Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: kDx4bh0KrcA37zs1aQ1RKLwiarDDIFXhj8F22M1F/RE=
Subject key identifier: 75:A6:97:7B:A7:B9:71:A5:07:29:62:67:C7:AC:7A:22:2C:0C:ED:63
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 019A71B8E6098E6AC50C38C5DC3153D9BBB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0CE0
Signing time: Tue 11 Nov 2025 07:02:14 +0000
Manifest this update: Tue 11 Nov 2025 07:02:14 +0000
Manifest next update: Wed 12 Nov 2025 07:02:14 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: ccGNy9vsIbQF+6lRoyqVIvkmf0mvb6CpMP8Hoda5epA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:e6:09:8e:6a:c5:0c:38:c5:dc:31:53:d9:bb:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Nov 11 07:02:14 2025 GMT
Not After : Nov 12 07:02:14 2025 GMT
Subject: CN=75a6977ba7b971a507296267c7ac7a222c0ced63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d3:69:ab:25:10:a5:e2:ef:55:a4:ae:ee:b0:
18:dd:f1:2a:54:f0:4b:31:d7:46:33:67:74:29:f8:
e9:28:d8:7b:d6:f8:d1:77:27:24:8c:1a:c7:e1:5d:
83:ac:2b:85:4a:25:90:07:ed:e1:8f:ca:eb:90:a1:
c3:b6:e5:ad:0d:3c:10:93:85:19:16:c4:1e:0e:12:
52:d8:78:86:6f:87:79:e1:50:af:40:f5:90:28:7d:
fb:22:ce:4c:58:61:4b:36:8e:ac:49:bd:ba:e0:0a:
56:f1:2d:48:e3:0b:f9:ee:a5:a9:39:3c:40:79:ed:
7f:e1:d1:6c:16:71:a7:74:00:d8:88:1b:f6:02:00:
8f:27:2b:f4:12:00:81:d9:2b:7b:26:2f:38:be:0b:
8d:2a:30:76:1b:66:c2:59:93:6b:0e:17:7a:c1:fc:
dd:07:81:b4:2b:67:e5:ff:b3:02:2d:35:80:3d:18:
1c:0c:aa:1b:71:75:13:d9:f1:b0:55:b5:b5:c6:c0:
39:ec:83:7f:aa:ec:d5:42:30:b8:dc:ff:84:8a:69:
29:fd:2a:a8:21:18:dc:c6:79:bb:d4:4a:3b:7d:94:
80:74:97:a0:d3:be:b6:f3:21:df:6c:4a:ab:55:16:
f6:87:40:3a:0f:66:c1:07:c5:8d:51:3a:6d:cc:83:
8f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A6:97:7B:A7:B9:71:A5:07:29:62:67:C7:AC:7A:22:2C:0C:ED:63
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:1c:c8:38:e6:20:82:eb:77:7a:3e:4a:e9:77:ff:14:c6:8f:
20:ca:68:94:ff:c5:b7:d3:d8:d3:12:1f:2e:61:84:c1:be:7c:
27:75:fb:73:6b:6e:33:07:63:e6:1c:5b:4b:e3:a6:af:ac:f7:
5d:02:46:2a:42:94:82:7d:57:c2:c4:57:b6:b0:ee:d6:c9:a4:
90:cd:5d:2e:90:4d:58:00:52:92:55:45:4c:fb:4e:56:17:7d:
77:87:3b:e8:15:04:10:08:ec:20:1e:a1:61:7b:2a:1c:09:51:
08:41:58:a1:2a:01:8b:58:70:bd:d2:7e:b3:53:16:c3:c0:30:
8f:c3:df:33:92:8c:67:36:4c:db:f5:2b:b0:0d:8a:42:42:cc:
9e:b8:30:bf:13:c4:39:db:22:45:75:05:f3:9a:ae:13:0c:16:
d3:e4:b1:19:a3:c5:a3:98:a4:c8:74:54:de:fb:9f:91:ae:df:
e5:af:e7:b0:4f:9b:cc:91:7e:57:1b:3f:1d:e7:f6:b7:6a:9a:
30:b0:af:01:67:6d:0f:60:95:60:4b:82:58:bf:69:5a:ea:47:
7e:79:6d:3c:a1:3c:09:fb:49:a7:e2:b6:24:60:bf:25:d1:a9:
0b:b7:76:59:b2:ba:19:9c:2e:fc:79:9a:bf:fd:8d:ea:9a:c6:
24:e1:f8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:57:20 2025 by rpki-client