Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: o62OcLGbm16d6SR+znNroOJeIoVv40hXPs6AqBjkQ+s=
Subject key identifier: 5B:D5:C4:0E:39:66:F6:B3:6F:0E:71:A8:F3:6D:14:A0:6B:86:20:7F
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 0198D7A8E2511DC91F603E660F8F116FF680
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 02E5
Signing time: Sat 23 Aug 2025 16:00:26 +0000
Manifest this update: Sat 23 Aug 2025 16:00:26 +0000
Manifest next update: Sun 24 Aug 2025 16:00:26 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: OHdV+xTMVB3SYIYmxT646cQZbpyAPa7ZN+VfNo9Ah5s=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:e2:51:1d:c9:1f:60:3e:66:0f:8f:11:6f:f6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: Aug 23 16:00:26 2025 GMT
Not After : Aug 24 16:00:26 2025 GMT
Subject: CN=5bd5c40e3966f6b36f0e71a8f36d14a06b86207f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e1:af:96:d1:c4:7f:8d:7a:f1:8d:97:0e:66:
9c:c1:0a:11:f1:c8:32:18:a0:0b:23:3d:ab:9c:d2:
89:1a:2e:b7:ef:47:cf:14:cc:6d:ed:b0:b0:a9:e6:
39:5c:48:27:84:4a:fe:80:eb:fa:81:56:2e:52:cc:
8f:e8:f4:7c:65:73:4c:85:e4:6f:43:74:28:ec:80:
46:a5:fd:9f:94:29:5e:89:b7:ba:ab:c0:8e:39:38:
62:0e:a6:0d:a8:0c:fd:ac:f4:72:42:57:09:8a:6b:
1a:e8:1c:64:05:b8:5b:61:41:88:ad:3a:4f:28:d2:
52:5e:89:55:91:c3:92:92:c7:36:41:12:f6:83:fd:
24:f7:33:10:a1:49:cc:de:59:c5:7a:74:0b:80:83:
4f:f4:a5:b9:87:90:7e:aa:9f:15:32:ea:e3:b9:36:
4e:9b:6c:d2:2a:ed:05:77:95:53:a9:d5:61:7d:ca:
1e:a8:d9:cb:f5:ed:4d:79:e6:44:b5:04:54:09:da:
8e:f5:0a:37:53:f6:94:52:1e:66:c2:1c:e2:be:b8:
5f:de:d4:81:9d:4b:45:b0:0b:4d:3a:53:75:86:e6:
ce:86:bd:9f:d1:5c:75:1b:28:7f:58:ff:78:3d:3d:
c2:aa:a7:cb:43:88:32:99:d9:77:38:59:1c:5f:ac:
3f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D5:C4:0E:39:66:F6:B3:6F:0E:71:A8:F3:6D:14:A0:6B:86:20:7F
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:2f:89:9d:67:33:74:cc:c2:86:b1:28:31:c3:bc:fe:01:f5:
a3:09:59:00:5c:ec:0b:8d:d2:22:ba:a9:ca:24:d9:d0:a8:69:
90:ac:1c:e5:71:11:69:e9:eb:32:3d:2d:d5:80:f5:6c:3f:ad:
eb:9d:90:7d:69:9e:96:c7:f6:5b:70:d6:5c:70:21:67:bf:2b:
63:24:75:66:3b:2f:b5:5c:43:1b:6a:bd:06:a3:85:41:ce:43:
71:f9:25:7e:bf:b1:8b:f6:3e:18:04:6d:55:e3:b8:05:e8:4c:
07:04:0d:03:86:64:38:44:a2:68:06:74:00:c6:1d:a1:a7:38:
cb:e1:a5:c4:67:e8:70:2a:2d:0c:71:ca:df:b3:c7:90:b3:6b:
84:89:1a:eb:61:2c:66:e8:49:f4:48:a0:e8:9b:c8:6a:e6:01:
95:2c:00:01:7a:6f:5a:32:2c:e0:73:f9:7c:4f:10:dd:a1:ec:
6b:11:0f:49:3f:64:b3:35:22:3e:75:d9:86:d6:e5:f7:ad:4c:
3e:03:58:93:33:d5:e2:b2:82:7c:d1:4a:4a:b4:47:29:39:d3:
d0:9f:82:e3:a8:d0:b9:fd:0e:92:7b:02:7d:f4:bf:9b:a1:5d:
5c:e6:9d:6c:44:8b:19:fa:de:ab:f7:2c:46:3f:73:9c:cf:3b:
f1:03:b7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:35:51 2025 by rpki-client