Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: XpxEhEfSGxNqfaEX/QzLMbvOlz95MNBUvUDzqCax4UU=
Subject key identifier: 0B:76:97:80:87:75:A6:DC:79:F3:71:DF:42:D5:1B:5E:62:60:09:A2
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 0199183FEEFC35E599C6BE9E57CC83AB917E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: 048D
Signing time: Fri 05 Sep 2025 05:01:07 +0000
Manifest this update: Fri 05 Sep 2025 05:01:07 +0000
Manifest next update: Sat 06 Sep 2025 05:01:07 +0000
Files and hashes: 1: K7qTK9pIyiEZfe3oYQ_ZP0X2yEA.roa (hash: aRm9dSDweAWyai2Lyi7lBDWMUI5ncN0CehfI1VhjASU=)
2: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: E9q+6jYK/veivlU4ezL8vrGBxpvajxaz73TDKLE3gK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:ee:fc:35:e5:99:c6:be:9e:57:cc:83:ab:91:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Sep 5 05:01:07 2025 GMT
Not After : Sep 6 05:01:07 2025 GMT
Subject: CN=0b7697808775a6dc79f371df42d51b5e626009a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:33:c3:ce:23:93:d2:9e:d2:31:19:e2:ed:
4a:4f:fe:c1:85:3c:20:cd:9d:f2:dd:ed:17:df:81:
a4:fb:f5:55:b7:ce:bd:b8:16:64:2a:b2:cf:31:fe:
b5:39:71:01:97:25:ed:af:ae:19:71:0c:80:41:49:
8c:0d:a4:d9:2d:bd:01:3b:d7:97:30:53:1c:81:55:
90:12:36:ae:86:1e:fb:af:f5:f2:df:bc:30:d7:34:
de:5d:13:7a:3a:7b:84:80:a9:71:39:2f:ac:cc:e8:
09:ff:e5:f0:ae:63:e4:ce:59:31:0c:f3:90:cb:37:
9b:65:96:ce:5c:ea:5a:7a:9c:6f:7e:3f:8b:23:1d:
da:5a:d2:cc:74:ca:34:e6:76:66:3b:54:58:4a:bb:
7e:32:86:e7:7c:0c:8b:8a:39:5a:b1:49:99:83:c4:
7e:56:3d:63:64:66:3c:fa:ab:d3:53:4b:7f:d5:77:
02:c9:02:1f:69:7f:7d:ef:39:4c:5a:10:92:04:bb:
6a:f6:e0:d6:f0:1e:26:f7:38:76:fa:dd:18:11:be:
cb:e5:26:88:c6:3a:a1:1a:cb:0c:0d:a7:a1:ef:a6:
29:0b:7d:17:43:ec:2f:cd:7c:6a:b4:68:ca:90:2a:
00:ce:13:ee:cd:84:4f:45:40:1f:fa:9c:62:b4:d4:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:76:97:80:87:75:A6:DC:79:F3:71:DF:42:D5:1B:5E:62:60:09:A2
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0b:ba:e6:67:04:f8:49:85:9f:d7:f0:33:7b:b7:a1:e3:cb:
97:9c:31:a7:41:36:1b:5b:0e:85:e9:b4:04:b5:41:85:00:bd:
e3:91:20:78:cf:ad:0f:fc:f9:e6:c1:f9:9e:9d:40:15:4b:ca:
4c:ff:30:68:15:b4:5d:b4:42:ec:c1:92:1c:5a:51:6e:c9:0f:
83:24:98:6a:c0:0c:84:5c:86:34:c4:c8:87:ac:6f:41:aa:af:
b0:7a:c3:fc:b9:46:4b:c7:ac:35:f4:25:dc:3b:76:63:9a:b5:
79:6c:28:37:30:f5:ba:dc:dd:87:15:ce:97:c5:ad:c5:b1:a6:
be:33:48:ff:e9:48:f6:fa:d0:77:de:92:35:52:5e:ef:56:9b:
13:a0:e7:fc:96:2b:e3:55:af:d3:93:b3:ed:65:eb:00:34:7c:
27:b8:2d:74:a0:be:e0:f5:31:5d:de:66:e0:79:d8:4c:26:21:
a5:79:ca:7f:4b:b1:17:04:b9:81:be:ab:21:00:df:6d:f4:b0:
36:07:55:01:68:f4:6b:27:6e:d4:4c:c1:84:2e:af:04:2d:04:
73:f4:ea:68:3a:e8:b2:ec:f4:17:64:b8:eb:d0:2f:06:84:21:
2b:74:07:93:12:7e:f6:b3:72:11:99:8c:6a:84:00:72:23:f1:
02:f9:c4:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:34:53 2025 by rpki-client