Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: aI+STjDsb69qXST55DTfF3RgjVyc0d6D5KViEurgkNM=
Subject key identifier: 1F:B7:45:D0:EE:C7:61:3D:97:EB:F7:00:12:10:67:ED:23:F9:4E:5F
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 019874876B70A7B9E56E6CE574B9FF9564CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0EDB
Signing time: Mon 04 Aug 2025 10:01:28 +0000
Manifest this update: Mon 04 Aug 2025 10:01:28 +0000
Manifest next update: Tue 05 Aug 2025 10:01:28 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: 9ebVAYn6QCYBDF46djShhCD/ROpsEOFqWS6ARVyOPv4=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:6b:70:a7:b9:e5:6e:6c:e5:74:b9:ff:95:64:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Aug 4 10:01:28 2025 GMT
Not After : Aug 5 10:01:28 2025 GMT
Subject: CN=1fb745d0eec7613d97ebf700121067ed23f94e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fe:65:01:98:71:7f:90:71:c8:d6:5e:a2:ad:
82:63:54:c2:94:2f:89:7e:51:f8:2a:3e:54:fd:a3:
21:ab:f1:54:08:47:2d:10:d6:8c:90:2a:c2:1f:8a:
8e:d5:d4:58:cb:dd:7d:b8:82:e7:f2:51:2b:b1:4c:
77:7d:b6:fb:33:e1:70:2e:24:07:18:a2:ab:68:9c:
0b:65:09:6a:a8:a5:99:b4:8c:85:a5:39:fc:84:33:
5b:34:83:66:b3:d5:af:ae:6d:78:48:7e:04:57:14:
25:b6:73:33:76:ca:01:f5:26:0a:07:ff:56:9b:88:
b5:62:c5:4f:e4:7f:4e:87:84:8c:1c:4f:13:1a:01:
e0:a5:f3:e0:03:3f:36:17:6d:d2:8c:3c:44:3c:b6:
14:db:8e:3b:d2:f9:47:04:f7:45:b6:b2:c5:18:53:
1e:ca:e9:f9:46:8b:69:db:b4:9b:1b:a2:a4:7a:2b:
71:f8:0e:77:df:05:57:a4:03:6c:9d:38:99:bd:32:
6d:3c:51:30:d7:96:96:89:89:a0:b4:f9:41:91:d3:
4c:eb:dd:11:12:1f:0e:1f:ab:ed:0c:56:96:3b:16:
93:b7:c0:0f:27:f4:b3:ee:0b:93:3c:c7:32:56:54:
49:5d:d0:25:96:11:03:4c:42:19:41:26:67:de:fd:
8d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B7:45:D0:EE:C7:61:3D:97:EB:F7:00:12:10:67:ED:23:F9:4E:5F
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c5:33:a4:da:d6:14:6b:7b:8c:e7:6c:0b:6e:9f:02:a5:3a:
14:fd:69:ea:6e:c2:44:98:d3:53:ad:8a:1a:f7:51:77:c5:82:
a7:1f:61:2f:53:c9:30:7a:ef:ac:b8:5c:11:64:f8:96:06:55:
a4:92:f8:2b:8d:f2:20:90:b4:83:aa:1b:86:55:f2:42:43:be:
9e:c1:88:4e:50:f6:2c:f7:d0:bc:1f:fb:ac:37:58:f9:04:da:
04:2b:da:a5:25:f8:93:07:27:5d:cc:70:4a:b3:3f:e0:dc:51:
e2:4f:1f:86:e3:90:19:3e:c2:19:52:73:e8:29:04:75:c3:d7:
44:65:82:60:d5:40:02:99:7a:0e:31:77:26:cc:2a:73:2d:32:
92:c1:23:c7:ec:f3:b0:b8:ac:18:f4:9a:1e:a6:76:5e:c2:71:
da:a3:d3:d8:a8:29:3a:69:be:f0:12:ab:da:94:e7:7f:8c:2f:
e3:d5:2e:67:24:10:ce:91:cd:b0:7f:b0:8b:f8:f7:be:62:10:
c4:97:e1:a1:c0:bd:97:b7:2d:1b:70:f4:81:3d:68:39:b4:7a:
34:e3:99:71:21:d7:70:55:e7:98:e2:7d:5f:68:2d:99:f6:ac:
25:4e:fc:15:fb:92:90:74:03:c1:fc:4b:41:34:aa:5b:3b:9f:
28:0b:39:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:07:18 2025 by rpki-client