Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
File: Ojz5kZosgUbJb1oUsVdFm3lLai4.mft (raw, json)
Hash identifier: 6gX1ZkkmwiaWV6aFL77sB75TwdVClMNkay9joeQ+qZA=
Subject key identifier: 5A:7F:2D:5D:1C:17:9B:66:BD:40:EF:C7:B2:4D:56:80:66:23:13:6D
Authority key identifier: 3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
Certificate issuer: /CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Certificate serial: 0199500AD19639C68C2B688EB127D2F7AF8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
Manifest number: 1689
Signing time: Tue 16 Sep 2025 01:01:50 +0000
Manifest this update: Tue 16 Sep 2025 01:01:50 +0000
Manifest next update: Wed 17 Sep 2025 01:01:50 +0000
Files and hashes: 1: Ojz5kZosgUbJb1oUsVdFm3lLai4.crl (hash: Zeztw4PiEk2eMDlT/MPLhU+yoc7YPz3sTxdU/LKx96k=)
2: jm4B5paf_GVr-GpkHFsecVdl0nk.roa (hash: l8vtbC+hCoUUJ+YOCg7b9XUWVs7njLshIKLeOlHSZao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:0a:d1:96:39:c6:8c:2b:68:8e:b1:27:d2:f7:af:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Validity
Not Before: Sep 16 01:01:50 2025 GMT
Not After : Sep 17 01:01:50 2025 GMT
Subject: CN=5a7f2d5d1c179b66bd40efc7b24d56806623136d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:77:ba:6f:f8:60:53:34:9c:22:62:10:c4:31:
d5:7e:4e:29:e3:1e:b1:ea:26:e6:36:97:8b:18:ab:
04:6c:a7:1a:8c:19:5f:32:63:50:f4:21:6b:65:c5:
2a:60:76:72:83:62:cc:11:62:d4:5f:98:36:2a:f7:
7b:b1:d5:c1:fc:37:2c:90:c2:bf:4d:2b:ea:5a:07:
b6:f2:7b:7c:5c:68:8c:9c:2b:2c:ea:b6:76:67:a4:
85:f6:1d:38:43:73:e4:fe:d1:0b:06:98:53:cf:fe:
f3:be:e8:e0:55:0c:54:e8:13:56:07:dd:a6:f8:b2:
9a:04:f4:fb:07:9d:07:e5:b3:5c:35:bd:f2:f9:b7:
19:b6:f7:59:aa:94:f7:8a:d5:01:a8:01:97:a4:75:
1f:4d:17:0e:b5:76:fb:1f:67:b0:d9:98:1d:f7:d0:
30:a0:63:4b:a9:f5:64:30:2d:54:fc:1f:84:a8:85:
8c:4d:c6:80:a1:38:3d:c5:ec:a4:f4:9e:e7:b9:cf:
72:01:9a:a3:96:b6:22:81:5f:75:fd:29:04:87:19:
da:dd:48:df:16:0c:05:b9:cc:43:19:35:d4:78:10:
ff:04:b5:fe:f9:a8:f3:89:1c:44:3e:c0:04:41:d1:
30:c8:87:b0:7d:9b:d2:00:14:d1:60:9f:66:53:94:
36:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7F:2D:5D:1C:17:9B:66:BD:40:EF:C7:B2:4D:56:80:66:23:13:6D
X509v3 Authority Key Identifier:
keyid:3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a4:8e:68:e9:ef:50:41:85:76:fa:f7:b6:85:30:26:b0:8a:
87:e3:7c:70:7d:26:e8:1a:5a:a7:38:af:55:e1:3b:82:60:97:
a6:80:84:91:f9:6e:84:92:c8:6d:c6:95:49:96:34:cc:b9:d1:
4b:5b:4f:61:3b:84:d4:a6:5e:7a:84:16:10:59:ce:76:cb:09:
b0:1b:27:dd:57:aa:21:04:24:d1:5a:86:a0:13:37:41:8c:f8:
f9:c1:c7:89:a6:33:57:5f:92:76:cd:d0:39:27:7e:28:4c:65:
0f:2f:53:b9:de:b0:7c:12:32:6b:0f:94:48:56:ab:16:d1:da:
9a:e6:9a:93:39:b8:da:19:53:1c:fb:c0:fd:42:99:ed:ba:8e:
74:bf:df:17:b5:83:79:c9:c6:e9:d4:7a:15:bb:ff:95:57:c8:
18:d8:40:d5:8c:f1:86:18:ec:dd:d0:1a:53:24:53:6e:10:c4:
10:48:11:43:96:f9:e4:51:23:e4:e3:fc:b8:c6:23:52:df:aa:
01:1d:0f:eb:95:86:57:c8:5e:62:59:4c:15:1a:74:65:2d:1b:
38:80:7c:4d:86:e4:51:ed:00:d4:fb:7d:9e:87:df:a9:99:5a:
0a:ae:f1:4c:44:07:29:4d:8b:54:49:f1:54:6b:2a:d6:ec:84:
25:59:97:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 05:53:52 2025 by rpki-client