Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.mft
File: O4RSPDky4tGYBGI0uWLg3FGr9YY.mft (raw, json)
Hash identifier: LQlsJGzNbmtjM+B78vqW29UPkPJ+FRDTOmti0LnAWcA=
Subject key identifier: 42:F4:82:7A:5A:2F:9A:31:41:C0:B8:EC:38:B1:08:B5:8D:BA:CC:89
Authority key identifier: 3B:84:52:3C:39:32:E2:D1:98:04:62:34:B9:62:E0:DC:51:AB:F5:86
Certificate issuer: /CN=3b84523c3932e2d198046234b962e0dc51abf586
Certificate serial: 0199FBEA8791EAA30456C469DB5057FADD4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4RSPDky4tGYBGI0uWLg3FGr9YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:01:15 +0000
Manifest this update: Sun 19 Oct 2025 10:01:15 +0000
Manifest next update: Mon 20 Oct 2025 10:01:15 +0000
Files and hashes: 1: O4RSPDky4tGYBGI0uWLg3FGr9YY.crl (hash: eY5wR47COsSLZe/5NfRHEtYq3C7HFOXZ/rvDcVt9JOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4RSPDky4tGYBGI0uWLg3FGr9YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:87:91:ea:a3:04:56:c4:69:db:50:57:fa:dd:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b84523c3932e2d198046234b962e0dc51abf586
Validity
Not Before: Oct 19 10:01:15 2025 GMT
Not After : Oct 20 10:01:15 2025 GMT
Subject: CN=42f4827a5a2f9a3141c0b8ec38b108b58dbacc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:20:18:08:4e:8c:16:f1:a3:27:89:28:0e:
66:ec:e3:2a:a4:a7:a8:67:2e:ee:28:fb:1f:5c:cc:
41:7d:b6:8b:89:8a:9c:cd:5f:58:7a:1a:f2:15:f9:
dd:1d:db:52:d2:fa:24:1a:4a:c6:0c:10:38:9c:2b:
9a:e2:96:1d:ca:b7:8e:ac:2e:54:e7:a9:41:2b:41:
ef:11:de:ec:0c:c5:42:cd:ae:75:ac:40:dd:b0:4b:
84:be:5c:e4:ea:a7:3d:a7:90:e1:55:e4:4e:bf:93:
9a:b5:0a:48:42:ae:c9:83:82:05:cd:18:53:f9:06:
61:0b:eb:9e:e8:ae:d8:61:dc:b3:a9:c5:e3:71:eb:
9d:b8:b2:69:f7:ba:c1:f3:e7:06:f0:ab:75:13:be:
26:65:94:24:f8:6d:c6:99:1d:7f:11:36:46:a8:aa:
ef:e4:e5:ba:34:b6:fc:e1:96:88:84:ad:5d:4c:41:
c2:ea:f1:7e:44:76:ce:ec:41:c3:c9:0c:39:b7:97:
9e:a8:42:a6:f6:09:02:25:9c:8d:c9:90:52:6a:3a:
e0:1f:68:6e:e4:83:89:9a:df:1a:b2:e5:d7:d8:76:
be:7c:4c:79:75:59:8e:ee:11:80:f1:28:5f:9f:e7:
80:d6:a9:20:24:5c:d9:bd:fb:3b:28:23:63:37:68:
33:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F4:82:7A:5A:2F:9A:31:41:C0:B8:EC:38:B1:08:B5:8D:BA:CC:89
X509v3 Authority Key Identifier:
keyid:3B:84:52:3C:39:32:E2:D1:98:04:62:34:B9:62:E0:DC:51:AB:F5:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4RSPDky4tGYBGI0uWLg3FGr9YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/640a5e-ed52-47b0-bcff-bdf5c780742e/1/O4RSPDky4tGYBGI0uWLg3FGr9YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:50:45:74:fc:67:f9:c4:06:20:e9:db:bc:32:4b:09:c3:25:
99:fa:3e:0a:fa:58:66:76:90:a7:d5:ae:19:a5:59:2d:bb:d0:
1b:61:7a:36:7c:fb:76:9d:4c:54:23:fc:c7:96:b3:5b:50:85:
20:ec:e1:3f:32:70:e9:64:86:9d:27:9c:6f:f0:e1:a9:1e:66:
ff:6b:69:2e:a1:c4:a7:08:c8:80:a9:4b:ec:13:72:95:80:33:
5e:19:81:2e:4b:c7:5c:55:4e:a9:3c:3c:c0:2e:f2:5c:92:00:
5a:b8:f5:c3:d2:15:bb:38:46:75:aa:e4:1c:8a:af:a4:fd:77:
c7:91:32:63:95:22:ec:e7:77:d9:03:26:f4:66:6f:73:f3:04:
b5:23:79:7c:30:8a:0e:37:cf:ff:3e:04:ee:86:ce:e3:1c:c8:
f2:95:64:6f:36:1e:85:e1:e1:c2:46:18:75:48:f2:e3:6f:a4:
9b:c1:b3:81:28:e9:fb:00:8a:77:b4:37:ca:45:b0:40:5c:06:
d7:b2:74:fc:59:03:0f:4f:94:2c:9b:bf:76:7f:7f:86:cd:46:
9d:43:17:15:09:18:99:5f:0c:37:6c:a6:14:34:1d:52:a8:3b:
84:a9:1c:1a:84:8a:ae:a4:f2:31:a3:d8:e3:f2:fb:d2:05:a0:
29:71:85:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:27 2025 by rpki-client