Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
File: OQW37By46JWiW9SsZ7wxZmFdi2I.mft (raw, json)
Hash identifier: NczZvEdkTaqiBA0uholX/VePexJxX85vU52RElyOamM=
Subject key identifier: 91:2E:C5:40:87:D8:D6:32:63:AF:92:5A:70:6D:50:81:42:06:0B:E4
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 01987DF8489BAEA4B6CE926DA57D03DB95A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
Manifest number: 0700
Signing time: Wed 06 Aug 2025 06:01:20 +0000
Manifest this update: Wed 06 Aug 2025 06:01:20 +0000
Manifest next update: Thu 07 Aug 2025 06:01:20 +0000
Files and hashes: 1: GzEFY4FMaNIn9ALjdEIyqJJseSE.roa (hash: A0TZx6QvZikNrmKwA+Q10TiJHkrQxZ4XZGZdjheoj80=)
2: OQW37By46JWiW9SsZ7wxZmFdi2I.crl (hash: XF2tNdVXf2IUOqvlAUdp72OMYEj6yTvLTuXYdiEYS3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:48:9b:ae:a4:b6:ce:92:6d:a5:7d:03:db:95:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Aug 6 06:01:20 2025 GMT
Not After : Aug 7 06:01:20 2025 GMT
Subject: CN=912ec54087d8d63263af925a706d508142060be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:dd:49:be:af:52:2f:6c:98:bd:ed:66:cc:
a3:5e:c5:80:10:04:4c:c9:6f:bb:54:43:e3:26:7a:
1b:e0:0e:5b:36:cc:f5:4b:b4:2a:7e:45:ad:18:64:
05:f7:0a:b7:56:f3:ef:f3:42:be:49:1b:a6:a8:d6:
9d:cb:df:5a:a1:50:e8:85:14:5a:08:01:99:ea:80:
7f:08:30:e4:47:52:73:d1:98:62:89:2d:c7:fa:fb:
ae:bc:7e:fe:94:4d:f6:bf:81:53:1f:6d:13:f2:65:
25:df:28:7c:a6:b8:81:13:26:68:0f:29:53:84:fd:
0b:14:9e:bd:6b:8a:15:51:70:0e:f0:10:4c:ba:b5:
ed:f3:8c:a6:6f:a4:43:c5:5c:b9:2e:71:27:46:30:
1d:85:b2:f2:7e:ab:b0:6c:96:ec:6d:38:b3:2c:0d:
e1:01:65:40:02:ea:a5:39:06:6c:e5:fd:02:0e:26:
e0:22:a3:60:63:6f:f5:22:55:06:89:11:ad:3b:df:
88:49:1f:4d:f1:06:ca:12:59:22:0c:29:bb:46:2e:
4f:06:5e:27:76:2e:fa:4b:12:35:c7:d8:89:c0:ec:
be:71:82:7f:1a:c7:89:7e:ca:77:20:93:6e:dd:5e:
c3:70:4c:77:13:b2:84:a8:de:f9:33:c4:17:c6:17:
af:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:2E:C5:40:87:D8:D6:32:63:AF:92:5A:70:6D:50:81:42:06:0B:E4
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3f:b0:79:f7:66:b3:88:5f:e7:e0:b8:f4:45:15:d1:74:34:
e9:af:26:61:4b:8c:34:25:98:de:70:3d:37:e9:6c:cd:8c:5c:
92:84:0c:60:10:f8:d4:3f:4a:37:88:2c:d7:da:b8:85:0b:7e:
fb:d4:e8:72:cb:90:41:9e:5b:80:b5:af:30:e8:de:27:06:95:
47:3b:26:5f:3b:22:92:a7:1c:c8:5e:e6:21:77:e5:71:32:8f:
93:ea:36:bd:86:38:7b:9e:a8:73:24:93:2d:c3:bc:9d:5b:1c:
4f:22:4f:9d:66:6a:22:1d:21:ce:e7:d2:93:ba:f3:27:6b:0d:
b9:98:c8:50:64:a4:49:77:47:a6:f8:5e:57:50:5a:26:44:f6:
e7:17:aa:b7:e7:dd:cd:83:cf:c2:92:a3:e4:87:8b:34:57:71:
3a:84:91:69:87:ff:19:6f:dc:1e:0e:98:62:50:e7:92:71:e7:
9b:63:57:21:07:85:a1:d8:e0:b2:c2:55:bc:00:43:cc:26:1f:
56:c7:5b:3c:00:25:e7:b0:21:20:ff:6d:4a:e1:e9:87:9b:f4:
39:da:f5:ae:fb:37:12:ab:56:ed:62:ba:05:4d:f1:e6:5f:df:
be:91:c3:4e:c8:69:51:5f:85:88:60:72:c6:91:ae:77:d5:6e:
38:b9:4d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:16:08 2025 by rpki-client