Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
File: OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft (raw, json)
Hash identifier: HdHred4I4xV7YikFgshQWUf13gmybR8I/4bdHZYrIVc=
Subject key identifier: 12:48:66:8A:6F:9F:FD:3A:0C:52:3E:BA:4C:A2:B4:FF:9C:03:40:F1
Authority key identifier: 38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
Certificate issuer: /CN=38f23798b67393e4039e3f9555e214d6737c1351
Certificate serial: 01989DB96713FC8A7BA13F2C36DABA690CC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
Manifest number: 162F
Signing time: Tue 12 Aug 2025 10:00:29 +0000
Manifest this update: Tue 12 Aug 2025 10:00:29 +0000
Manifest next update: Wed 13 Aug 2025 10:00:29 +0000
Files and hashes: 1: OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl (hash: EYGRhmwWUkOmjcIvhKHALJ/Gtz05r/Q793tsZ1Y+jMc=)
2: Vpoq5ZpSGDP-ZXCmZlKnhArAK_Q.roa (hash: 38YyvusiUhw1DBRUCOnZouY1Y0JBlQCEkMbtx6PZeK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9d:b9:67:13:fc:8a:7b:a1:3f:2c:36:da:ba:69:0c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f23798b67393e4039e3f9555e214d6737c1351
Validity
Not Before: Aug 12 10:00:29 2025 GMT
Not After : Aug 13 10:00:29 2025 GMT
Subject: CN=1248668a6f9ffd3a0c523eba4ca2b4ff9c0340f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:a3:e6:ee:99:50:0f:09:ea:e0:c7:db:78:
45:11:65:f0:cd:0f:dc:a5:e8:2f:79:2b:4d:73:69:
e0:43:64:fb:fd:b2:b3:4f:e1:7c:c0:5a:85:17:77:
ed:fa:ba:3a:69:05:c5:03:12:5c:39:43:09:e4:8c:
fb:1e:73:42:57:f2:2e:62:3e:e7:12:63:88:b6:c5:
3e:e2:d6:aa:b6:5a:5c:75:a7:c5:b8:e1:cb:1e:1c:
95:a9:9d:a1:13:ef:1d:f8:37:59:31:4d:80:41:5e:
fd:4c:fa:31:f9:d4:6f:1c:3d:2c:83:b1:c6:93:cf:
30:58:0b:d9:0b:4f:da:d0:f6:3b:49:e8:61:6a:2a:
cd:3e:bd:2f:fe:83:2d:da:bc:fe:0c:0c:a0:91:6e:
54:e8:db:4b:61:4f:68:98:f0:25:89:03:68:13:61:
7f:01:39:76:fb:d0:5b:15:c3:be:49:6b:18:ad:3a:
d9:e6:7e:5e:0e:d8:b6:27:69:e3:a5:4e:98:5e:7f:
43:72:76:79:43:b9:97:37:56:7c:1b:c2:4e:02:fd:
4a:b8:31:95:9d:5e:5e:e3:ed:66:d7:00:1c:5b:dd:
b9:65:86:c3:c5:4e:bc:fc:23:10:6c:59:53:b8:7a:
4a:6c:d8:30:2a:a0:94:75:14:a6:bc:c7:7c:b5:ec:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:48:66:8A:6F:9F:FD:3A:0C:52:3E:BA:4C:A2:B4:FF:9C:03:40:F1
X509v3 Authority Key Identifier:
keyid:38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:c6:27:f8:70:70:39:61:e8:76:da:95:1f:ba:11:b4:b6:b0:
29:1b:9c:77:53:d4:e8:10:79:36:05:41:a2:60:a8:4e:3b:8f:
30:e5:22:ff:80:0c:0e:d6:76:83:75:b6:b2:9b:3c:9f:bb:63:
00:17:e0:ac:34:74:0c:01:25:0c:4c:97:d7:d3:0d:fa:51:e2:
37:4d:48:73:ab:a2:17:a3:e4:a8:07:24:a5:74:1a:76:8a:b5:
c5:9c:88:03:0b:31:24:ca:63:c9:60:cd:08:36:c5:56:74:36:
11:48:9f:52:02:50:c1:e9:cd:0d:2d:48:55:54:69:94:27:8a:
47:57:96:ab:2c:7d:98:73:0d:3b:6f:3a:27:3b:32:a7:ec:4f:
65:06:bf:d3:2b:81:32:89:76:fb:1a:f6:5b:23:1a:59:04:6e:
e2:be:6e:ab:6b:23:24:ca:d8:32:93:7a:b1:c7:65:b5:40:01:
10:ad:97:d2:16:5c:64:54:e9:b5:24:72:03:bb:1a:50:a1:6b:
c2:83:8b:96:2b:d6:68:e0:cc:6b:50:23:94:91:1a:1c:da:5e:
d4:1a:3d:d4:db:8e:2b:53:b4:e0:ec:5c:96:d3:55:43:d0:fb:
db:1c:bd:16:98:ec:26:3c:13:01:71:14:10:98:71:d4:13:bd:
d1:44:ba:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 13:44:21 2025 by rpki-client