Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: FB0wZ/lSJCoObAA9JER9edF3pM5VVZ3XkPT+RQlgmqA=
Subject key identifier: 84:81:FE:33:4C:00:65:1E:3A:83:CD:8E:51:04:C9:B8:56:99:7F:12
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 0199180A5A4190351DC60E415C1D198CAC12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0635
Signing time: Fri 05 Sep 2025 04:02:35 +0000
Manifest this update: Fri 05 Sep 2025 04:02:35 +0000
Manifest next update: Sat 06 Sep 2025 04:02:35 +0000
Files and hashes: 1: Gypkdj0YzV09CUhQDEVD4WJ_3nw.roa (hash: AwtHAAe72tz+YoxvqIrgrMyqdDlF1Hw0fL2VOURSDhg=)
2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: 7xoXuztrZywAzkh/AznUtW1mZ/7hFkfk9aI0E5fh6u0=)
3: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
4: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:0a:5a:41:90:35:1d:c6:0e:41:5c:1d:19:8c:ac:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Sep 5 04:02:35 2025 GMT
Not After : Sep 6 04:02:35 2025 GMT
Subject: CN=8481fe334c00651e3a83cd8e5104c9b856997f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5e:69:ee:ec:21:bb:67:54:de:8d:c7:ec:15:
ed:21:7b:c2:47:2d:19:50:c5:bb:21:33:1c:ff:00:
90:fb:ff:1c:b2:8a:92:2c:66:8a:d9:1f:f2:12:b9:
81:0d:d4:c5:95:cf:e6:c1:bf:b8:22:cf:37:ca:66:
7f:3c:6a:31:f9:69:6b:22:df:49:69:e0:5d:68:a8:
94:73:1b:63:15:18:d4:83:16:1b:a6:a9:5f:82:b4:
ed:05:ed:b8:1b:14:ab:fc:f1:8b:f0:13:09:a4:e4:
8a:d3:c9:e5:8e:00:c5:6e:a2:71:aa:0e:14:44:ff:
59:56:09:14:75:b9:cd:75:52:6f:79:1d:0a:1d:7a:
cc:94:3d:96:e0:9c:c4:b8:9d:5e:92:75:55:27:8d:
db:9d:4f:23:d6:2c:e4:7f:11:52:94:9c:72:30:7f:
99:eb:bd:42:12:92:de:13:14:c2:eb:23:05:bd:70:
3e:a6:46:7e:f1:fc:22:e0:04:7b:11:bf:7b:3d:3b:
6e:38:0f:95:df:24:0c:13:7b:6a:ba:2a:d4:fd:e7:
88:c4:b5:31:72:24:4c:10:83:37:b3:b9:26:91:02:
68:36:70:ce:2b:e4:4a:96:07:e6:39:9c:7c:bd:e0:
6e:1a:d7:5a:b4:00:20:0c:21:49:32:99:09:29:6e:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:81:FE:33:4C:00:65:1E:3A:83:CD:8E:51:04:C9:B8:56:99:7F:12
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:fd:55:ea:a6:03:14:7e:da:f4:e6:29:24:e3:d5:cb:81:e9:
de:df:bb:a1:77:57:8d:ab:a4:75:cb:76:7d:6d:73:f2:75:c0:
63:3b:58:7d:f1:94:a7:f0:53:6d:d0:9d:53:ef:a8:ab:52:7b:
11:4b:9b:fb:0e:5c:c8:e5:e3:df:ec:72:5d:7c:68:72:9a:49:
d7:be:eb:82:09:75:8f:27:d3:f9:a0:e0:15:ac:56:7a:da:93:
2a:0c:34:c5:30:37:d6:ad:9a:57:77:9f:ae:47:96:bf:95:52:
1a:5a:23:99:66:51:9c:22:93:6b:1d:6e:13:46:20:f7:ea:7c:
2f:df:f4:89:60:68:49:45:62:51:30:d4:4b:6b:ab:88:94:50:
c1:ff:ef:79:f1:8e:7e:28:33:15:c4:a0:23:0c:e9:e1:b4:74:
7d:0d:d9:bd:9c:d7:91:02:71:35:e2:8e:4a:f1:e2:fd:7c:9d:
45:78:fc:0e:94:16:d7:95:5c:24:83:c5:c2:41:78:a8:7f:45:
8e:9b:39:fd:4f:86:2e:0c:24:e7:52:0f:20:18:b6:04:bd:45:
ce:10:24:60:69:23:57:15:43:4c:54:b0:7c:ef:86:17:ed:ed:
db:38:d8:95:b3:f3:d4:74:df:e6:de:1b:26:a9:8f:73:e2:10:
60:a6:7b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 05:54:45 2025 by rpki-client