Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: AQGpbTNQml6ecu6BvUTLf6oYxBkkCY9Z9CAXN1Gga3o=
Subject key identifier: 2E:BD:51:83:BF:5E:BD:04:42:4B:5F:1A:25:4E:FE:B0:BE:A1:97:34
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 0198906BF851508286EEA48ED88D3E6B94AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0AB5
Signing time: Sat 09 Aug 2025 20:00:51 +0000
Manifest this update: Sat 09 Aug 2025 20:00:51 +0000
Manifest next update: Sun 10 Aug 2025 20:00:51 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: lIiHWArnPUOJ0fTLDX/FORTgLmuRspikF2doRq650E0=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:6b:f8:51:50:82:86:ee:a4:8e:d8:8d:3e:6b:94:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Aug 9 20:00:51 2025 GMT
Not After : Aug 10 20:00:51 2025 GMT
Subject: CN=2ebd5183bf5ebd04424b5f1a254efeb0bea19734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:36:8e:9c:c2:45:bb:1c:c6:2b:63:90:51:60:
59:8c:27:e4:b1:92:7e:7d:bd:64:3b:d0:c1:1a:fe:
7c:e2:ac:b2:23:c9:c5:b2:d7:9d:9c:01:c5:f9:6d:
34:fc:e9:0a:02:3c:30:68:8c:80:a5:f2:01:b4:23:
64:a5:5d:f1:18:fc:81:d6:34:ef:a5:da:46:c6:c0:
ce:71:c5:1a:97:d7:a8:0e:1e:4d:a6:7d:38:81:46:
8e:bd:be:e0:98:27:1f:6c:e8:50:97:b6:5a:8a:8c:
4f:e6:33:0c:c2:49:e0:fb:46:9b:9a:cb:96:cf:02:
af:a0:6f:6d:df:54:7e:2d:b4:2d:79:e1:a4:75:57:
09:a5:c0:77:c6:da:9f:e0:f4:4f:c7:91:53:81:18:
c6:ad:9a:85:27:9e:bd:eb:8c:a3:02:e1:c4:2c:7d:
e8:f4:60:50:45:50:27:3c:c3:c2:27:d5:83:6e:ad:
d6:d0:8d:17:4d:37:8a:f6:3a:ed:fe:d4:40:14:7b:
ff:4f:83:f6:cd:04:f9:9f:95:dd:3d:a7:24:68:9b:
3e:71:31:df:69:f6:22:d4:9d:9a:58:50:b1:df:54:
6e:80:f4:b1:e5:e7:9a:ee:0c:fc:a6:37:2d:00:e2:
10:be:cd:50:6c:82:eb:c5:5e:9e:aa:dc:40:80:c5:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BD:51:83:BF:5E:BD:04:42:4B:5F:1A:25:4E:FE:B0:BE:A1:97:34
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:0d:7f:5f:7c:84:8d:f0:be:86:94:2e:68:ac:1a:63:02:00:
e5:a3:ee:b6:01:74:d3:3f:ea:62:2d:4c:94:b9:3a:4f:ba:fb:
5f:40:4e:86:23:a6:8c:6d:6e:59:0d:5e:c1:37:46:c3:6a:75:
a3:c0:a3:1b:d8:e8:10:5c:bd:39:91:6e:1c:55:18:38:c9:79:
76:e6:25:6a:17:fa:82:3f:f1:b5:be:2b:38:ad:c3:34:12:f5:
bb:99:33:52:4e:79:2e:88:37:54:00:0f:42:40:3c:e7:6b:76:
ea:d0:9a:a9:10:6e:5e:d4:e5:d6:16:38:e8:37:9c:db:b4:c1:
fc:a2:57:96:ad:e2:1d:cc:b0:63:ab:45:49:ce:af:cd:e6:79:
81:e2:b7:ad:ab:18:c9:ff:b0:64:fd:36:8b:97:2f:a8:e3:03:
19:c4:e4:57:7e:79:70:9d:83:66:19:1c:0e:44:a2:88:16:96:
ed:75:f1:1d:58:c0:ac:b1:e7:13:a2:72:20:1e:35:8d:c6:9e:
df:05:49:10:f7:b2:41:04:1f:ca:e7:50:96:f6:b5:c3:eb:d4:
8e:2f:ab:7f:15:1f:c6:bc:27:7a:e5:57:f8:e8:11:df:f8:cf:
9d:bf:76:e6:8c:d6:fb:b1:c2:61:b4:e3:e8:39:bd:c8:ed:75:
f9:07:c7:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:34:16 2025 by rpki-client