Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
File: O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft (raw, json)
Hash identifier: WAsNnRVffHC5HDfaNCAG2FsY8kM3U2oTIMV6wL6M8uc=
Subject key identifier: B6:BD:E8:F0:83:DB:3D:85:A1:CE:D0:46:AE:64:E3:3C:5B:E3:9C:0E
Authority key identifier: 3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
Certificate issuer: /CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Certificate serial: 019897EF034B9DA1E6279CEF34B176210A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
Manifest number: 0A62
Signing time: Mon 11 Aug 2025 07:01:20 +0000
Manifest this update: Mon 11 Aug 2025 07:01:20 +0000
Manifest next update: Tue 12 Aug 2025 07:01:20 +0000
Files and hashes: 1: O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl (hash: JBTcTFhySlxNAaf0fpg++31V9ISPrnazvydD12ufBoo=)
2: w9ICT6cKkgB_pyRYfsBkT7I_e5A.roa (hash: Ogtb5a6VjW8bSqLn3V6UgYjH3Wl670+DPbn1H5LtdUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:ef:03:4b:9d:a1:e6:27:9c:ef:34:b1:76:21:0a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Validity
Not Before: Aug 11 07:01:20 2025 GMT
Not After : Aug 12 07:01:20 2025 GMT
Subject: CN=b6bde8f083db3d85a1ced046ae64e33c5be39c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:36:06:7b:7e:bf:7b:26:cf:32:8d:e6:1a:46:
06:9f:ea:19:dc:9e:f9:62:09:18:de:b9:27:ca:3a:
b3:66:f4:c9:ea:f9:63:0b:23:eb:c2:82:91:ee:9c:
c1:96:7b:c5:c9:70:24:36:b9:56:f4:07:45:93:b1:
06:ef:76:25:fa:84:15:9c:3e:16:de:9d:7e:bf:e4:
db:01:49:60:7c:e2:8f:4b:40:4d:ac:92:60:48:46:
44:c0:83:03:30:4f:c0:17:12:4f:7b:2f:28:05:9d:
28:6e:df:46:57:88:a2:1d:8f:bd:cf:df:2a:9d:42:
e0:e5:b2:32:f0:be:1d:4a:b2:c8:fd:bd:85:11:b5:
1c:b3:af:86:ca:c8:bf:cb:2f:e2:76:66:50:1e:b0:
92:cc:6f:f1:06:92:eb:c0:94:90:af:83:7a:0d:4f:
d6:11:21:89:cf:b4:a8:12:92:d3:6a:71:20:d7:6a:
02:0a:d1:06:a3:34:18:5a:a7:65:d8:85:b7:46:b4:
36:48:78:6e:a8:0e:01:3e:5e:1d:02:a2:09:b5:17:
a9:09:77:9c:5b:8c:ec:22:6a:2f:09:36:f4:74:55:
e6:b2:db:5d:ef:b7:ef:38:b2:c0:44:62:e3:31:09:
08:47:39:2d:67:0b:da:7d:19:8d:9e:04:f6:e4:d8:
94:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BD:E8:F0:83:DB:3D:85:A1:CE:D0:46:AE:64:E3:3C:5B:E3:9C:0E
X509v3 Authority Key Identifier:
keyid:3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:8c:a2:b7:3e:71:d9:93:5d:0c:54:e9:b6:9f:ee:08:62:0f:
5c:d8:16:ef:f0:b1:dc:e0:f4:36:ea:69:71:d8:1a:8f:dc:f8:
46:f6:a9:84:4c:d4:c9:6a:a8:ed:ad:48:d6:f4:f6:d0:86:ea:
43:f6:f4:ad:03:83:c0:b4:75:17:82:20:75:59:05:2c:34:c9:
d1:4e:f8:46:1f:58:97:0e:55:b6:ca:b5:77:e3:2c:0a:2c:2c:
9e:f3:4e:07:43:53:b0:c5:57:c9:46:7e:18:62:e9:58:ad:e4:
56:5e:52:81:14:69:90:0e:61:20:eb:42:44:82:c8:f0:3a:6d:
bb:5d:4a:4f:e6:c1:b8:c5:60:c7:5d:5c:81:ad:9e:bf:88:5a:
33:bf:55:12:99:62:ef:c4:e7:fd:1e:11:f6:16:91:10:3f:f1:
a0:bd:ab:ca:b8:ef:97:03:a8:81:79:43:7c:c8:a3:9a:ba:98:
2d:21:d3:73:2e:a5:39:fe:cb:61:20:d2:8b:06:cd:4d:0b:a5:
25:8d:b7:2e:02:da:1a:68:59:b5:e0:37:42:c9:9e:54:5a:32:
a3:e5:65:49:1d:a3:9c:49:f4:6b:f7:e2:cf:c1:da:2b:6a:0e:
58:f4:1c:1a:5f:2d:13:07:5c:a5:10:82:6d:91:1a:fa:bf:a5:
51:dc:0e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 09:55:09 2025 by rpki-client