Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
File: O9VD0EZeovb-uCjxhQSwP0A6xmk.mft (raw, json)
Hash identifier: aXvOBIYZa56TL3tU46Qn/WsFgvI0QC5blX2sfgXdwO4=
Subject key identifier: 77:15:7C:90:E6:DA:14:0A:65:C5:EB:9B:F1:BA:24:DE:8C:62:52:15
Authority key identifier: 3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
Certificate issuer: /CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Certificate serial: 019896A6B5A7B541119EEBA2F0A71BC856CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
Manifest number: 1063
Signing time: Mon 11 Aug 2025 01:02:44 +0000
Manifest this update: Mon 11 Aug 2025 01:02:44 +0000
Manifest next update: Tue 12 Aug 2025 01:02:44 +0000
Files and hashes: 1: O9VD0EZeovb-uCjxhQSwP0A6xmk.crl (hash: W8IpKvYT94KldeLL24YNDPOOoxTbXri09sEi43StkSQ=)
2: x4WRkvTk4Qfvxow9VzZXx3rDXCk.roa (hash: RyOgBcFttRpc6DEmQeaGYO0tOWZlEQp1Uhl8vvwB5VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:b5:a7:b5:41:11:9e:eb:a2:f0:a7:1b:c8:56:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Validity
Not Before: Aug 11 01:02:44 2025 GMT
Not After : Aug 12 01:02:44 2025 GMT
Subject: CN=77157c90e6da140a65c5eb9bf1ba24de8c625215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:84:e7:cb:7a:79:77:4f:35:5d:a1:16:68:a3:
19:12:5f:1b:61:8a:2d:67:da:6e:c8:2e:eb:8e:f0:
e4:75:a7:16:5d:9a:05:07:b0:42:e8:e9:75:43:d6:
05:47:e2:4e:d6:38:a3:94:f9:6f:64:a7:11:d1:b4:
70:1a:29:2b:65:60:8c:19:5f:78:d1:55:c8:41:f4:
3b:29:7d:6a:b3:77:4f:fa:67:b3:91:49:b8:d8:b2:
34:4d:a0:97:f1:18:af:11:ff:be:d9:ad:35:d2:ba:
2b:4a:61:3e:32:59:69:c5:35:f3:85:9e:18:8d:36:
b7:ef:27:0e:c2:a9:50:e2:c8:b3:20:c1:03:0d:c9:
a3:95:86:6a:dc:e6:77:c9:6e:80:27:af:43:e5:0f:
e4:63:11:fb:98:59:58:8c:e3:72:c0:cd:6e:05:09:
f7:49:78:fc:0a:66:1f:13:97:20:31:55:ac:f7:1f:
01:56:44:96:79:f5:78:ab:12:6d:75:44:63:b5:53:
5c:e9:65:83:cd:3e:d3:4e:f0:62:7a:bb:2d:2d:d2:
fc:b7:1f:67:92:6a:69:86:98:66:bd:63:c7:fc:db:
82:98:30:7e:d8:e7:b1:16:4f:d0:93:f3:11:b6:5d:
ca:02:dc:24:48:55:8a:40:34:e8:a2:c6:6e:b8:0e:
36:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:15:7C:90:E6:DA:14:0A:65:C5:EB:9B:F1:BA:24:DE:8C:62:52:15
X509v3 Authority Key Identifier:
keyid:3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9b:f5:65:02:fc:32:c7:64:e2:26:ef:ec:eb:3b:a3:6e:c3:
4f:22:2c:2f:f3:da:e9:18:07:6f:70:20:35:c0:de:a1:45:63:
66:53:e7:e7:47:51:85:eb:e0:32:c1:1b:17:fb:fe:19:2b:4b:
f2:fa:01:a8:10:d2:5c:49:22:c9:51:9f:74:26:52:d0:ec:77:
6d:05:bb:5b:a3:f7:3c:3d:ef:ee:90:da:60:de:80:ad:55:71:
ee:ee:6a:f0:3e:1b:0e:f3:47:dc:49:eb:3f:09:11:59:9c:22:
5f:52:18:eb:8a:cc:b6:db:b3:ab:ce:72:73:6a:32:60:e9:8a:
94:44:95:4c:66:8f:c0:83:44:a3:59:22:c4:7b:93:1b:52:c3:
bf:57:89:07:eb:0f:55:80:14:05:97:7e:cc:99:67:b4:da:3b:
90:93:f7:be:24:57:8d:f6:37:10:d7:61:f5:23:c9:1b:d4:a2:
8e:9f:36:6f:b6:41:b6:0c:e4:23:57:3e:20:d7:fa:af:93:78:
3b:54:3c:c7:fb:01:35:56:41:62:6b:cd:71:14:93:04:8d:31:
63:fc:30:3b:66:e6:16:a5:ca:13:47:d7:e7:f6:c7:91:13:64:
12:ba:a0:90:b3:42:fb:f7:c5:6d:d4:a1:34:ef:33:98:dd:61:
37:bd:c7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:28:52 2025 by rpki-client