Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json)
Hash identifier: Gf7RScXfGi+JJyZ9XRGnOKkVANL7I7RqUGQKhkcAjQE=
Subject key identifier: 16:A9:A5:CD:DF:06:13:CC:9F:8E:9E:84:97:6B:2F:31:B3:40:BB:B2
Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52
Certificate serial: 019880F920514C029C76C0C5D3298A863748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
Manifest number: 161E
Signing time: Wed 06 Aug 2025 20:01:06 +0000
Manifest this update: Wed 06 Aug 2025 20:01:06 +0000
Manifest next update: Thu 07 Aug 2025 20:01:06 +0000
Files and hashes: 1: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: hve4zwR87OPBLB0CiF7xNnt4Rjj539AznitwWlgkFxk=)
2: adNqeNQUFWI4IAHxy1r153UdECA.roa (hash: xLvUeb8ak+yii4A1TZl7dHrog2mgx9j4/AxydjM8K8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:20:51:4c:02:9c:76:c0:c5:d3:29:8a:86:37:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52
Validity
Not Before: Aug 6 20:01:06 2025 GMT
Not After : Aug 7 20:01:06 2025 GMT
Subject: CN=16a9a5cddf0613cc9f8e9e84976b2f31b340bbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:09:70:e2:24:af:bb:99:95:50:44:c8:71:fd:
73:39:be:61:ec:ac:9c:07:f8:a7:4b:64:a9:a0:b6:
65:61:86:64:65:38:ad:a7:f7:65:aa:91:dc:f2:68:
79:95:85:98:91:df:8a:2c:85:49:df:b4:71:83:8f:
35:6d:16:aa:27:14:e1:c1:a9:94:83:ac:0d:ab:8e:
2d:07:07:c1:d2:81:f1:c8:56:bc:c6:86:ea:41:7e:
1c:76:67:68:2c:13:07:a0:26:c9:c0:bd:1a:bc:5c:
4a:20:50:e3:df:43:a6:8b:0c:fe:77:90:57:28:c0:
c4:a7:05:3b:56:60:e5:81:20:b7:19:0c:61:86:e1:
93:83:f3:f5:46:40:c9:47:6c:29:1d:a9:fc:7f:2d:
b1:95:1a:ef:9c:57:c0:b1:ec:ad:11:78:a4:a3:20:
58:a7:1b:77:61:71:4e:23:ee:85:2b:35:8a:a1:9c:
f9:3a:20:23:dc:48:dd:8c:3a:21:7d:d0:fa:3d:89:
76:0f:97:c6:42:31:27:f6:5f:f0:55:12:f8:6d:96:
8e:d4:93:8c:c5:c6:48:18:cb:b3:69:01:3a:a3:20:
48:22:f2:9b:a5:60:23:56:d5:0d:55:4f:b6:43:5f:
1d:8a:63:07:0d:36:a7:75:6b:84:63:d8:f6:73:2b:
55:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A9:A5:CD:DF:06:13:CC:9F:8E:9E:84:97:6B:2F:31:B3:40:BB:B2
X509v3 Authority Key Identifier:
keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:cf:bd:99:a5:55:5f:0b:77:0b:1c:df:5a:8a:8e:e0:63:d4:
a6:2f:4c:fa:78:16:17:b2:5b:19:d6:57:bf:9b:b1:e0:7f:68:
ce:74:e3:11:c1:30:6b:2b:fb:c0:7c:27:78:00:c4:28:9d:53:
3c:31:38:d6:f3:12:cd:53:21:99:4e:42:04:38:e6:a2:8b:a3:
1b:7e:07:b3:37:8f:35:ec:eb:67:22:bf:4b:10:2f:00:be:23:
55:cf:71:f3:9b:9c:28:9c:11:90:21:0e:19:af:45:f1:7e:3a:
2e:7b:05:79:d2:52:22:a8:82:7a:f9:b0:f6:cc:3f:86:55:c3:
1d:5c:3c:61:a9:cb:ed:ba:79:71:a7:26:ea:c2:51:86:04:71:
4b:3a:f1:70:95:0a:22:93:7e:aa:65:93:d1:d0:5a:62:53:8c:
fe:10:80:76:e2:a6:43:62:a0:a8:8b:07:f2:5d:98:b7:60:34:
14:19:58:70:ed:93:78:d5:d0:cf:d1:93:80:90:68:98:a1:d2:
69:dc:c9:01:3c:c5:be:35:ea:89:e7:cd:fc:d6:c3:e3:69:22:
8a:99:de:93:6d:29:1c:eb:13:06:f6:ef:bb:01:33:80:4f:d3:
5b:22:8e:92:79:76:cd:fa:07:7b:ca:00:29:f8:eb:18:39:03:
f7:5b:f9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:56:32 2025 by rpki-client