Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: jftHB5xZsopsxBDe7f/EHgnJWqlCbdCC2Vm6q+3QJvI=
Subject key identifier: 5E:8F:39:1C:EC:15:DA:DA:BF:E0:98:7E:8A:DC:6B:3A:52:A1:80:99
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0199239F5F033D0904E548A6056EC8FB7BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 10:01:10 +0000
Manifest this update: Sun 07 Sep 2025 10:01:10 +0000
Manifest next update: Mon 08 Sep 2025 10:01:10 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: THsgBoh9vvSMfen/MsL7jQCg9rAiRHN7maFULu7zfcY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:5f:03:3d:09:04:e5:48:a6:05:6e:c8:fb:7b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Sep 7 10:01:10 2025 GMT
Not After : Sep 8 10:01:10 2025 GMT
Subject: CN=5e8f391cec15dadabfe0987e8adc6b3a52a18099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ee:41:86:8a:2c:39:b9:7a:31:a3:31:f1:c2:
43:fd:e1:31:eb:c0:43:ab:b4:d5:81:d8:a2:99:83:
20:38:3f:75:fe:cd:1e:8c:35:df:dd:f8:d5:89:3f:
48:a7:32:0b:16:fa:65:ac:97:92:51:74:9e:13:df:
cf:78:c5:17:2e:38:ae:5c:99:e9:4a:43:a4:45:79:
bf:fb:7f:66:8e:8c:eb:ad:ea:08:93:d6:5b:43:dc:
c6:32:a4:fb:5f:f6:5a:82:6f:fa:44:0e:94:87:fe:
bc:c5:51:25:39:09:92:62:81:9c:9a:a8:4e:fd:8a:
2f:be:20:a9:c8:d4:a0:d6:b8:d2:c1:b3:a5:ee:6b:
2c:ee:a0:11:9b:e4:45:06:77:a8:73:b1:d6:52:9c:
99:01:c9:a3:86:c3:38:1e:4d:4c:a1:b9:97:00:17:
25:b8:03:ed:77:f1:0b:fb:f1:65:06:68:cd:76:12:
e1:52:12:7d:cb:95:ca:a6:0f:90:9f:17:07:6e:02:
5f:81:75:68:5c:4d:29:06:41:10:93:05:3c:73:73:
91:21:93:13:83:c0:cc:7f:44:80:cf:48:40:eb:e8:
69:cb:70:b3:7b:38:6e:fd:08:de:2a:8a:00:31:55:
a6:cd:64:31:45:03:82:f7:be:ac:b5:97:bf:8e:d6:
35:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:39:1C:EC:15:DA:DA:BF:E0:98:7E:8A:DC:6B:3A:52:A1:80:99
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:a9:39:1e:8b:e1:f7:e5:33:58:17:1f:8a:b4:17:54:8f:14:
a0:31:31:08:be:68:7a:0b:d2:cb:b5:e1:8a:ac:98:b3:03:c4:
57:24:e9:e0:0a:16:25:9b:a2:ed:9d:0c:68:24:45:4f:87:21:
c1:91:82:96:d4:2b:67:7e:73:ad:4e:b0:78:25:d7:7d:86:6e:
d0:7c:59:d6:d1:19:92:01:76:09:db:36:39:9e:aa:37:04:eb:
65:dc:99:05:8d:e3:47:66:e4:2a:44:e8:6b:d8:1e:1a:92:89:
33:55:a1:45:1e:b4:64:83:9e:33:bf:4e:72:9d:3f:1b:e6:51:
75:6b:52:b2:ad:16:c2:8b:53:9d:86:04:c2:45:46:6e:01:7c:
8c:2e:f4:4b:33:8e:89:47:36:af:23:a9:45:93:78:76:36:ac:
70:92:27:04:41:8d:b4:17:29:e9:35:23:01:40:11:ce:6b:5c:
62:73:48:29:b3:9f:3d:bb:97:5b:d1:3e:6f:0e:3d:07:fd:a2:
14:ba:34:53:88:05:d9:2b:68:e9:29:dc:63:36:7b:01:58:12:
7c:f9:74:23:f2:d9:13:6c:1f:26:64:c1:af:67:d1:24:bc:e8:
9d:12:b3:0f:c2:91:57:cf:3f:51:fb:05:9f:11:17:52:66:8c:
0d:a1:94:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:36:40 2025 by rpki-client