Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: GB04yoIjBjfXs+3bkp5YjcaULC95tEHRHbWK3meiB6U=
Subject key identifier: 26:93:EC:AF:9C:53:91:ED:AF:DF:C5:C4:3F:7A:73:1C:CC:B7:0F:00
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 0199345BDBC4C9D2C3D98105CCBD253A7CED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0BDB
Signing time: Wed 10 Sep 2025 16:00:59 +0000
Manifest this update: Wed 10 Sep 2025 16:00:59 +0000
Manifest next update: Thu 11 Sep 2025 16:00:59 +0000
Files and hashes: 1: I9sseHHLcXl8IcXdLhoUbx9JLxs.roa (hash: C/Kew6JtLz4pztsJd8mKeGa9ZAlJTK60yskRJShN3Uo=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: XxN4OJxufI7PrQ5f6vyDnx3A0T37rwKC7qiQiavwgkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:db:c4:c9:d2:c3:d9:81:05:cc:bd:25:3a:7c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Sep 10 16:00:59 2025 GMT
Not After : Sep 11 16:00:59 2025 GMT
Subject: CN=2693ecaf9c5391edafdfc5c43f7a731cccb70f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c1:b5:da:d2:1e:40:24:51:83:83:7b:88:a7:
f4:52:20:00:35:9e:bc:53:4b:68:6c:78:8d:c0:62:
bf:a0:d3:6e:e5:ff:82:5c:0a:4e:fa:6a:21:b3:f8:
cd:b6:f0:c2:37:ec:58:b8:12:a2:fa:30:d1:75:37:
ad:75:02:c2:5c:58:f1:9e:52:94:7c:83:2a:01:46:
4d:1b:0a:4c:08:57:ab:8c:c5:b1:ac:e2:66:4b:20:
64:ad:11:0c:46:1b:03:4e:69:05:59:46:45:4e:e4:
d2:8c:15:fe:49:0a:84:0b:1c:2e:33:c9:73:be:38:
24:cc:e1:b1:df:0c:00:47:ec:93:18:3e:91:e3:78:
f9:18:91:0b:16:f2:96:21:79:af:a7:1c:f6:d9:e8:
bc:d4:b1:e8:3b:bd:c2:e2:ea:c8:3c:67:cb:c3:1a:
2e:44:c7:2b:c3:04:af:53:2b:a8:9a:01:c5:0b:fb:
75:68:74:39:29:20:77:3e:2c:7b:99:c3:a6:fc:6d:
19:4d:66:68:65:1e:94:1d:1e:d5:e6:e7:89:a9:14:
cd:b8:43:65:94:6f:c6:f9:74:1e:a8:d6:35:51:44:
9f:b4:20:60:cd:4e:83:88:ee:ca:c8:23:0c:80:01:
76:18:f2:c7:47:58:99:d3:d1:c5:f7:34:eb:ec:ca:
cf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:93:EC:AF:9C:53:91:ED:AF:DF:C5:C4:3F:7A:73:1C:CC:B7:0F:00
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:57:d3:30:82:25:bc:e2:92:61:a2:46:7e:47:ae:2b:08:80:
53:ea:1d:1f:da:d5:44:67:f4:96:8e:ea:c6:b1:a9:38:e6:0b:
e9:a1:08:70:54:5d:98:6c:a2:8d:26:56:b5:8c:ec:b0:a1:fd:
93:d9:26:4e:b1:c3:ea:97:28:29:03:c1:af:88:53:3e:e9:e9:
c8:09:1b:87:1c:d0:18:f1:9d:40:93:da:f5:79:4e:a2:38:a2:
50:3b:e6:10:45:b9:bd:7f:ce:46:c6:c7:39:4f:19:61:b4:02:
62:78:6e:e5:84:cb:4e:e5:86:fc:3d:3b:28:e4:ab:b2:3e:e6:
d6:3b:f2:c8:2b:47:24:f6:bd:53:2a:d6:6f:c5:0f:8d:b9:e4:
60:79:b6:56:fd:02:ca:c9:4b:81:c7:76:1d:cf:9c:c8:79:34:
61:93:e0:ab:ad:0f:7d:12:7d:fb:76:c1:06:d8:ba:3a:02:7b:
09:54:29:54:df:cb:83:18:7d:59:76:db:07:38:4f:96:d9:85:
eb:79:e3:48:a1:bb:4c:8c:dd:35:21:ed:a3:e0:ff:e1:16:ae:
92:64:9c:b5:96:71:b2:80:fa:ec:dd:8c:fd:96:f9:70:73:2a:
8c:bf:b6:48:08:70:31:8f:d0:06:ad:a3:39:3d:e5:d9:3c:39:
24:d7:bf:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:48:34 2025 by rpki-client