Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: JN7kn9sbCRGjfJKgpCX58q7nOmFv3fbfriyfH9D5nDc=
Subject key identifier: 44:9B:69:38:80:C3:EA:98:28:B5:8C:B4:02:53:13:2B:C8:C8:1F:55
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 0199FC8F46164F12B143A0753D6F5A1EFD3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0FA6
Signing time: Sun 19 Oct 2025 13:01:11 +0000
Manifest this update: Sun 19 Oct 2025 13:01:11 +0000
Manifest next update: Mon 20 Oct 2025 13:01:11 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: Ljd3OhGhNuD1geaig7KApjAMX/cyZhvFFzguZWP+HX8=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:46:16:4f:12:b1:43:a0:75:3d:6f:5a:1e:fd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Oct 19 13:01:11 2025 GMT
Not After : Oct 20 13:01:11 2025 GMT
Subject: CN=449b693880c3ea9828b58cb40253132bc8c81f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3a:96:ae:1b:42:8a:79:33:91:bd:82:8a:cf:
a3:12:68:62:00:0a:46:56:bf:59:d6:1b:5a:ba:50:
99:93:36:1b:61:05:89:c8:4d:cc:a4:ab:8c:95:f0:
ce:5c:6c:a3:fe:66:b5:14:57:9d:b3:22:ea:b0:83:
9a:e3:99:5c:be:4b:23:54:c2:65:4f:13:18:87:be:
54:d1:a8:c8:29:64:e8:98:16:4d:2d:d4:f3:c6:9a:
21:98:f0:06:24:4c:83:9d:32:d2:84:b9:1b:0d:bc:
d5:e6:bf:0e:5f:4e:a7:ef:a7:fd:7d:7a:48:81:c4:
39:29:66:d3:f2:98:0e:b8:d1:10:f7:74:b9:ba:68:
59:4b:57:ff:c2:cf:30:c2:42:4f:32:39:a4:8a:3b:
26:68:8d:b9:d0:37:05:cb:73:28:5d:59:b3:8c:d8:
08:e9:fd:da:3f:e6:aa:05:51:72:15:eb:6a:5c:38:
1e:3b:42:d0:e3:c5:d0:64:cc:3c:b0:20:94:32:5d:
a6:d9:be:96:67:09:62:23:ea:da:56:5c:41:f3:b7:
46:2b:e1:28:47:8d:d4:18:a2:e9:39:b0:76:ec:d5:
6b:d2:95:0c:b8:3d:84:9b:7a:27:82:a1:aa:c8:e5:
4f:22:20:cf:43:17:96:f0:0e:2d:19:60:b7:b1:69:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9B:69:38:80:C3:EA:98:28:B5:8C:B4:02:53:13:2B:C8:C8:1F:55
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e2:26:25:1f:4b:9e:aa:46:2e:42:4d:58:ad:87:4a:4b:fe:
5f:dd:3f:75:d2:52:0c:56:42:ed:f2:73:a6:5f:6d:66:64:f4:
b9:5b:65:eb:e8:bd:6e:6e:58:c3:4c:df:72:eb:f7:bc:1f:d5:
2e:00:ea:15:98:54:59:29:44:8d:a6:ec:08:03:7c:82:8c:14:
2f:95:3c:72:dd:8f:cd:9a:cb:2f:fe:48:ba:81:7b:ff:67:d5:
9f:29:d9:39:93:65:07:b4:52:2e:b2:e5:b5:07:4e:ec:b0:50:
03:be:95:47:ac:a2:60:91:14:4d:dc:f5:de:20:93:6d:c4:ee:
b7:41:0c:ea:db:71:64:28:ce:3b:13:96:d5:e2:3e:7d:50:6f:
da:ce:4e:8d:3e:db:0c:0b:64:95:e9:20:a2:b0:6e:d6:00:db:
75:45:31:cd:c6:b3:18:cf:eb:ae:a3:74:ce:67:0f:c5:ed:01:
28:4d:e8:07:ef:ed:4e:1b:37:04:ae:e0:35:5c:2c:8f:bb:92:
bb:b4:1b:42:8f:1e:42:3f:b1:a2:a9:fc:d4:f8:02:ce:86:fc:
4b:1d:55:f0:99:0c:3e:43:63:80:46:3e:e3:61:d0:21:13:70:
c0:90:8b:ed:f6:17:da:ca:7b:8c:6e:1c:b2:b0:12:bb:9f:9c:
9b:b1:4d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:49 2025 by rpki-client