Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: eXugZFe3/909lEvYW4UvCZetiSY0+dRGbG2NMmaqp5Y=
Subject key identifier: 74:DA:D7:AD:16:59:EF:B2:EC:C6:59:3C:D2:ED:6B:1C:03:7C:2F:50
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 0198960065E5FE6805CE66FFED8681784692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 02C3
Signing time: Sun 10 Aug 2025 22:01:05 +0000
Manifest this update: Sun 10 Aug 2025 22:01:05 +0000
Manifest next update: Mon 11 Aug 2025 22:01:05 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: mmVvP5W4w3COSxGxXofECn8ORyN/IGd4IVkeeWdO/kA=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:00:65:e5:fe:68:05:ce:66:ff:ed:86:81:78:46:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: Aug 10 22:01:05 2025 GMT
Not After : Aug 11 22:01:05 2025 GMT
Subject: CN=74dad7ad1659efb2ecc6593cd2ed6b1c037c2f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:13:37:eb:54:d6:5b:56:0e:15:22:b6:23:12:
62:09:79:e3:50:b1:f5:b7:36:42:d6:4b:ec:a0:78:
19:d9:61:f0:ee:10:10:3f:c7:8b:04:df:38:da:ef:
fa:c8:6b:9b:dc:ce:9f:1a:2e:be:b9:de:f0:a7:5f:
12:49:19:b4:be:db:23:ab:1b:e9:8e:41:45:2d:7e:
5e:45:72:d1:d9:c9:4b:3f:a3:af:a1:f6:46:45:17:
94:58:eb:7a:df:e1:23:d2:b4:a3:7f:4e:61:41:4e:
20:1a:3a:2d:f1:32:3b:a9:27:1b:fd:15:10:2c:7f:
02:42:ae:92:8d:ed:56:d4:ed:ea:b3:c8:1b:81:7c:
b8:04:70:97:e3:63:5c:20:eb:bb:12:11:70:67:09:
b4:fa:9f:75:ce:56:60:4c:e3:f6:40:a2:53:6d:92:
c0:dd:df:ce:0d:9b:b3:6a:d5:87:8d:47:6f:62:03:
26:c7:f1:45:ea:f3:3c:1a:88:4b:f6:3a:2d:69:d1:
e9:7d:1c:f2:ed:31:84:8b:90:bb:61:70:99:23:fb:
ae:98:48:a0:78:aa:8a:80:9f:dd:dc:0f:ca:77:07:
6e:df:be:44:73:79:90:38:16:1e:f6:32:95:08:6a:
4f:4b:9c:b7:b4:f8:65:c0:76:1d:da:d2:2a:92:22:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DA:D7:AD:16:59:EF:B2:EC:C6:59:3C:D2:ED:6B:1C:03:7C:2F:50
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:80:3a:61:bf:e2:4d:07:d9:5c:87:6e:57:b9:e2:54:b6:71:
e4:0d:ed:e2:b0:db:45:0c:a4:04:bf:a7:45:1e:e5:02:80:ef:
8d:e1:ed:28:27:8c:c6:61:f1:5a:31:14:98:2c:93:c0:07:0e:
b4:9b:78:1b:4b:04:ab:51:fd:3b:a4:0d:53:3c:ea:bc:97:44:
a9:fe:05:2d:bb:e1:9a:d3:93:15:a9:7e:9c:ab:c2:8a:54:41:
ae:22:f0:b2:46:73:5e:50:d7:ee:84:6d:45:34:9b:1e:be:07:
02:25:66:8d:7e:22:94:76:f3:fb:0e:c8:17:20:37:b6:7d:77:
97:a1:6d:b5:b1:fa:85:1d:7d:c6:1a:ec:0c:f2:fa:c3:0d:87:
32:64:13:df:7a:ba:2c:f7:f5:8e:ad:98:0c:8f:c7:68:2d:ea:
84:fa:c5:0f:10:55:9c:6a:e5:a4:b6:d1:66:2e:4e:b0:de:a8:
99:df:bd:be:e6:95:b1:8a:14:e0:11:01:ba:f2:4b:f7:f9:bf:
63:2d:a7:33:7e:17:8b:66:63:1a:c7:14:fb:05:b7:25:30:af:
e0:fb:ba:8e:71:89:1a:8b:af:b8:cc:b5:64:3e:9d:d7:4a:7a:
92:47:7b:6d:5f:28:b4:46:7c:36:f7:21:94:fc:fe:3c:82:2d:
ca:1a:08:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 01:49:06 2025 by rpki-client