Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
File: o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft (raw, json)
Hash identifier: Kfl/oZ7uyzp9WLinR4mcJZ6Mr87BSbL6fwhoMY+A4WY=
Subject key identifier: A3:E8:85:F8:44:09:CA:FC:F9:BF:BF:42:3B:83:A3:59:EA:BD:B0:7B
Authority key identifier: A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
Certificate issuer: /CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Certificate serial: 019921E7E00B7351B3E433C2A82474CF3CFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
Manifest number: 07CF
Signing time: Sun 07 Sep 2025 02:01:07 +0000
Manifest this update: Sun 07 Sep 2025 02:01:07 +0000
Manifest next update: Mon 08 Sep 2025 02:01:07 +0000
Files and hashes: 1: borZkxzd7Q70fU1OWvln2Q1-HRc.roa (hash: WT5cBwBGRYqcO3GRfgSJfVkJ2Niz57/GzD/KCZQzgos=)
2: o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl (hash: BOuLGWQ+pCMhzu82PYyObD2C3V0bwOm7YVmCzSJb6lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:e0:0b:73:51:b3:e4:33:c2:a8:24:74:cf:3c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Validity
Not Before: Sep 7 02:01:07 2025 GMT
Not After : Sep 8 02:01:07 2025 GMT
Subject: CN=a3e885f84409cafcf9bfbf423b83a359eabdb07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:52:37:0f:43:3d:f2:80:76:75:71:c7:9d:
d3:9e:c6:29:1a:b3:02:17:b1:77:f5:5f:7b:82:3c:
4b:a7:04:a6:3a:97:3a:02:22:05:93:b2:89:56:cd:
c9:11:49:47:fb:94:bb:6c:d9:2e:05:2c:f0:e8:fa:
30:f9:af:18:13:e5:15:9e:a5:26:21:cc:62:99:8d:
3c:2a:50:04:19:10:0f:37:da:2b:a7:d4:4d:9a:3a:
3f:18:46:13:6f:d1:5e:4a:0a:d0:76:7c:d5:09:e6:
17:43:d0:fe:ab:48:bf:44:94:86:8f:87:8a:ef:3c:
77:f9:61:09:9a:81:d8:b7:f4:2f:d4:f5:11:89:c6:
49:5d:f1:05:2c:b0:1f:1b:93:27:67:f9:a0:7f:86:
6c:2b:54:f8:79:92:52:50:02:0f:6f:91:63:12:84:
f6:d7:21:a9:39:56:51:55:44:4b:b2:0e:9c:4c:c1:
ac:b7:f2:d5:ea:20:0c:5a:25:c3:f4:8e:8d:0e:39:
ce:1b:65:9b:f6:98:a8:4b:94:47:93:da:82:ff:c6:
5f:a2:9f:3c:de:41:89:df:98:bd:30:a8:9b:06:31:
5b:e9:3a:92:62:26:51:d0:2e:d4:48:4d:b1:ee:d5:
a5:aa:25:f9:75:4a:af:1e:3d:29:f5:73:f3:63:72:
32:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E8:85:F8:44:09:CA:FC:F9:BF:BF:42:3B:83:A3:59:EA:BD:B0:7B
X509v3 Authority Key Identifier:
keyid:A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:6f:65:8f:ff:0a:f1:6a:d5:f1:1a:38:37:2b:ea:c0:ad:46:
d8:ca:19:b4:c6:1a:1e:40:a4:57:13:5c:99:74:3e:56:5f:7c:
14:f1:16:00:a8:96:93:3e:5c:2d:2d:04:b9:a7:b8:b6:b0:59:
12:21:c6:9c:66:54:fe:e0:c4:f6:a2:b5:51:5d:9d:97:f9:4a:
f8:eb:78:cc:d4:cc:1d:97:07:fb:a5:cc:da:e3:f5:41:1e:ec:
b2:17:2f:45:57:0f:fa:7b:ac:07:0a:cf:2a:b7:f9:1a:d1:4e:
cd:15:36:2c:91:2c:b6:c3:63:05:fe:3e:2b:68:14:82:02:cc:
c0:54:82:23:86:17:55:42:96:69:24:24:fe:df:f5:96:3c:71:
02:da:6e:a5:5a:f3:b4:3d:22:92:4e:be:b3:d9:78:9a:a0:e4:
2b:97:10:6f:f1:9f:2e:7d:9d:1a:52:6e:ea:7c:e4:e2:81:f6:
b5:cd:08:47:6d:5f:1d:cc:bc:6c:2d:d6:37:64:8f:c5:eb:33:
db:e7:57:c0:46:46:37:b5:9b:60:35:57:d2:d7:29:99:d8:9b:
e1:9f:99:e1:a0:34:f2:c1:d2:2a:30:28:07:0e:9b:0c:d9:46:
03:bc:80:dc:19:d7:81:a8:90:0d:eb:17:a4:45:bb:80:d4:20:
13:d7:95:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:40 2025 by rpki-client