Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: xChCNkhlVxzu/vNgAJIxx78oPngNlVb4ocb1nKIGl2A=
Subject key identifier: E6:F7:90:67:1D:B0:CD:93:FA:A2:8B:24:EC:49:DE:37:24:21:FD:8E
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 019872CF9AEA321F1BDCD793D42CC4758898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 09A7
Signing time: Mon 04 Aug 2025 02:01:04 +0000
Manifest this update: Mon 04 Aug 2025 02:01:04 +0000
Manifest next update: Tue 05 Aug 2025 02:01:04 +0000
Files and hashes: 1: 5-5dw7BQUILpSuBDRasWi_TUWvo.roa (hash: hm9ysYElh3sbrH5I7xkNigsOqhpocQkIVZkL8ahr+uU=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: Ncw6h3ODKcMW5QoFdZEEuD9cXScK5A6mM+fpx+tm1Ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:9a:ea:32:1f:1b:dc:d7:93:d4:2c:c4:75:88:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Aug 4 02:01:04 2025 GMT
Not After : Aug 5 02:01:04 2025 GMT
Subject: CN=e6f790671db0cd93faa28b24ec49de372421fd8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:92:23:fb:ed:6d:6b:8b:9f:6f:3d:bb:b3:6e:
d3:eb:c1:62:72:57:79:be:84:45:89:b1:e8:b6:a6:
79:0d:98:fc:2d:4b:f9:81:e8:6f:28:0b:79:cd:e6:
ee:42:7b:fe:1a:98:cd:89:84:38:a6:ba:e1:7d:99:
c7:9c:66:c0:cd:9d:b9:99:90:0c:01:30:c2:e1:ed:
f8:3e:be:a7:05:00:2b:0a:4d:f3:aa:5a:0d:7d:9a:
3b:70:34:0f:d8:aa:76:d9:67:70:ce:2a:89:cc:12:
65:49:de:98:ba:42:b7:9e:8b:7b:f2:88:68:aa:fb:
89:f6:3b:13:b1:9d:8c:d4:40:ae:80:22:86:c6:8f:
26:13:62:dc:78:f9:39:9d:fe:6b:88:e4:ab:d9:09:
b4:b8:69:8b:5d:48:79:9b:97:09:38:e0:4b:fd:33:
ff:13:fd:06:99:83:00:df:f5:88:c5:ea:14:3b:fa:
12:62:4c:bd:81:10:c3:26:11:84:a8:a0:51:62:77:
75:51:2a:47:0c:7e:2c:6b:57:c1:90:fd:92:0e:6e:
73:ba:81:72:46:b7:c4:48:ad:c5:b5:35:a5:2f:80:
25:f9:f7:01:66:86:82:9b:8e:e9:4f:cd:97:0b:07:
b5:4f:50:dd:87:aa:18:5c:77:6b:60:c1:74:9a:2b:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F7:90:67:1D:B0:CD:93:FA:A2:8B:24:EC:49:DE:37:24:21:FD:8E
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:2d:e0:0a:a5:67:d4:0d:6d:9c:be:8c:1c:5e:59:63:69:b3:
2d:2f:ff:b9:12:ca:7a:3d:a6:6a:13:81:e5:c8:d5:8a:18:c2:
da:29:92:f7:75:d0:fd:72:9c:7c:f3:b0:83:a8:88:3c:cb:3b:
1b:98:f2:eb:b3:6f:8e:1a:43:b0:90:9d:2e:d5:8a:4d:87:34:
d8:72:9d:e8:35:fd:73:60:b3:a0:79:a8:28:ed:84:4d:c1:f3:
c7:ae:13:66:ac:36:53:a3:9a:c9:05:39:0d:bc:68:dd:66:19:
04:94:51:b7:40:ac:d5:4a:6c:c6:fb:d8:10:ef:4d:93:0c:fe:
6b:30:1d:73:09:a1:9e:07:e5:b0:5f:a6:40:d7:1d:13:f6:8e:
a2:c9:6c:f6:2c:a1:5a:86:ab:73:28:53:f6:f1:31:90:51:05:
2d:f7:92:c2:21:70:9e:aa:05:8b:7f:16:51:44:12:6d:10:5b:
e5:c7:da:ee:9d:f5:e8:89:e3:00:26:9c:70:6a:48:10:06:65:
42:5c:22:3b:48:17:bb:c2:99:e1:20:e5:c4:97:b8:d8:e6:05:
bc:8b:02:09:62:43:5a:98:ab:59:31:3b:61:05:b5:da:16:78:
7d:98:f4:8b:33:58:c3:27:7b:3d:9c:9b:8c:4e:e6:80:a6:c5:
17:18:b1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:40 2025 by rpki-client