44:37:
61:c7:10:db:b0:53:34:22:13:21:9e:d5:ce:4c:b2:
72:53:da:70:d7:f6:b9:47:9b:91:9b:b8:f5:58:3b:
49:81:de:10:8c:36:60:7c:7b:bc:71:7c:26:96:34:
39:02:e6:f9:cc:70:4e:ac:fa:71:9b:26:45:c9:b8:
f2:79:81:62:5e:02:13:06:df:ad:b0:de:17:92:9e:
4d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C3:0C:DE:0D:F6:54:B0:08:E2:4B:01:C8:09:51:CC:C3:35:E0:41
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:14:e2:27:0a:03:57:15:b4:61:6d:1d:3d:c5:f1:45:2a:cc:
37:6b:53:b5:0a:d9:68:69:a1:b0:e2:bc:7c:ca:51:84:2b:88:
34:57:26:cd:35:1d:f4:a1:0d:7d:aa:58:8a:83:6a:a4:92:63:
08:db:6a:ed:c1:50:f4:07:f2:f1:0d:0e:60:c4:e7:83:9d:d2:
98:d1:88:46:bb:e5:c2:55:8f:d9:95:3d:11:ad:e5:e6:f9:3a:
f1:b3:38:db:10:4f:97:e7:33:2b:b9:10:cf:8e:60:23:1e:d7:
dd:fa:d6:34:07:60:d4:ba:01:0b:f3:77:7d:10:be:a5:26:12:
c1:2e:92:fc:e0:40:8e:e1:45:75:41:f8:c1:cb:b9:9a:40:0d:
61:74:9a:08:c6:d0:51:c0:79:d7:72:90:b3:ea:03:75:b1:6b:
4a:02:a9:50:62:5b:d0:6d:de:18:a9:e3:e3:09:24:51:9c:6b:
6d:48:25:c3:33:d7:e0:c3:97:fc:3c:40:cf:97:d8:82:9f:2c:
a4:40:39:95:7d:ac:ad:18:95:93:02:f7:84:f2:f8:a4:e9:b8:
33:1b:b1:53:3a:93:90:94:ec:87:42:a4:41:63:4e:86:6e:47:
9f:db:80:5b:46:86:ad:cf:cb:53:a9:d1:ef:29:5a:90:d7:39:
fa:d7:2e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:16 2025 by rpki-client