Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
File: ovl077UOcpyeAVqLwrbCsGGd_IQ.mft (raw, json)
Hash identifier: FJu85LeWf+FjMSGVDlEp0FjarO4U7DPCF8tdki5+8wU=
Subject key identifier: AD:79:6C:40:E8:C9:14:ED:81:AC:BF:22:B7:AB:4A:D3:22:D4:F4:18
Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Certificate serial: 01992443E8954EFF3F97A1B143F17401659E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
Manifest number: 0B3D
Signing time: Sun 07 Sep 2025 13:00:54 +0000
Manifest this update: Sun 07 Sep 2025 13:00:54 +0000
Manifest next update: Mon 08 Sep 2025 13:00:54 +0000
Files and hashes: 1: Uk_aanYMRxowJq16GMNyhbsFOEw.roa (hash: creuRsSl8nSakc/hCQHakSFNIaRZLii8X1gMM9BUYWY=)
2: ovl077UOcpyeAVqLwrbCsGGd_IQ.crl (hash: dURgznYDfpSZPs3T8C16fpZmLZptJesrZsqSZpZSIRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:43:e8:95:4e:ff:3f:97:a1:b1:43:f1:74:01:65:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Validity
Not Before: Sep 7 13:00:54 2025 GMT
Not After : Sep 8 13:00:54 2025 GMT
Subject: CN=ad796c40e8c914ed81acbf22b7ab4ad322d4f418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:d7:57:5f:38:89:35:71:8a:b6:33:08:24:
3b:bc:2a:d3:f6:fd:11:9b:fb:0f:a0:13:ce:59:96:
9b:e7:95:5a:08:22:07:2b:f5:b4:66:48:ec:1d:cc:
9d:86:3e:1d:7b:c0:25:f7:a8:5b:c4:76:23:0c:3e:
55:f8:af:3c:d9:7d:6e:e8:07:5d:41:9a:cb:2e:0c:
bb:43:eb:8a:13:03:8b:1c:2b:cb:0a:2f:47:f5:be:
79:e3:9b:ba:eb:b0:ce:61:40:1b:55:bc:3e:ed:3c:
46:a8:55:14:4d:4b:08:94:fd:e2:d6:a1:c7:11:90:
23:c9:43:d8:e8:65:a0:96:da:94:91:19:7e:ac:bc:
f0:4c:fc:28:5f:df:80:b3:69:84:15:06:0c:d2:c7:
60:bd:30:c1:a5:f6:47:22:fd:2d:ce:18:17:d7:05:
df:ad:26:bb:40:10:17:04:8d:0c:1c:23:2d:0c:9e:
b6:35:da:24:ce:8b:cb:56:f5:cf:7a:1b:b8:ef:d5:
52:c8:4a:2a:31:0f:24:2a:a0:12:b7:8d:e3:d0:8d:
57:e4:7b:82:4b:43:25:33:71:56:77:6f:b5:6e:6c:
87:70:61:fa:22:89:65:3f:a2:7e:25:7b:11:5b:ab:
8e:fc:7f:04:c9:48:3a:6b:ef:9b:c6:8d:22:af:b8:
ee:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:79:6C:40:E8:C9:14:ED:81:AC:BF:22:B7:AB:4A:D3:22:D4:F4:18
X509v3 Authority Key Identifier:
keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a2:aa:01:65:7d:af:f4:a8:b0:6f:d4:87:66:91:63:73:3b:
f7:d9:52:cb:bc:69:01:c0:e2:01:ca:36:72:69:23:0f:40:8e:
2e:02:29:43:64:80:b5:e4:0c:03:20:93:d6:fc:30:10:46:c7:
d8:c2:22:be:74:97:1d:54:9a:11:c4:cd:03:36:f1:c9:f9:d3:
ad:89:a5:a3:21:24:08:d1:c4:9c:cc:83:41:63:3d:f7:8e:ba:
58:f7:93:0a:78:93:66:e4:e8:45:61:06:a5:50:f4:0c:ab:8b:
b9:1b:03:fe:76:d3:32:36:26:94:35:be:36:36:dd:fd:7e:2a:
aa:6c:1e:b7:ed:86:04:e1:4a:5f:15:a1:cd:64:28:83:60:18:
05:21:7b:be:22:f0:59:93:ac:2d:aa:ad:a2:31:51:bc:9e:4d:
07:f3:55:c3:c6:e2:c4:cf:30:3b:74:7f:14:d9:13:a4:d1:1a:
cb:a7:81:aa:86:88:d4:41:19:3d:46:fb:cf:d1:db:3d:4b:3c:
ab:61:ed:df:e5:22:4a:40:60:ba:1b:76:e1:b0:ba:52:da:f2:
f0:e0:30:c0:90:46:fd:a2:59:d1:38:78:04:6a:69:40:8e:a5:
ef:8c:e8:b7:76:06:4b:86:f3:12:50:28:81:ce:50:95:ca:c9:
7d:02:b4:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:05:22 2025 by rpki-client