Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
File: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft (raw, json)
Hash identifier: MsPl4regvJYZjjq1MHsy9nhCcwo9p8NBISkRDLmhtQ8=
Subject key identifier: 23:90:9F:3E:FD:4E:B2:81:22:7B:06:C7:59:0F:B2:73:C8:32:FB:72
Authority key identifier: 3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F
Certificate issuer: /CN=3aedd3c7273d9ab364a314da481e5ba51f84296f
Certificate serial: 0198D66151AF7B580027596D1ECA49496917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 10:02:38 +0000
Manifest this update: Sat 23 Aug 2025 10:02:38 +0000
Manifest next update: Sun 24 Aug 2025 10:02:38 +0000
Files and hashes: 1: KfvqJ792oMd34Pp7PugqoZjhvkw.roa (hash: S302iUZeOLpzdWoDN+iw2GhCZ0Q0jKKUkWWXOnKtMnU=)
2: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl (hash: 21TQUGK0IXwTtmu9TRMp+TwnLkBhHstyulaaOYyN28w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:51:af:7b:58:00:27:59:6d:1e:ca:49:49:69:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aedd3c7273d9ab364a314da481e5ba51f84296f
Validity
Not Before: Aug 23 10:02:38 2025 GMT
Not After : Aug 24 10:02:38 2025 GMT
Subject: CN=23909f3efd4eb281227b06c7590fb273c832fb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fa:01:da:b1:90:d7:21:17:1a:d5:e3:f1:3e:
fe:63:72:79:69:d6:6c:ff:e1:88:89:cc:30:0c:8d:
73:5f:2f:fc:47:d9:38:03:78:92:88:a9:2a:17:7a:
ef:8a:7a:34:f0:be:1f:95:6d:b4:a9:72:0a:d9:ba:
3c:63:c9:22:59:ba:47:dc:0c:fc:f4:3f:7f:d8:10:
68:50:c8:f1:c2:ee:f7:d1:6a:cb:dc:96:4e:34:3f:
1e:41:8b:2e:81:57:fa:f5:1b:84:68:60:69:ee:e5:
13:d4:71:e5:64:fc:28:5f:f3:c0:8c:90:2c:30:f1:
76:a1:d7:33:1c:a9:f7:ae:4f:dd:5f:aa:1a:8b:5f:
98:32:a3:1d:80:d3:38:17:c7:33:c6:a4:7e:41:5e:
71:d3:6a:09:e9:28:87:98:68:4e:f2:ae:f4:54:47:
57:9b:5a:c7:90:c2:86:72:80:03:ec:01:0a:75:7d:
71:03:68:49:bc:66:6a:62:63:1e:91:51:32:61:ec:
f5:1b:4e:e8:55:87:72:a6:49:5f:5a:fb:10:9f:7e:
3d:10:fa:1c:e5:42:66:96:18:4d:e7:7e:49:c1:39:
ac:6b:25:05:73:dd:cb:e4:f5:ea:c3:95:87:75:bd:
20:06:6e:fb:77:1a:44:83:af:58:a6:73:92:8e:c0:
58:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:90:9F:3E:FD:4E:B2:81:22:7B:06:C7:59:0F:B2:73:C8:32:FB:72
X509v3 Authority Key Identifier:
keyid:3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:6f:17:2b:c1:fb:94:95:5b:65:0e:d8:c5:7c:6e:69:17:46:
3e:4c:40:fe:97:f5:66:65:30:8b:2f:fa:cd:5b:68:26:83:a4:
83:05:f8:76:5b:43:c4:dd:03:21:8d:aa:f4:9c:7c:66:e8:71:
39:74:9e:1e:fc:4d:70:b9:fa:7c:95:cd:f4:d7:74:08:30:99:
4a:f5:bd:03:8a:52:cb:08:4c:f3:3c:02:d5:54:6a:a6:75:96:
33:e6:12:a9:24:26:9f:8c:0b:40:9d:b7:a3:f2:d4:0b:f4:99:
71:5e:f1:56:2d:8b:3a:3f:48:82:6b:10:7b:62:ec:3a:0d:8b:
4b:7b:0c:a8:01:5c:96:5e:5d:58:a2:cd:4f:ba:64:e8:dd:6b:
6c:b6:39:b4:a2:9d:d2:53:ea:a5:4c:87:33:f5:09:bc:c2:23:
e8:44:a1:9e:e9:aa:57:e0:d8:6e:a5:59:35:ea:74:e3:24:33:
89:3f:0f:e8:7f:63:c4:cb:7c:6c:f3:78:02:81:de:12:56:fa:
d5:0e:e5:46:a9:d4:ad:22:20:33:15:bf:c9:c1:80:c7:e2:5a:
24:5c:2e:2e:10:49:d2:2c:ae:24:89:0f:40:79:bd:78:ac:39:
81:6f:37:35:7b:ee:f9:20:a9:a5:a9:bb:f0:e0:61:61:5a:08:
4a:b3:3e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:22:23 2025 by rpki-client