Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: v6n8vsfexinbiiUQVB4zy9YFxptFN043xctAger7lgE=
Subject key identifier: B7:26:42:E6:C4:2C:AD:D0:B8:94:02:AA:38:C4:9C:BA:6C:CC:32:81
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019879ADBE27942A45213B0E10D16D7D5038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0CBF
Signing time: Tue 05 Aug 2025 10:01:26 +0000
Manifest this update: Tue 05 Aug 2025 10:01:26 +0000
Manifest next update: Wed 06 Aug 2025 10:01:26 +0000
Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: 66lmQfykN+HHwriwFdjKHjrrVM1X62jbOx9h8y/EjWs=)
3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=)
4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:ad:be:27:94:2a:45:21:3b:0e:10:d1:6d:7d:50:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Aug 5 10:01:26 2025 GMT
Not After : Aug 6 10:01:26 2025 GMT
Subject: CN=b72642e6c42cadd0b89402aa38c49cba6ccc3281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:86:32:42:24:dd:a4:2c:c4:8a:ed:07:e7:d8:
ff:7d:10:c3:dc:86:a4:aa:77:3d:f4:3e:1c:52:2e:
ff:c8:0a:b8:28:50:2e:ce:c0:ae:a9:9c:e6:a5:96:
84:af:96:b4:3b:cd:5b:13:8f:9d:01:21:e0:7c:53:
ad:61:93:f7:f8:f7:78:17:a4:12:15:a8:8b:ac:42:
e8:49:89:be:d1:3b:cb:da:97:11:e6:90:16:e6:97:
f0:1f:df:4a:7c:70:2a:39:33:28:c3:53:09:39:9d:
53:72:9b:b4:7e:4f:c4:ed:0c:ed:6d:37:95:96:67:
dc:d3:24:b4:bc:cd:e8:cc:6f:f7:34:a7:64:52:e5:
50:89:a0:68:29:5a:3a:74:37:3c:70:44:d1:2b:84:
66:37:cd:6b:2a:58:98:77:1d:fd:95:f3:db:2f:c5:
72:71:83:00:59:9a:65:b4:1c:58:d0:6f:d4:79:5b:
92:9b:34:ad:04:5c:79:c8:e4:10:e8:8f:02:ff:4a:
68:4c:91:92:7c:25:85:7f:4a:e6:2a:f4:6d:a7:ca:
c1:97:92:23:b6:54:3c:ad:09:98:00:ad:46:49:d1:
c1:a6:36:33:07:cc:61:3b:17:ef:da:b3:38:e7:ca:
54:66:a4:33:75:2c:25:37:80:89:a7:67:5e:c1:e6:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:26:42:E6:C4:2C:AD:D0:B8:94:02:AA:38:C4:9C:BA:6C:CC:32:81
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e3:f2:45:db:76:0e:4c:0c:64:6e:76:fa:6c:db:04:e3:2b:
39:8d:cc:16:b0:52:0a:95:96:10:f1:b0:a1:2c:00:d1:11:1f:
81:05:fb:c7:b6:9e:c9:d3:44:43:ed:a4:c2:d2:9d:99:92:15:
a9:4c:2a:6f:be:b7:74:63:95:19:8c:31:cd:e1:98:82:11:40:
9c:8a:01:0b:c4:3d:a5:06:24:b6:24:5f:c6:52:cf:60:4e:79:
19:54:82:51:44:9a:4b:ae:d0:4f:da:cd:91:7d:67:05:b9:6f:
d8:be:00:21:7a:b7:d8:b1:cf:49:1b:73:13:06:9f:9e:62:8f:
a9:c7:ea:5e:d3:c3:9f:6e:2a:68:e1:a6:07:32:98:c8:5d:2a:
c3:4b:e9:6a:96:2d:a6:c4:87:ae:1a:99:31:66:8e:7b:ec:20:
6c:93:18:9a:fb:87:26:3c:89:a4:14:c4:55:db:27:4a:c5:b5:
5e:aa:d2:56:d7:2b:f8:cc:92:45:40:a9:f5:ee:4c:32:06:c6:
0f:e2:fa:87:0b:4e:43:a4:7e:95:81:42:43:41:11:c5:59:0b:
fc:a4:28:5a:46:74:a3:59:74:ca:d7:e1:89:d3:74:04:99:cb:
33:99:9d:db:97:16:f6:9a:fc:49:2d:76:ff:27:90:4e:3e:bc:
48:46:3f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:02:55 2025 by rpki-client