Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: eFYNwMUrhdEup/rXsU8MmD2oRPrNJCNi9kZ7ch85hdQ=
Subject key identifier: C2:7F:62:94:6A:5C:A5:F4:0B:A1:DE:92:F4:55:F8:3B:11:53:CF:F3
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 0199368114AF25D4C1BF30CFF6B6610A5DC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 1347
Signing time: Thu 11 Sep 2025 02:00:52 +0000
Manifest this update: Thu 11 Sep 2025 02:00:52 +0000
Manifest next update: Fri 12 Sep 2025 02:00:52 +0000
Files and hashes: 1: ZsbPyFKfDnHSbXB5Rdfyon4nTbQ.roa (hash: f+ETlYVDvmS9d48p0ZYmqykWIOKGSt0JzwDEXRuMaVs=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: GreWj+cgLW7xsd5OsKqIGy+bOP0qk3jjHwvIc3Yj3Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:81:14:af:25:d4:c1:bf:30:cf:f6:b6:61:0a:5d:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Sep 11 02:00:52 2025 GMT
Not After : Sep 12 02:00:52 2025 GMT
Subject: CN=c27f62946a5ca5f40ba1de92f455f83b1153cff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:59:36:64:20:fb:94:88:cb:e9:b8:05:45:
05:fa:7b:aa:2f:48:59:21:86:3c:e6:3a:6f:3d:da:
01:06:a9:8a:14:0e:05:59:57:8e:d8:06:24:9f:06:
87:d0:33:8c:97:69:74:54:c4:aa:d9:13:75:a4:15:
47:45:43:ef:27:3c:8e:dc:68:57:95:cc:8e:7e:1c:
8d:4a:70:be:59:e3:95:7b:75:21:a3:7f:a0:95:9b:
be:31:39:71:2c:6b:e8:d2:94:3f:28:26:37:81:78:
d4:b4:2f:39:4d:5c:d3:5b:73:c8:0d:3b:6a:78:f5:
9a:0e:b9:be:e6:3a:bf:93:6f:8a:18:ea:ab:15:a4:
ab:06:d6:78:d2:c4:89:af:85:9e:d2:4a:34:06:25:
74:da:45:7d:ca:be:c5:28:5a:9b:b5:18:b6:7d:3e:
84:c4:33:1c:2b:41:71:c5:59:46:1e:2c:5b:a2:c0:
a5:f4:a0:a7:b0:a8:71:2f:11:a9:f6:ef:5e:69:80:
0c:9d:12:71:94:76:4c:90:54:a8:e9:ef:31:1d:af:
85:54:db:4c:66:14:4f:14:a6:1a:ca:d9:b9:61:a7:
8b:84:0e:36:cf:99:22:05:c8:5a:04:a2:c3:63:f3:
1c:13:a9:71:43:b0:61:20:de:7e:69:56:f2:3a:ef:
bb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7F:62:94:6A:5C:A5:F4:0B:A1:DE:92:F4:55:F8:3B:11:53:CF:F3
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:11:ae:41:a1:be:7e:8e:34:3a:ba:a1:c4:3f:3a:b2:20:3c:
e5:df:c7:39:bb:e2:b5:09:02:3e:f2:77:37:4e:4d:85:71:52:
f8:f6:4a:69:5b:d6:c7:cc:79:b8:ac:db:a4:76:38:e5:d1:e2:
66:cc:f8:99:be:06:6a:0f:d6:0a:ff:68:de:b8:32:45:bc:70:
f4:9e:ce:37:1c:44:80:de:e7:b6:95:15:bf:48:31:ad:f9:0d:
95:c7:8d:5c:44:c8:4b:4b:6b:01:8a:ba:2f:b3:a8:56:2a:54:
f1:67:fb:67:40:a6:64:d2:02:e9:f0:d3:db:c4:a1:ef:99:05:
ed:23:d0:a3:c0:44:52:62:f7:28:cd:7f:75:2f:84:1f:aa:07:
93:4b:5c:18:53:cb:7b:56:55:92:b1:da:a7:c0:c4:5b:91:ce:
75:7b:5a:6d:70:8e:02:8b:a7:e7:de:eb:a3:97:43:89:59:22:
06:56:78:a2:dd:c9:0d:e8:a1:c7:63:0d:fd:11:b7:38:ad:e7:
f9:8f:45:36:27:92:42:32:99:39:93:3b:ae:9d:4d:ca:44:b3:
ce:79:36:97:79:32:56:9b:73:d5:46:72:5e:18:92:0d:a1:35:
33:31:95:35:df:6a:57:e1:90:5e:8b:f4:20:34:15:d9:e2:46:
20:70:eb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 08:36:48 2025 by rpki-client