Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
File: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft (raw, json)
Hash identifier: O5/EbpaRi6eTZYmW5KyMDwQnWGrsqRgTHALGpD6MizM=
Subject key identifier: 80:9B:0A:AC:CE:B8:5E:55:8F:DF:5D:AC:13:E8:E7:DA:9B:47:50:DD
Authority key identifier: C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
Certificate issuer: /CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Certificate serial: 019A4DE1B468A4F2AB54F8A1AB7AA20C6BF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
Manifest number: 0463
Signing time: Tue 04 Nov 2025 08:00:28 +0000
Manifest this update: Tue 04 Nov 2025 08:00:28 +0000
Manifest next update: Wed 05 Nov 2025 08:00:28 +0000
Files and hashes: 1: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl (hash: 8NBdmvQnPfqvYnpV3xxrUmG92V7nO8fTvZ+o2ujhor4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:b4:68:a4:f2:ab:54:f8:a1:ab:7a:a2:0c:6b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Validity
Not Before: Nov 4 08:00:28 2025 GMT
Not After : Nov 5 08:00:28 2025 GMT
Subject: CN=809b0aacceb85e558fdf5dac13e8e7da9b4750dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:10:96:bd:77:ac:c4:44:7a:e4:d8:a5:b6:12:
51:46:8c:7c:9d:c5:84:60:f5:2e:7e:c2:73:f4:cf:
54:0f:ce:8f:68:fd:c1:eb:08:3d:dd:5f:db:36:c1:
fa:b1:52:e2:7a:3e:23:bb:bc:65:98:2d:8c:f7:ff:
c6:80:9b:4d:b9:6c:c2:b5:70:77:77:1a:02:83:04:
6f:ed:50:21:ee:6a:25:f9:e2:aa:e6:4f:0e:a3:c0:
cf:6a:06:57:f5:a7:62:ae:28:39:e0:fc:00:3d:01:
e4:94:18:a8:03:38:f8:bf:52:48:24:27:29:ac:30:
01:25:fc:7c:a9:80:ea:f8:56:2f:80:d9:68:9f:b8:
db:35:60:3e:1a:92:24:a4:60:3c:7d:00:04:b2:34:
02:3e:9d:b7:33:1a:83:02:8c:9f:1f:d9:ee:7e:df:
97:bb:2b:ce:60:13:aa:9f:eb:3d:ba:fa:c9:69:a9:
dc:00:02:48:06:b2:68:56:bc:5a:a2:9d:90:c5:2e:
2d:79:8c:44:17:c8:5e:9d:9f:fc:b8:b7:09:a6:11:
8b:a4:51:84:73:8f:ea:3b:01:f8:3e:37:14:e4:c0:
de:8b:14:3c:f6:53:5f:d4:69:7f:a2:ac:7b:12:bc:
cb:32:cc:7b:fa:0e:5b:13:d7:9a:57:8a:cf:df:02:
fc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9B:0A:AC:CE:B8:5E:55:8F:DF:5D:AC:13:E8:E7:DA:9B:47:50:DD
X509v3 Authority Key Identifier:
keyid:C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:eb:09:5e:ee:30:7e:26:e3:a3:62:06:21:32:04:db:97:f8:
1f:20:c5:38:ee:54:8b:aa:ed:22:4b:aa:d8:ed:7b:c9:14:94:
df:6e:6e:a4:24:c9:a0:e0:e5:9b:6a:15:b3:63:19:47:d4:16:
f7:92:ae:02:da:06:8a:f1:8a:16:b9:c5:16:9e:59:4b:4f:b1:
0e:ca:e4:b0:7a:29:05:d8:64:7c:cf:0d:a8:55:14:e0:5f:91:
4d:ab:e9:d7:c4:ad:18:3a:70:e1:8c:e3:36:bb:86:ee:1f:9e:
ee:30:bc:0e:73:91:a2:c9:5a:51:1b:05:37:81:7d:d6:10:56:
f3:24:59:d3:e3:00:ad:93:bc:b8:10:5f:89:d1:82:7d:c3:ec:
4e:5c:81:7b:f1:62:70:69:35:a5:a4:47:4b:c2:56:24:ad:0a:
06:41:83:f6:58:36:7c:d2:56:47:94:cd:71:e1:0e:b9:f0:f7:
0b:fd:16:0a:b8:a0:98:f9:c7:ae:64:c2:b4:7c:3e:7c:a8:47:
f7:3c:a7:3c:08:ee:79:b4:cf:b9:5f:b2:d4:83:c2:e5:19:60:
16:ff:fa:0d:59:1b:e3:14:9f:78:81:0b:e8:cc:b1:6e:82:85:
2a:a5:31:e0:b9:22:a9:a8:c5:1d:14:14:c6:bf:c6:eb:25:a2:
c1:09:c3:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:01:58 2025 by rpki-client