Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: MiIe652kGh2eg/KXfdhLPziFuu7BfVjDkWgKKx1N6Qo=
Subject key identifier: A6:C6:F9:9A:C2:5C:A5:E1:D7:84:D4:46:EB:88:46:7C:BF:C8:7B:B6
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 01991C1C0D8528601635578C141EFEDB6990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 1352
Signing time: Fri 05 Sep 2025 23:00:24 +0000
Manifest this update: Fri 05 Sep 2025 23:00:24 +0000
Manifest next update: Sat 06 Sep 2025 23:00:24 +0000
Files and hashes: 1: 7F1fGgeaeQSGNxeZxHKehoCFDbE.roa (hash: G34mOFPeKp5+zztRKCCmLxDUMfqD5XJqmdch8xEkSoY=)
2: C8QSMz8GNoIQm4uSFWS26QwX4TU.roa (hash: NCS38C69vxkOze1iM8evBR20KFQKimFCiPTQOaoZSEg=)
3: XJPUj_synwIHQp7bRuj9018K67k.roa (hash: nLvY6PY+U32R2cW/5HWGZNjEV3iPA1E/ctSR2ZD+DlI=)
4: XZOzWNS9uSJXxdofEgbqQ-4LX8Q.roa (hash: +R0Sy7oAn0ABCK0E7oKA/ofkAMnGgDdtdmPnmJOjdTs=)
5: YCQuqCy9NuRyU0S6FabSa0c6NJs.roa (hash: z0MGBwlcQwzapOIPDSPyZ4kB4JdwESi59TmNtwz3tdw=)
6: luxlDaP5S8ObPuSdfGG5jYy9i5M.roa (hash: 77j6FmpQDyTfoFeeOD1e16nzr03VwpDOQuhMjxPM3Tg=)
7: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: KJPeMy7VEdytb0rOw6aFB7Q2knssvSLMRmTTJ9rvZzI=)
8: v4n00KmIPMAeaXO1e4oehEUWYOs.roa (hash: 7qEK4cAhcKMrkHzInLLOjuudGbx99FNXFdW89sFY/Us=)
9: zQz3tWtapn8qKz4rYeWGGnS9boI.roa (hash: Oet1y32LyQ4if4pkKw3gO80qX4zMy1K2uegwxuTNvQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:1c:0d:85:28:60:16:35:57:8c:14:1e:fe:db:69:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Sep 5 23:00:24 2025 GMT
Not After : Sep 6 23:00:24 2025 GMT
Subject: CN=a6c6f99ac25ca5e1d784d446eb88467cbfc87bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b0:78:66:35:7b:3d:be:e0:ec:a9:eb:76:fb:
c8:29:1b:a8:2b:94:9b:82:a7:b0:6b:1d:d3:48:54:
02:17:b7:11:9f:52:23:a3:c8:db:0b:75:af:46:7e:
dd:0e:ac:c1:d1:7c:24:f1:8a:3b:99:93:21:ff:a4:
6b:3b:a4:59:d9:c7:ca:3c:35:1b:2d:40:81:39:6e:
af:59:4a:77:4b:49:53:95:09:cd:e1:76:6d:98:b4:
71:bf:6a:ce:1c:56:b0:b3:ea:a7:ca:73:20:6f:89:
c9:6f:5d:19:c5:79:ae:68:c0:42:c7:e3:c7:fe:79:
f6:c5:5a:96:ea:56:ad:94:d3:06:65:58:ff:4c:e7:
ee:5b:95:cd:82:d4:6d:eb:f2:d9:4b:70:98:ca:40:
4f:35:b1:d7:50:5f:87:0c:19:25:e6:d8:da:fe:2a:
14:61:25:9b:9e:9c:7b:16:55:07:1f:ee:45:57:41:
da:92:21:49:c7:bd:11:4b:05:0f:83:01:98:d3:8a:
06:db:c1:65:f2:51:5e:cd:9c:ff:73:d8:70:08:f2:
8e:52:b8:1d:7d:7b:d9:2c:35:f1:56:96:6c:9c:c9:
3d:dd:85:91:75:29:c6:03:94:7f:77:8e:c6:e9:2c:
36:ed:a6:09:df:c7:e7:f4:a3:e9:d8:af:ae:54:6c:
56:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C6:F9:9A:C2:5C:A5:E1:D7:84:D4:46:EB:88:46:7C:BF:C8:7B:B6
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:16:c4:ca:72:37:ff:f1:88:1b:d2:5d:65:7a:74:b3:76:ca:
3a:83:b5:48:33:84:56:b4:79:5c:10:bb:d9:84:2f:7e:d3:34:
3f:09:2a:38:d2:5b:cb:45:df:dd:c1:f7:ab:e7:0b:b5:1f:e4:
56:20:6e:d0:b5:10:2b:e9:08:10:ce:a2:40:ac:59:d7:ec:f2:
9d:6e:a2:22:b9:b9:58:a0:03:df:f9:71:1e:71:ad:6c:90:9e:
66:0d:6c:96:14:78:b9:fa:3c:9d:95:f2:89:3b:3e:7e:c1:ce:
74:c1:47:2b:3d:e9:68:22:46:ce:06:7a:97:33:d5:8d:d0:19:
a7:d9:b9:80:94:34:c9:e2:65:24:1a:ff:d6:5a:00:9d:7d:5a:
4f:3e:c0:a6:b3:0e:ec:64:5f:de:bc:59:d6:a0:85:a5:03:9a:
ca:5d:6a:d8:05:2f:ee:79:a2:68:0f:52:d1:11:18:5e:f5:da:
a3:44:6b:4b:eb:39:a3:5d:bb:08:0b:f7:50:9e:61:0b:d5:68:
49:58:1a:66:03:89:87:4a:12:c7:ea:ab:d2:00:84:70:8e:96:
9f:7d:62:4e:16:52:86:f9:0c:84:58:67:7d:45:06:f3:ba:91:
12:f0:de:6a:f2:dc:2e:b1:68:3d:29:13:b3:81:61:bb:e4:b3:
8e:df:21:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 04:52:11 2025 by rpki-client