Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: H3W9yxCl1BIrQ0f+hhQ64FxbMutSDvXeil18alcdMro=
Subject key identifier: DD:E2:E0:A5:DB:8B:7A:01:54:01:B2:99:96:F6:9E:39:AB:A5:7E:85
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 01992DB521CF9299CDD29C334CAC6896D87D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 0604
Signing time: Tue 09 Sep 2025 09:01:09 +0000
Manifest this update: Tue 09 Sep 2025 09:01:09 +0000
Manifest next update: Wed 10 Sep 2025 09:01:09 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=)
6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: tCwb3Umn7X+CiVQ8J+Gp+YQ3etxHErTjnThXLHNngLg=)
9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:b5:21:cf:92:99:cd:d2:9c:33:4c:ac:68:96:d8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Sep 9 09:01:09 2025 GMT
Not After : Sep 10 09:01:09 2025 GMT
Subject: CN=dde2e0a5db8b7a015401b29996f69e39aba57e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:f0:d4:c9:b0:20:6a:96:74:3c:da:16:28:
f8:b4:15:17:d3:e6:be:22:de:1f:d6:89:c2:e6:6c:
b4:6d:5e:2e:f6:35:1e:09:51:68:c6:33:eb:8b:ab:
c9:e5:b1:8f:d9:07:66:92:d3:b9:6b:73:7f:66:b4:
a5:09:76:1b:7d:41:ae:e7:5a:0a:44:3e:ab:14:1d:
95:b9:1c:aa:b5:80:85:be:4b:04:bb:f2:18:3f:cb:
b3:f7:68:c1:a5:be:f7:1e:50:51:7b:d2:ff:8c:22:
6e:12:86:51:54:08:b4:c3:7a:d2:af:64:cf:c4:be:
e9:ee:e4:5c:44:a8:aa:39:0c:e2:18:b5:7d:2d:1a:
9b:b2:97:e0:51:fb:b1:19:58:7d:28:ea:40:27:08:
02:4a:14:72:33:a3:fb:f6:91:93:b7:cd:2f:a5:13:
bd:57:c8:45:2f:4a:0c:16:60:51:18:3d:87:3f:0b:
08:8c:c6:86:b9:0b:19:8f:e3:58:fb:fa:8c:bd:f9:
55:1a:71:13:e0:6b:14:95:e8:b9:ec:15:43:0b:08:
1d:9c:38:9e:e0:33:c4:20:6e:7c:2c:f7:2f:77:c4:
83:14:dc:bc:d3:cf:b3:9a:f6:97:b1:b0:55:be:5a:
65:11:e8:0b:93:d0:0b:2b:b5:75:e0:b7:c3:11:57:
b0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E2:E0:A5:DB:8B:7A:01:54:01:B2:99:96:F6:9E:39:AB:A5:7E:85
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4e:d6:30:7c:a6:0d:6e:ff:9e:6b:a1:ec:78:df:ea:a1:b0:
81:63:ba:20:80:b5:39:b5:de:2c:99:83:84:f2:60:87:07:29:
83:e5:b4:6b:80:34:52:ce:21:7e:81:a6:21:4a:e6:b3:c4:e5:
d2:15:c5:a9:5d:20:f6:7c:e2:9e:e9:5c:31:26:89:32:67:7a:
3c:ff:09:00:77:ee:0e:d5:49:f1:90:64:4a:2c:68:e6:1d:9e:
e4:c2:dc:4d:c2:79:f1:9d:c1:83:6f:47:3d:c0:af:c3:c1:57:
9d:a0:96:aa:46:21:19:df:57:0e:e0:5a:34:97:fa:40:01:d4:
17:e1:0f:85:49:b2:ed:26:d7:d6:36:32:3d:aa:7e:d0:c1:d0:
ce:0e:40:4d:ee:34:92:4e:92:f1:9c:4c:ba:ef:58:c9:52:aa:
43:ee:79:0d:ee:9d:9e:8f:87:9c:d0:cd:fb:f8:33:d9:32:eb:
6c:01:aa:3c:d8:a6:5d:9d:04:4d:5c:fc:c5:0c:1d:08:63:20:
1e:68:76:3b:82:6d:50:15:5d:30:c7:cb:df:12:6e:8b:4e:6e:
dc:a5:46:01:21:4e:a9:14:4b:8c:e2:83:96:4d:62:a9:67:c4:
6a:a4:0b:9c:b5:df:8f:23:93:43:00:40:fc:da:e0:0c:d2:9e:
cc:f7:ae:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 13:16:25 2025 by rpki-client