Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: 9dt6QXFvotsESjVZXJWBBLMOxwQbbpsnySjwNXFWrxk=
Subject key identifier: 82:FA:5F:74:44:0F:00:91:5C:75:63:D4:CD:AB:AA:21:F5:C2:1B:B0
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019A4D3CFAE49497286F87A3806257268A3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0F20
Signing time: Tue 04 Nov 2025 05:00:33 +0000
Manifest this update: Tue 04 Nov 2025 05:00:33 +0000
Manifest next update: Wed 05 Nov 2025 05:00:33 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: 7JaQgfTi/EkV/nC3D2B+WVlA/rqZTETws9ePYCxkHGg=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:fa:e4:94:97:28:6f:87:a3:80:62:57:26:8a:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Nov 4 05:00:33 2025 GMT
Not After : Nov 5 05:00:33 2025 GMT
Subject: CN=82fa5f74440f00915c7563d4cdabaa21f5c21bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:4a:a6:c6:f1:16:06:0e:3a:ee:5b:e1:08:
59:75:9b:ee:63:71:6b:15:7f:1b:73:f8:e8:99:77:
98:55:a6:c9:f8:5a:34:7d:3c:cf:c7:95:53:37:8a:
40:c2:cf:74:c9:ff:fd:02:98:0b:8c:b9:f8:cc:80:
f5:49:61:30:2c:37:1d:b5:2f:d4:fb:52:e6:31:bc:
43:69:7d:87:b9:dc:7d:b4:ec:03:b3:4e:e5:40:8f:
aa:ee:12:59:d6:46:ee:79:88:35:1f:37:15:1b:87:
71:f7:91:db:25:bc:79:ec:ba:15:fd:c8:a8:12:e8:
64:d3:ef:01:49:3d:56:41:36:7f:5a:26:b4:19:44:
81:f4:ee:5c:39:5b:3a:9c:ab:c4:f2:a3:e1:22:b6:
19:30:e2:3a:84:c1:29:d6:3e:15:1f:86:75:0f:e1:
96:ba:df:50:ae:36:86:5d:66:50:80:86:d4:74:58:
3d:40:ac:15:39:f4:25:98:fb:ac:b9:d8:b6:bb:fa:
e0:10:9f:cf:81:11:42:48:08:9b:04:c4:86:f5:7f:
09:1e:2a:da:6f:3b:3e:b6:86:d1:41:8f:fc:b8:c9:
96:04:71:de:7f:5e:20:b5:86:c3:8a:44:69:01:1b:
72:9b:b3:b7:87:d5:bc:1a:87:41:d9:92:21:f1:0f:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:5F:74:44:0F:00:91:5C:75:63:D4:CD:AB:AA:21:F5:C2:1B:B0
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e1:61:76:1a:8d:70:80:d2:dc:db:bf:e1:02:b4:67:2f:76:
7b:5e:f4:95:41:44:bb:02:aa:0d:79:18:c2:90:3d:d7:1b:7a:
22:bf:1f:b6:63:92:e3:13:fd:a2:c1:9c:ea:a9:52:d2:53:8d:
b3:8e:d5:2b:f3:b4:36:0b:a4:48:cc:c9:35:69:55:c1:4d:a7:
11:76:30:32:f8:03:7c:5f:99:b8:24:10:9d:28:85:4b:e9:0b:
85:4d:5d:03:62:63:5a:cd:93:b4:2a:65:e0:31:eb:31:3e:25:
4b:7d:24:ef:18:d3:f6:fe:1a:a0:68:f2:b6:5c:03:a5:c5:1d:
1f:32:e0:14:28:92:8d:1a:d4:34:0e:74:6c:63:4e:18:e4:2d:
69:19:da:83:36:0a:70:d4:f5:15:c9:5e:5f:99:12:e0:ed:2d:
7e:7b:c1:02:60:34:4a:72:68:71:19:cd:ab:2f:7a:da:6e:c9:
d8:25:ad:21:54:31:58:67:89:a6:3f:a8:fa:ee:c3:15:98:4c:
86:bb:4f:ba:7b:b8:97:5e:3f:06:78:db:96:78:fd:d4:b8:42:
08:2a:39:ad:00:59:b3:39:2e:62:05:c8:6e:45:7b:ab:06:20:
77:47:78:e2:37:56:28:39:be:e6:d2:5a:79:5b:ee:59:52:d5:
82:53:84:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:07:34 2025 by rpki-client