Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
File: o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft (raw, json)
Hash identifier: n8HMXvChpPIw+aHPGq8l4tpQgFqVF/ICJFKBjtxuftQ=
Subject key identifier: 20:C7:E2:88:B7:17:C4:B4:59:6E:3E:72:AE:52:60:54:5B:EF:58:AC
Authority key identifier: A3:F1:B2:2B:20:54:50:2B:FD:38:89:13:82:91:10:3D:83:B6:A5:0E
Certificate issuer: /CN=a3f1b22b2054502bfd3889138291103d83b6a50e
Certificate serial: 0198364C790FBCC2C66FF1BA39A36BAD365D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
Manifest number: 0535
Signing time: Wed 23 Jul 2025 08:00:38 +0000
Manifest this update: Wed 23 Jul 2025 08:00:38 +0000
Manifest next update: Thu 24 Jul 2025 08:00:38 +0000
Files and hashes: 1: 6v0nzfvGeTgWbd7HMB1o0jugKV4.roa (hash: FIng+1902A4Yeb0hTmwd9v/HruvnzrDdoUL01BIRQaM=)
2: ZF1SC7MrVuGK4fd5ZmYRiHDlL3I.roa (hash: KgxBB1nnxX0nfT2Gm3/SgLbCQQuHnTl1fS9TiWSDHoI=)
3: eI_RQ6AJ4E0z9B7GOJa52wr5foc.roa (hash: HGEC1odkERakp/sMpWBFo962FhRjB0yXI9SlY4RDrwU=)
4: o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl (hash: 5SHXzGa4bPU+Q0gKcgr467poC/3l0z2jw1Nh8YfcO7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:36:4c:79:0f:bc:c2:c6:6f:f1:ba:39:a3:6b:ad:36:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3f1b22b2054502bfd3889138291103d83b6a50e
Validity
Not Before: Jul 23 08:00:38 2025 GMT
Not After : Jul 24 08:00:38 2025 GMT
Subject: CN=20c7e288b717c4b4596e3e72ae5260545bef58ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:22:73:ca:87:3d:b7:ab:b5:b9:ba:86:23:83:
5b:1d:cb:8f:1f:cf:40:d3:7e:40:d7:7a:4b:a6:3e:
9a:52:66:97:6a:f7:5a:77:ff:59:9f:15:39:b0:fc:
9a:f2:d1:55:4e:6d:99:43:05:38:84:b4:c3:ad:a6:
ab:c6:69:f9:49:24:4d:08:c3:e1:d5:d4:1f:39:18:
e4:c5:aa:e1:db:bc:44:af:5d:eb:cd:3c:fe:78:f0:
06:0e:9c:fd:65:62:e2:f2:cd:af:05:0c:fe:ca:3c:
b6:a5:24:58:69:23:00:ed:3c:66:3b:13:c2:de:0a:
93:a1:52:52:d9:a5:73:6b:76:7d:0a:62:5d:83:5a:
0a:f8:1d:56:9b:43:ad:15:8d:ef:5c:cb:af:f3:fd:
e7:ff:f0:3e:8e:ba:69:14:8f:e4:c5:f6:3c:5d:82:
40:9d:3b:8f:c6:55:47:b3:78:83:dd:97:ff:fa:df:
91:cd:3e:e9:a8:24:65:c1:ce:d6:04:55:c5:00:a0:
74:9a:d5:75:72:f9:e4:0e:7d:08:1f:92:16:36:21:
b2:f9:f3:37:a9:72:ae:12:03:a0:e4:f5:cd:6b:90:
d8:1f:ee:c6:cf:51:35:b6:11:bd:75:35:26:85:7c:
68:40:de:ce:8d:d0:73:4e:3b:2b:95:cc:bf:b3:0f:
34:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C7:E2:88:B7:17:C4:B4:59:6E:3E:72:AE:52:60:54:5B:EF:58:AC
X509v3 Authority Key Identifier:
keyid:A3:F1:B2:2B:20:54:50:2B:FD:38:89:13:82:91:10:3D:83:B6:A5:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ef:79:30:32:63:c9:44:19:cb:f2:a2:8a:aa:2c:bf:00:5b:
79:b8:86:e0:a6:76:22:78:e4:1e:cd:20:cb:0b:ac:fc:9e:c1:
b3:97:87:23:06:ad:83:3d:a2:f1:fa:71:de:bc:50:df:f3:a4:
22:9a:8c:01:e3:2c:24:42:9a:af:60:07:a9:c6:14:6c:4e:5e:
fa:e3:e6:e6:31:15:cc:85:87:c3:a9:df:16:ec:0f:44:e2:71:
3c:e6:c3:b0:93:8d:57:9f:08:ce:e8:da:a9:c6:f0:65:ba:b8:
c7:a6:48:02:68:93:e9:b6:bb:46:c9:ea:93:4f:5b:36:1a:bd:
60:98:d9:7d:e6:50:0f:77:05:e6:55:a3:43:40:b6:69:67:a2:
28:a6:2e:19:a8:84:22:2c:83:77:25:5d:78:59:db:3e:05:6c:
b1:80:b8:3d:d7:7a:14:62:3a:6a:62:c4:e3:f1:4a:ad:8d:c5:
60:e2:17:eb:62:e9:ed:b8:b0:65:96:83:5c:c5:40:0d:10:be:
f6:4d:37:83:8a:a2:5d:91:41:4b:3e:ca:a2:c1:8b:20:22:b0:
59:a3:ec:45:37:a6:c3:51:97:fe:aa:86:fc:7f:91:26:1f:0f:
d6:be:71:43:8b:f1:55:ad:68:a6:cd:ca:4b:6e:0b:96:1f:6b:
ac:a5:79:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:25:52 2025 by rpki-client