Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: oqfPSH3fgdbjAbpZSyXd5m8ECErx62aUkOQ5gvqWtwo=
Subject key identifier: FA:F2:42:51:E8:32:C8:89:9B:52:3A:1A:6D:AC:0D:8F:2A:AC:A4:8F
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 019916BF0509363F4A9D31E159E51208C069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0F94
Signing time: Thu 04 Sep 2025 22:00:41 +0000
Manifest this update: Thu 04 Sep 2025 22:00:41 +0000
Manifest next update: Fri 05 Sep 2025 22:00:41 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: Dbxmus5lW2XkI4RemqGwpVft91zrAq3U51h9X79qLK0=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:bf:05:09:36:3f:4a:9d:31:e1:59:e5:12:08:c0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Sep 4 22:00:41 2025 GMT
Not After : Sep 5 22:00:41 2025 GMT
Subject: CN=faf24251e832c8899b523a1a6dac0d8f2aaca48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ca:54:f2:c1:5d:4a:58:82:be:53:d3:92:1f:
46:a9:08:39:c3:f5:eb:8e:a3:4d:36:50:97:ec:c7:
56:4c:14:46:3f:db:9b:6f:28:65:d5:9a:a6:ea:ed:
eb:07:ea:a0:f6:f6:fe:26:b8:33:6c:8b:91:e2:02:
34:bd:7d:5b:38:04:0f:d8:56:d5:e2:67:ae:f6:19:
49:47:4a:3e:aa:e6:26:67:cb:51:9b:a5:fa:92:00:
f4:af:3d:a6:8a:bf:e6:10:bb:4c:cb:fc:91:fa:7a:
96:bd:8b:44:5b:cf:ba:61:52:44:de:33:d4:89:f6:
09:e0:49:a5:9d:df:1d:2e:39:27:64:58:5f:d7:1d:
de:28:35:c6:c4:0d:47:5c:89:53:e8:14:17:0a:58:
4e:71:09:60:52:d2:6a:d3:10:4d:9b:b4:03:97:ff:
3a:6b:0b:4e:6c:4f:93:7f:f5:6b:01:f9:6f:f0:76:
ce:ab:07:ab:87:93:63:a0:09:41:e8:a9:aa:3b:c2:
2e:de:38:bd:70:e0:e7:d1:fa:cb:87:c7:fc:8b:c6:
70:a4:79:00:5d:2f:09:b1:65:21:69:12:ce:a4:40:
52:16:c7:13:49:dd:76:ea:d5:8e:c4:a1:81:91:b8:
2b:6b:ca:e2:9e:63:97:e2:fb:a3:0f:92:01:ad:ea:
e6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F2:42:51:E8:32:C8:89:9B:52:3A:1A:6D:AC:0D:8F:2A:AC:A4:8F
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:48:97:80:51:34:83:24:a3:b3:48:34:bd:6e:b7:e8:a3:db:
d2:4b:f2:b0:47:a8:62:6e:f9:83:6b:fe:dd:01:90:ce:a2:cc:
cc:bf:e8:ec:5f:50:1d:a9:43:2e:96:bc:db:93:ab:68:99:60:
58:fb:5a:36:ea:30:6d:e8:58:bf:0c:f8:9c:d9:27:22:f6:96:
8a:4d:d0:d7:4b:e9:9b:27:f0:43:ea:60:ad:2c:a8:36:83:fa:
e4:e4:45:2c:0a:c1:51:50:b3:2f:6c:5e:42:44:d7:f3:6f:e6:
da:a9:dc:d9:05:c3:15:fb:e3:71:34:7a:5e:82:4c:d6:45:c3:
1a:24:d9:d8:4a:4e:31:c4:94:3d:6a:9f:c1:bc:ef:e0:37:42:
98:32:ed:1f:ba:34:1f:d2:cb:2d:be:b3:90:22:ba:d0:ee:30:
55:e0:1a:af:28:f4:ac:eb:9d:14:c4:e4:f6:de:90:23:cd:ea:
0b:a2:54:b5:9d:d3:f5:6d:81:14:21:4c:b7:c1:5d:c5:28:98:
50:20:25:11:8a:1b:43:bc:4f:82:41:bb:be:39:39:cd:14:58:
f8:3a:5a:cd:f8:0b:e8:c0:91:15:60:22:b8:9a:05:84:81:aa:
e4:54:ef:b7:63:98:ec:19:7f:f2:f9:f5:84:38:0e:a0:1f:37:
ba:02:40:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:20:14 2025 by rpki-client