Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
File: O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft (raw, json)
Hash identifier: O7RBuHoSqJthpSfCu57SZ5CylGWW7+8erhbfLvegokU=
Subject key identifier: 4B:6F:C9:B5:FE:E1:DC:40:66:41:C4:FA:96:97:3C:AB:0E:B1:3C:76
Authority key identifier: 3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
Certificate issuer: /CN=3bee6066bb652c648c7a87099d0d9354546060d3
Certificate serial: 01987F79B80D05177992F96554F4101D4D6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
Manifest number: 161D
Signing time: Wed 06 Aug 2025 13:02:20 +0000
Manifest this update: Wed 06 Aug 2025 13:02:20 +0000
Manifest next update: Thu 07 Aug 2025 13:02:20 +0000
Files and hashes: 1: O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl (hash: oeRfNfnRcVzPc+gGTXdHmiC4x/o/TF9P2vrkDFb7UVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:79:b8:0d:05:17:79:92:f9:65:54:f4:10:1d:4d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bee6066bb652c648c7a87099d0d9354546060d3
Validity
Not Before: Aug 6 13:02:20 2025 GMT
Not After : Aug 7 13:02:20 2025 GMT
Subject: CN=4b6fc9b5fee1dc406641c4fa96973cab0eb13c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:ee:e6:91:bb:d4:6e:3b:3b:c8:82:da:2c:
64:62:ef:a6:7b:11:8f:88:3f:e0:19:bf:9e:e0:8b:
de:9d:bf:fa:c6:3c:77:57:2f:89:27:6b:d5:2e:26:
6b:c6:07:44:1d:5f:c5:2e:98:3f:e4:77:f8:fb:78:
85:3f:e1:05:d2:4e:12:11:42:f0:eb:5d:a0:e1:a8:
02:29:d9:c2:32:cf:f8:1f:c6:c7:5e:04:d4:e8:33:
1d:2e:53:e8:4e:15:be:d5:1e:e5:f9:e9:9f:39:d8:
ed:dd:29:73:f9:f4:c2:d4:28:eb:6a:7a:58:be:f2:
6c:03:4b:94:2e:7d:dd:83:52:44:7c:26:ed:60:df:
c7:7f:2b:a8:90:8e:9f:8f:57:2b:9d:b0:9d:f4:e5:
f2:f7:07:58:b6:f3:4a:c4:bb:3d:05:9e:ad:11:8c:
ff:41:fb:1d:0d:d1:35:2a:6a:ba:78:66:c1:ae:c9:
7c:d7:6d:77:e5:8e:b7:7a:b0:da:e0:d8:01:12:17:
81:8a:14:0e:f5:8f:bc:c7:7d:e7:d5:c3:ca:46:6f:
a3:b1:18:5f:77:90:ac:49:48:bc:da:2e:a3:b6:52:
50:bc:8b:6a:4e:4b:c9:0f:eb:85:3f:4b:ce:10:8d:
86:2d:e0:2a:03:5e:f0:60:2c:e0:eb:c9:cf:b1:0e:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6F:C9:B5:FE:E1:DC:40:66:41:C4:FA:96:97:3C:AB:0E:B1:3C:76
X509v3 Authority Key Identifier:
keyid:3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:31:db:b9:68:99:89:e7:4d:4b:61:31:4f:f2:86:3c:98:78:
28:bc:c8:32:58:b6:92:88:2c:86:74:2d:69:57:dd:7d:78:14:
3e:fa:a8:09:36:6c:5e:2f:a0:67:26:eb:d1:7d:93:8a:12:93:
73:a3:21:54:62:21:dd:e1:06:e8:23:b7:49:f0:64:54:27:6d:
89:69:3b:07:2b:2d:b4:8c:8e:02:99:c2:54:a4:c8:40:ca:13:
80:7b:8c:24:fb:32:25:ae:50:67:c3:72:89:69:7d:50:e9:b1:
fd:c6:a6:aa:23:0c:04:b4:ba:51:6a:4c:94:84:16:54:a6:bd:
76:35:96:4b:13:ee:28:20:e5:c1:d9:30:f6:0e:1a:b7:4a:de:
4d:b8:6b:47:3d:4e:b9:8d:24:5d:a8:9e:bf:11:a3:b6:d8:90:
7c:29:c9:eb:b0:f9:1a:77:8b:89:0e:60:0e:10:e6:fe:ac:7f:
73:c8:8d:60:70:70:ec:8a:20:06:61:91:ad:c2:8d:b1:8c:48:
2d:8c:6d:7c:af:09:59:a6:1b:e2:a4:fe:b8:ec:4f:a7:04:0c:
50:bd:fa:38:4c:35:d3:95:da:da:c3:9f:3f:ee:76:a4:dc:05:
e7:f2:10:59:e1:cd:32:fa:aa:08:58:17:dc:7b:37:d8:0a:28:
e9:16:1a:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:08:38 2025 by rpki-client