Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: WYftPkfXNXFihWQh2TW3RCdIB851EEO83lQaAdKxe88=
Subject key identifier: 31:C0:E6:42:AF:85:AB:D9:A1:C8:65:2A:6E:63:D8:31:5C:C3:70:8A
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 0197B5FC4EA4B3BB668D7B46C22B304798EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0A82
Signing time: Sat 28 Jun 2025 10:01:40 +0000
Manifest this update: Sat 28 Jun 2025 10:01:40 +0000
Manifest next update: Sun 29 Jun 2025 10:01:40 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: MXIsWaixPcDQz9wOAXVt+ls362t//emZCtKhS7P6ulA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:4e:a4:b3:bb:66:8d:7b:46:c2:2b:30:47:98:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Jun 28 10:01:40 2025 GMT
Not After : Jun 29 10:01:40 2025 GMT
Subject: CN=31c0e642af85abd9a1c8652a6e63d8315cc3708a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:c8:09:15:e8:51:7c:53:5d:06:bc:73:12:
52:20:df:fd:84:81:c8:c2:b1:fc:ee:dd:d6:1e:b1:
e3:e7:ea:a6:21:14:92:da:c6:e9:bd:77:0a:1d:ff:
68:b6:c5:3f:83:ee:cc:c6:2e:d1:c0:c0:2b:09:d2:
42:db:e4:84:36:9f:d2:1a:51:2f:97:0c:29:63:06:
f1:1d:32:79:15:fb:2e:e0:f9:fd:2c:61:87:27:cb:
d0:d0:29:50:3b:e5:94:d7:89:be:28:28:04:e0:27:
5f:93:ae:91:25:d1:35:11:4a:93:34:fc:b9:61:3d:
61:62:2d:4c:4f:e2:b6:06:aa:07:56:00:5a:cc:71:
15:8e:21:ac:95:58:5a:83:cd:a0:fc:b2:80:96:ce:
91:20:a5:a8:ec:b7:4f:a9:3c:1a:a3:07:ae:d9:cb:
83:f3:75:2a:67:e8:cb:53:4e:4a:61:c4:45:e5:e6:
a5:f6:96:b7:30:a8:0d:78:27:65:ec:82:32:68:bd:
a5:3a:24:8a:3f:54:50:83:35:fd:f0:01:1e:01:b2:
27:99:94:a0:87:06:65:38:03:b2:09:aa:b7:7b:bc:
86:19:f5:83:1c:81:66:5a:48:94:1c:a7:19:af:85:
f1:84:da:d9:f9:c9:d0:40:b1:95:ee:8e:2c:f2:90:
7e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C0:E6:42:AF:85:AB:D9:A1:C8:65:2A:6E:63:D8:31:5C:C3:70:8A
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:65:50:73:a7:08:c9:29:99:72:a5:74:4d:1b:4c:d2:03:44:
69:24:f6:11:01:07:da:9f:90:ff:65:ff:8f:f8:f3:4e:a6:4f:
5f:88:76:9b:6d:54:8e:ff:cc:e7:6b:db:15:05:d1:78:6e:b3:
43:f6:27:bf:3d:c0:f1:80:70:00:8a:21:b6:06:79:67:54:5f:
80:80:60:8e:fa:ab:71:12:12:10:03:89:05:48:23:50:35:a8:
99:94:e7:f3:eb:17:de:28:f7:71:4b:dd:57:3e:6f:4d:cc:80:
61:51:57:16:da:dc:3e:42:a1:b1:eb:75:21:c7:44:5e:54:10:
13:ef:0c:f9:a5:05:2d:33:2c:c9:50:dd:63:a8:d2:68:6a:2b:
e8:4e:0c:c5:3c:57:6f:5b:88:e6:ea:bf:f1:d2:5c:08:02:db:
96:08:c8:d2:9d:30:f6:c0:04:ca:e3:62:5b:cf:ae:73:43:70:
3d:dd:a9:7e:01:1d:b2:c2:25:cf:e2:ed:2b:30:74:84:d9:07:
79:4c:44:ad:91:47:03:6f:aa:7f:fc:d7:a6:2c:70:b0:5b:08:
dc:9e:c2:54:f7:94:1b:b2:2b:e2:13:26:bb:07:bb:99:74:83:
1f:70:c4:e7:7e:b5:2a:83:73:99:85:0c:f7:36:03:ff:4c:23:
e4:a3:ee:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:47 2025 by rpki-client