Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: PDiLhgY8faQtD+ERPSp65aoRIJXmH/FdwdMykcNhVB0=
Subject key identifier: 49:7E:4C:34:F6:63:DE:87:BB:80:3C:84:6D:56:18:EB:9A:EE:39:BA
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 01984852F11358FDB24D11DCBFDB113DDE83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0B47
Signing time: Sat 26 Jul 2025 20:00:51 +0000
Manifest this update: Sat 26 Jul 2025 20:00:51 +0000
Manifest next update: Sun 27 Jul 2025 20:00:51 +0000
Files and hashes: 1: KI_OzKHWNWDApgfZA8fhKRHWYNw.roa (hash: KgInzOYraW/0zKTqbj1OirpA4x6saReBh+LdfK4ZXdI=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: rxSrG9Hxnu2iiORkOrelSKJzrugEOKDbZyDdz15HwUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:52:f1:13:58:fd:b2:4d:11:dc:bf:db:11:3d:de:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Jul 26 20:00:51 2025 GMT
Not After : Jul 27 20:00:51 2025 GMT
Subject: CN=497e4c34f663de87bb803c846d5618eb9aee39ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6f:28:b5:d4:c4:5c:51:f0:da:47:81:01:d2:
12:41:79:08:75:80:15:25:f1:f9:f7:1e:9b:20:24:
b1:35:f5:3b:b0:ec:46:af:a8:33:65:ef:04:9d:bd:
a0:e4:ba:18:67:4d:59:c5:ff:94:2a:54:2b:a9:0f:
65:d1:ac:e7:1c:80:9f:5b:81:88:49:bb:dd:16:81:
a5:23:61:d1:12:10:ea:88:7c:ba:f4:f5:c1:61:f8:
77:36:66:fa:00:3d:2f:be:fb:d9:d8:85:66:0b:36:
c6:54:b1:3d:48:9d:dc:c3:49:ff:f9:38:e8:b4:ac:
10:48:72:0a:90:7f:af:96:92:e6:98:4f:01:53:95:
6d:57:6c:8b:74:9b:c7:5a:d2:ef:2d:cf:f5:3e:9e:
07:36:09:d7:ac:4f:f7:62:f8:fa:b2:79:4a:d6:d8:
6c:1b:11:a1:70:1d:eb:23:7e:8a:8d:79:66:47:50:
87:b4:56:fa:e7:ca:c5:f8:5a:4d:a8:df:4b:a6:23:
f3:a0:d6:f8:06:38:b3:ca:84:36:cf:41:94:ad:fc:
de:1a:4b:bf:6a:78:59:53:66:5c:64:fe:db:7b:9e:
0f:26:6c:39:56:3a:dc:2e:1d:39:ea:7b:b0:aa:6f:
6a:35:09:ce:a5:37:bf:8d:f9:70:29:8a:d3:a5:34:
93:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7E:4C:34:F6:63:DE:87:BB:80:3C:84:6D:56:18:EB:9A:EE:39:BA
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ea:3a:45:17:23:2d:f8:d7:2d:9e:c6:fd:55:55:0e:eb:10:
32:c3:08:10:fd:e5:3b:13:9d:c5:70:4e:26:66:f5:82:98:b8:
5f:6d:c7:dc:9d:5e:cd:e0:64:05:b7:06:69:bb:55:61:0f:64:
a6:40:02:22:80:1a:e0:f3:3f:99:72:e8:dc:21:e6:58:d5:12:
85:c6:84:21:52:5a:23:c6:b7:7c:32:48:c2:34:3f:14:95:37:
c8:b7:81:af:74:12:26:4f:97:77:0a:d4:3d:47:4a:f4:ee:ae:
66:68:68:a4:77:82:55:de:bb:c7:6f:a4:08:4b:f3:8b:d1:dd:
a7:91:13:50:93:da:47:ec:98:b2:58:f0:c1:2e:1c:e3:7b:10:
d0:88:8f:bc:a8:a6:98:85:87:c3:35:70:e6:8f:c1:5a:1f:03:
55:be:c1:9a:ec:1e:05:26:5b:7b:08:a8:0c:e9:9d:da:de:dc:
27:43:4d:5f:d7:af:4a:b0:ed:75:84:34:9c:8f:e5:16:10:18:
6d:4d:0e:6c:87:d3:a4:ef:f0:e2:6d:c3:b4:48:a8:c3:d4:f4:
56:7a:87:9b:a2:80:dd:54:07:c1:ea:ab:65:74:89:02:db:99:
9e:50:f4:c2:62:e8:42:d4:01:05:e5:a6:53:00:18:ed:0f:3c:
9e:61:9a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:36:07 2025 by rpki-client