Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: eiBMR8XWs7M9B3hkS9fHOaE8SbO259Bnt3HHDruxfAE=
Subject key identifier: F5:B7:2F:CC:9C:92:84:95:CD:7A:1B:D6:3D:C8:65:CB:4E:D7:71:BA
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 0199FD342D3788AFC7F352B47FF5BBD39BB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 037D
Signing time: Sun 19 Oct 2025 16:01:19 +0000
Manifest this update: Sun 19 Oct 2025 16:01:19 +0000
Manifest next update: Mon 20 Oct 2025 16:01:19 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: Dg1xMrTLXwSsCvOuey5OtV4sEAUdZQGNjx6p1ekJmpo=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:2d:37:88:af:c7:f3:52:b4:7f:f5:bb:d3:9b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: Oct 19 16:01:19 2025 GMT
Not After : Oct 20 16:01:19 2025 GMT
Subject: CN=f5b72fcc9c928495cd7a1bd63dc865cb4ed771ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:52:e4:74:54:0e:b5:e2:72:4b:07:75:d2:4b:
4a:47:ab:a1:9e:e5:8a:a7:63:74:42:3f:84:72:3f:
8f:d7:b9:99:61:de:99:b0:84:47:c1:b7:cb:67:b9:
ee:b7:26:28:9b:0e:b2:0f:52:66:3d:ab:6c:21:fc:
e6:09:f3:d8:9a:88:6e:83:63:20:d0:9c:09:0b:c1:
7f:e4:2c:c4:c7:0a:5b:9b:b8:6e:ac:4a:16:ff:42:
2e:9d:cc:d6:d1:0e:6f:31:22:92:4c:49:d4:37:b9:
e3:4b:f7:e2:1c:ca:19:af:35:f0:0a:f8:ee:50:6d:
20:cc:6a:3e:d2:89:4e:30:c8:01:1a:39:63:1e:9f:
c6:2a:d3:34:a8:bb:93:36:ef:d5:ae:7b:55:81:82:
68:d6:ae:3e:5f:6f:d6:42:25:09:eb:47:b3:8d:37:
64:43:9b:cf:00:2d:80:07:3a:a5:95:f3:c4:7a:b2:
e8:a1:c9:c0:97:ae:a7:5c:c9:98:14:da:d1:5c:b2:
ab:99:4f:71:5e:c1:f1:f2:b5:ad:bd:38:b5:17:e4:
1a:bc:01:47:81:ef:b5:c2:2b:7b:3b:2f:19:18:e1:
84:21:0a:8d:c0:d1:97:be:1e:ab:18:ae:6f:9c:af:
ff:81:6f:d4:96:cf:5b:bc:17:8b:d5:69:e7:f7:f9:
76:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B7:2F:CC:9C:92:84:95:CD:7A:1B:D6:3D:C8:65:CB:4E:D7:71:BA
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f2:1f:dd:37:bb:8e:f0:c1:2f:f9:8b:47:3b:fd:0b:4d:75:26:
6d:31:08:bd:df:d9:18:0f:6b:1e:92:c7:d5:d2:b8:35:8a:b3:
aa:9d:71:e1:1d:a2:dc:89:98:3f:d4:ea:76:5e:d9:2f:38:30:
2e:0f:b1:27:4f:a2:5c:0f:77:f5:ae:8e:40:6d:1e:aa:38:d9:
7e:9e:32:e7:eb:45:19:f7:a4:7f:2c:4f:1c:f6:93:22:cd:6d:
95:89:79:f3:71:38:e1:ba:5c:57:d0:20:7c:c6:de:4c:71:a5:
72:b3:e4:86:d7:20:70:30:7b:96:c5:cb:f8:26:ef:a5:54:0d:
97:71:6c:5d:d1:40:3c:c4:af:28:43:2e:43:97:6b:75:b9:21:
bb:96:77:2e:b6:91:18:e7:7d:d5:94:3c:9b:c9:77:1d:51:da:
52:b9:30:04:65:15:3d:cc:a3:eb:8c:93:fd:0f:4d:87:95:b1:
bf:db:c8:ab:33:b1:0a:ba:8c:81:e5:dd:cf:62:9c:ac:8d:e6:
a9:e1:d2:5e:d8:4b:0e:d8:c9:2f:12:44:db:9d:10:67:9e:09:
4f:93:17:36:81:79:78:cc:e4:80:2c:73:cb:c3:a8:79:ae:44:
86:75:2d:35:a5:4a:b8:73:fb:6b:cf:c5:93:03:e6:61:d3:d4:
f9:de:1e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:48 2025 by rpki-client