Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: gLH9THu06x+vEEXFhoGlvvTKiz2FOrERAAfHCffqcQc=
Subject key identifier: F9:0F:20:88:D4:3E:44:13:FC:33:7E:B6:C5:C6:A6:67:FA:1E:95:EB
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 019A4E861E2964648744C206A8EBB53EB6F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0B9C
Signing time: Tue 04 Nov 2025 11:00:03 +0000
Manifest this update: Tue 04 Nov 2025 11:00:03 +0000
Manifest next update: Wed 05 Nov 2025 11:00:03 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: FT+tAl6fOMbhUfenxMjvMkLsNj11CzsysLLhMy0dsvU=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:1e:29:64:64:87:44:c2:06:a8:eb:b5:3e:b6:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Nov 4 11:00:03 2025 GMT
Not After : Nov 5 11:00:03 2025 GMT
Subject: CN=f90f2088d43e4413fc337eb6c5c6a667fa1e95eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8c:f5:5e:4e:48:fc:20:91:26:b1:a7:ea:97:
ed:f8:16:45:d1:59:97:29:56:16:61:7e:67:a4:43:
10:cc:1d:d1:3c:8e:f8:c4:cf:b6:96:24:d0:ba:5b:
3a:48:97:92:49:4f:4c:cb:5e:2c:1e:ec:46:ab:f0:
38:62:40:2d:78:a1:b4:c8:10:c7:63:df:9f:86:f4:
08:d8:4d:ca:bc:ad:98:4f:37:d5:96:ef:7f:88:3c:
e6:35:dc:ac:3a:21:9b:b6:57:46:7a:be:0b:72:b7:
bb:86:cb:9f:ad:dc:a6:ff:18:d3:03:04:af:4d:43:
01:84:43:01:9b:b5:5b:d7:7b:79:7d:ba:23:ce:fb:
8c:1e:dd:24:fa:ac:eb:dc:26:f3:78:52:13:fb:f3:
45:15:56:f9:13:87:f9:57:27:52:c7:da:88:1f:69:
b0:6f:ae:66:b1:19:b8:39:c8:05:eb:61:78:f8:1f:
6e:89:da:8f:76:4d:89:d7:f7:6e:bb:e6:22:fd:f6:
de:0e:f1:a3:69:a8:ae:d3:c8:44:56:c7:45:b1:bc:
12:73:51:2d:56:66:71:a4:3b:fe:b7:ea:53:0b:89:
15:91:db:61:e0:af:16:db:33:92:01:0c:b4:ac:ec:
02:26:89:33:f5:31:73:14:aa:ba:da:c6:0a:ab:d4:
44:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0F:20:88:D4:3E:44:13:FC:33:7E:B6:C5:C6:A6:67:FA:1E:95:EB
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:92:d1:f8:ea:6b:fb:e3:41:66:16:58:59:c2:d5:a9:c4:ba:
73:fc:cb:8d:90:15:34:9e:e8:fd:e7:0e:23:d9:4c:63:8a:5c:
a5:01:04:15:34:e3:b1:35:45:7f:fe:0e:84:8b:e2:fd:1a:18:
c5:7d:f0:66:04:08:75:cf:65:2b:64:8b:09:ed:80:c6:c7:ca:
b0:68:d4:2b:a4:6e:48:6d:b9:32:68:5e:96:d6:32:4a:ed:94:
86:a2:70:1f:62:22:ff:4e:aa:87:b9:c2:b0:fd:8b:01:98:71:
ca:3b:64:2b:30:bd:b5:ce:12:b6:b3:a5:9f:79:a6:23:fa:de:
07:ed:06:53:f1:83:4e:de:5d:76:ea:f8:9d:65:49:16:2e:a3:
6a:0e:5b:4e:8f:40:34:18:25:14:d9:a3:ea:a0:7c:f4:a0:3e:
af:e8:da:4a:43:f4:57:6b:9d:58:b6:ed:80:d4:60:d4:3c:35:
ff:c4:c6:99:ed:0f:48:02:c2:73:64:17:25:e2:59:62:20:b5:
53:dd:3a:62:eb:1e:9e:7e:d2:2b:54:3a:57:1f:89:b0:9d:69:
fd:87:1c:bf:87:aa:5f:dc:fc:f2:22:c4:12:2e:f8:71:60:30:
d1:8c:58:b1:28:83:aa:bf:30:ff:f1:d9:69:90:80:e0:74:32:
1f:f5:4b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:18 2025 by rpki-client