Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: 1xaU03CfWHmg/ywYvlSmPxQDbYWJCOEqH2d0Nmmbvnk=
Subject key identifier: C5:81:7F:44:A4:51:05:38:1C:3B:31:2F:44:04:3C:46:FB:F5:01:CE
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 0199FD3434041B29BB3412FCB87367171BC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 08F4
Signing time: Sun 19 Oct 2025 16:01:20 +0000
Manifest this update: Sun 19 Oct 2025 16:01:20 +0000
Manifest next update: Mon 20 Oct 2025 16:01:20 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: HtuG1mFJHKzwQVz/iwKT25ItZKoOVBkPHjVtIhILcG0=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:34:04:1b:29:bb:34:12:fc:b8:73:67:17:1b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Oct 19 16:01:20 2025 GMT
Not After : Oct 20 16:01:20 2025 GMT
Subject: CN=c5817f44a45105381c3b312f44043c46fbf501ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:a9:94:57:69:a0:d1:4d:02:85:89:e8:19:
79:52:0a:94:fb:f7:25:74:c3:e7:19:8a:3e:0d:15:
52:14:ef:75:06:82:9b:8f:59:bf:f6:18:c4:47:a4:
74:4f:81:bb:d8:7c:84:45:e6:e6:5e:5e:09:1c:97:
26:4e:7e:7b:04:d7:2e:f1:18:1d:ad:3f:c7:0e:91:
a4:4e:d8:a4:82:03:80:4f:08:eb:fe:47:9c:6e:33:
43:1f:23:e1:90:3e:67:3f:b1:0f:3e:af:b8:bf:97:
62:65:2d:a4:e3:b4:eb:35:85:b0:1b:a2:96:a1:06:
02:13:c2:15:9c:f1:db:9f:d1:5c:71:9b:c2:f1:62:
06:d2:63:f7:85:ea:e7:84:bc:83:41:08:41:63:56:
d7:80:c8:51:e2:f6:84:dd:02:60:b1:38:6b:e2:02:
d1:1c:0d:78:86:63:16:5b:90:3d:3c:76:e2:c5:da:
7e:00:b5:85:d2:c6:3f:54:40:4e:b8:98:b9:8e:4b:
49:84:5b:8f:15:84:94:52:d8:f4:81:56:14:63:05:
84:20:40:04:4b:d7:1e:c4:e0:5a:2b:af:85:c6:1f:
ca:4a:c9:db:00:45:1e:18:59:34:00:50:eb:11:f1:
14:4a:3a:5d:5b:cf:a5:65:f4:a6:2c:10:55:4d:78:
f1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:81:7F:44:A4:51:05:38:1C:3B:31:2F:44:04:3C:46:FB:F5:01:CE
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7a:28:e5:cf:2f:51:a4:4b:85:c8:cc:55:67:16:6a:d4:09:
5f:2b:06:d1:d6:74:28:60:0a:37:ca:b4:07:67:ee:c7:53:26:
4a:80:e1:1b:35:19:6e:ee:54:6f:67:c2:be:70:bc:14:03:2b:
e9:c0:c4:05:a8:94:0e:5a:6b:e0:a9:1d:d5:8b:04:97:51:09:
db:99:76:a7:de:fd:15:63:ac:db:e6:b4:a5:0b:6d:a1:2f:af:
7d:12:fa:50:c7:00:f7:5a:17:12:2e:d1:2b:a2:eb:99:45:38:
85:c4:dd:26:b9:54:15:a5:3a:96:5c:42:ee:88:d5:4c:26:0c:
20:a3:0c:78:6b:2c:0d:7c:ba:b1:23:6a:c6:b6:0a:55:8c:81:
59:32:92:33:3c:3a:16:b8:93:f8:a1:1a:7f:2a:de:db:ad:cd:
a1:75:46:05:4f:b4:bc:50:03:aa:09:93:6b:b3:e1:0c:b3:88:
f7:66:19:06:47:1d:25:7c:98:5b:5b:44:85:c3:77:bf:0a:63:
85:99:2f:30:73:91:a0:52:ce:29:8a:3a:09:9b:61:2f:61:82:
b5:4a:0b:c1:8c:f0:44:b5:f8:17:ad:6d:15:af:15:a3:b2:2e:
24:f1:e1:2b:d0:55:fb:02:75:da:05:03:6f:6a:98:7c:be:ea:
3d:3d:6a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:47 2025 by rpki-client