Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: 916OUJaB7dlO6YG9v6o5kWV5FEMqkaLwF3GqjD2uPEE=
Subject key identifier: 8F:35:60:D1:18:57:F0:36:EE:6B:23:B9:04:4F:29:63:7F:1D:17:D4
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 0198D5BBC2C7751407BDE865E651D76299EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 085B
Signing time: Sat 23 Aug 2025 07:01:48 +0000
Manifest this update: Sat 23 Aug 2025 07:01:48 +0000
Manifest next update: Sun 24 Aug 2025 07:01:48 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: 2HARf3BJM43TTVEcRj2YTr7XHB4OhNfp84UTrUUtvRM=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c2:c7:75:14:07:bd:e8:65:e6:51:d7:62:99:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Aug 23 07:01:48 2025 GMT
Not After : Aug 24 07:01:48 2025 GMT
Subject: CN=8f3560d11857f036ee6b23b9044f29637f1d17d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:b2:05:c6:6a:a2:4e:63:2a:09:da:f9:64:
da:27:70:98:48:53:43:b5:f9:dc:4b:f7:35:5d:08:
cd:72:c3:33:31:71:60:3d:8e:6e:15:f4:a5:cb:9b:
d9:ae:f7:05:9e:22:7e:87:1d:f4:c4:c5:11:1d:46:
e9:ef:6a:fb:57:b9:45:f6:cb:c1:45:df:fd:39:6f:
76:1e:be:c5:45:0d:6b:3b:d2:cf:7b:4f:ca:fd:83:
75:78:6e:fe:a2:8f:8c:6d:07:95:11:54:72:a9:1b:
89:5e:75:6c:1e:01:bd:b5:e6:c0:17:de:7b:c4:d8:
08:64:53:83:b1:40:96:12:8d:cf:78:66:ef:f0:2e:
3b:cc:1d:56:3e:5f:08:a6:af:27:84:b9:e9:d4:19:
91:5f:72:29:0d:25:14:bd:d7:50:99:bb:77:ad:f6:
c7:f8:91:fa:42:89:c0:8a:c0:37:d1:7c:b1:c5:06:
ab:4d:6d:6b:05:60:2d:39:25:2b:68:db:a7:41:b7:
4c:4d:e0:a6:36:e1:58:61:22:93:23:66:a8:1f:fe:
8d:71:c2:d8:f0:2c:77:af:32:d6:d7:fa:1b:b5:ca:
8e:de:87:68:58:fa:f1:c1:9f:cf:99:18:c9:41:92:
cc:f6:3c:2d:e0:e0:21:36:c9:54:85:fe:35:80:c1:
3b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:35:60:D1:18:57:F0:36:EE:6B:23:B9:04:4F:29:63:7F:1D:17:D4
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:53:9a:3a:d9:7a:4b:d4:fb:05:3e:f2:ce:82:2c:2e:ec:96:
f6:fc:d3:96:8e:5c:0d:89:64:8d:b0:94:0d:88:fa:95:44:d1:
ce:15:7f:d3:95:00:cd:75:0f:bf:d0:65:e7:eb:bb:c2:7f:3c:
ee:d9:dc:30:91:31:d4:1a:0d:87:43:7c:cb:7c:66:5d:46:8e:
1d:4e:b3:4f:60:56:6e:1a:49:70:c6:25:bb:4d:c4:60:88:65:
9c:a7:40:c1:50:13:ee:bb:ee:6a:30:b6:59:e1:2f:91:d3:ed:
12:cd:76:57:f8:49:fd:51:b6:47:11:d7:7a:8f:a5:3f:25:16:
aa:5c:45:ce:f6:fe:7c:23:cf:5c:e0:8d:dc:63:0c:9d:5f:48:
b5:71:b6:23:18:9b:29:f7:7a:f5:d4:69:28:00:b1:49:d2:31:
26:bc:80:a0:96:db:b1:a5:84:f0:23:4a:2b:32:62:f8:12:01:
e4:a8:d9:63:e3:6f:0a:b2:55:ba:77:f2:19:fb:2d:d5:91:3c:
76:7e:43:4a:14:75:e8:bc:db:f2:77:c9:ff:47:4d:0a:c7:68:
1c:57:92:11:e6:b2:d6:07:6a:7a:a1:80:3e:f5:7e:d8:50:44:
3d:e6:7a:0c:de:6b:6a:ba:4f:45:64:b0:73:e8:30:5c:78:79:
1f:9a:14:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:13:17 2025 by rpki-client