Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
File: oZUhxzUtHKw_mMdW_HprSzrpdT0.mft (raw, json)
Hash identifier: J5owb9n8Fnt9kVhZQdLriz40pGa3m/WGa2yHLCCC/rI=
Subject key identifier: E7:11:E7:C5:A2:01:7F:7B:19:A6:89:6F:92:94:DF:3E:16:E7:0E:44
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 019923314AE321AD7F8A0F9DE999DEEBD0CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
Manifest number: 10C3
Signing time: Sun 07 Sep 2025 08:00:56 +0000
Manifest this update: Sun 07 Sep 2025 08:00:56 +0000
Manifest next update: Mon 08 Sep 2025 08:00:56 +0000
Files and hashes: 1: CrnwsA95yJmVEXlbmftIErRDbX8.roa (hash: 26F3HVvHxyFlycTNtQI23gW/r6OOmym9z31epdFUdl0=)
2: oZUhxzUtHKw_mMdW_HprSzrpdT0.crl (hash: sBRd1v6yqy23xLMGBglN8wRzpFnYyM3Z/MZztdsm7zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:4a:e3:21:ad:7f:8a:0f:9d:e9:99:de:eb:d0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Sep 7 08:00:56 2025 GMT
Not After : Sep 8 08:00:56 2025 GMT
Subject: CN=e711e7c5a2017f7b19a6896f9294df3e16e70e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:e4:c8:f4:af:71:31:2f:2e:4b:6f:61:08:
41:0d:f3:8e:b4:51:84:b6:cf:76:ba:01:78:c6:61:
ba:75:08:cb:a0:b8:dd:9f:b6:59:2b:51:71:87:67:
89:cd:6e:0a:c8:e8:f7:45:e3:6e:d5:0b:7c:38:92:
4c:d5:f1:c1:62:47:3c:87:9f:a5:dd:c4:33:47:15:
3d:be:51:ca:54:ed:0c:b0:cc:bb:e8:88:9f:74:14:
4c:c0:97:eb:ee:f2:22:2e:89:54:68:ec:a1:4f:87:
65:db:1f:e4:34:4c:e9:99:a7:4b:35:0e:ee:e4:c4:
98:62:af:68:79:96:54:fe:10:52:ff:8a:ac:54:27:
11:5c:cc:1f:aa:ef:82:29:3b:9d:82:e4:f4:0f:0b:
40:24:63:a3:a4:61:fb:b6:31:d7:3f:9c:45:93:6e:
bc:be:18:24:82:c1:6b:9b:21:ae:0b:c8:fb:cc:77:
fa:81:c5:f6:74:9b:9e:96:a3:bf:02:80:eb:b5:7d:
91:da:7d:88:de:74:21:fc:95:ac:df:6a:be:00:52:
90:be:90:87:54:80:f9:77:99:1a:43:63:0c:98:e5:
48:28:eb:ee:af:d8:f7:c2:57:4e:ed:90:10:d0:ab:
cc:d8:d5:1c:fc:67:d5:3d:63:eb:74:a3:f5:c7:53:
81:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:11:E7:C5:A2:01:7F:7B:19:A6:89:6F:92:94:DF:3E:16:E7:0E:44
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:3e:b1:75:1e:5e:2b:68:32:e9:41:4a:00:98:e9:a0:78:04:
0b:65:a3:87:48:66:0e:c2:48:91:23:f1:78:bc:3a:16:0e:58:
ef:f4:1b:c9:ec:6f:05:48:ce:98:5a:19:97:c6:90:20:ca:9e:
7c:1d:83:96:f3:08:77:92:54:c9:f9:5b:ed:df:c0:c1:a2:60:
1f:84:53:d5:67:e2:49:9b:20:ce:59:e2:91:95:7c:c9:75:8e:
5f:22:7e:f9:bf:cc:6d:e3:54:1d:19:25:22:fb:a0:2a:cd:e9:
e2:3d:a7:cc:f8:9b:91:de:5f:4b:48:a2:d2:cd:d3:b4:9d:5b:
ec:6a:e4:88:51:0a:ae:98:fb:0f:80:78:f1:6d:25:d3:cb:dc:
d0:62:f0:53:58:9d:be:c0:f7:40:59:cd:fb:33:7e:e2:5d:2a:
db:06:94:00:a6:37:32:b6:4c:df:b6:99:06:aa:b3:a5:df:2f:
d3:9e:3d:00:e3:40:11:44:08:b3:38:48:ea:f4:f6:af:23:ff:
91:36:e5:e2:7f:f9:3e:80:3b:4f:f0:14:33:7e:89:d2:96:65:
bc:27:b9:20:a4:c8:11:d5:3f:e9:c9:3c:fe:e4:43:23:5e:e5:
45:ba:81:85:9d:db:91:56:0a:df:77:97:76:9f:b4:88:3c:fd:
d0:0d:62:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:22 2025 by rpki-client