Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: zFyXXo10Zo89wsmI+e1obtwYKQXxE+1SeF8bfgiAH5E=
Subject key identifier: E7:7F:D7:B0:5A:29:65:DF:6C:28:A4:40:BB:FB:5C:01:D6:11:1B:05
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019877C0B9BDEF03D8EB5C4C2332487262F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 0973
Signing time: Tue 05 Aug 2025 01:02:55 +0000
Manifest this update: Tue 05 Aug 2025 01:02:55 +0000
Manifest next update: Wed 06 Aug 2025 01:02:55 +0000
Files and hashes: 1: 5MBvIRiYFms3iGBeHF3RQe9ll34.roa (hash: ZOt4HY8JzWPIwKbCM0yXoS+siw4USQmatYhxT9gEU9M=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: HAW2uS9poocnDo5+e8sSFI0BRHEQKLwvbpjIkmF1Uzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:c0:b9:bd:ef:03:d8:eb:5c:4c:23:32:48:72:62:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Aug 5 01:02:55 2025 GMT
Not After : Aug 6 01:02:55 2025 GMT
Subject: CN=e77fd7b05a2965df6c28a440bbfb5c01d6111b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:39:49:14:0d:e3:49:c8:8b:f0:70:10:c8:d7:
ff:70:4f:fc:2c:3f:59:78:a0:4b:88:80:0e:2b:92:
70:20:dd:27:07:df:0c:eb:20:04:5f:20:89:9b:0d:
68:76:0e:75:fb:8c:44:20:2c:ed:87:d8:5c:6d:dd:
3d:3c:24:b2:f8:a0:c0:43:18:32:60:b5:be:63:9c:
62:b0:bb:4d:8a:57:ee:5e:b8:fa:20:b0:bb:f0:a5:
53:68:be:66:82:aa:f6:f6:7d:b9:b7:e2:8c:36:f3:
e2:6e:16:d5:3d:44:15:46:1f:60:d5:39:be:24:09:
dc:23:07:a6:a7:3e:88:bf:ce:04:c4:fa:3f:27:49:
6a:02:f0:f4:d6:4d:de:d6:bf:91:6b:90:8b:bb:ab:
ee:ef:c3:cb:f2:b2:5c:b5:e2:65:2e:1c:3d:04:6f:
4d:a7:f2:ff:6d:07:8c:e8:1d:4d:88:68:27:dd:b4:
09:e8:dd:97:e4:92:dd:08:1d:7f:ce:0e:23:31:41:
eb:b5:23:0a:43:07:fc:f9:d6:8e:d2:0f:19:a3:5f:
66:29:62:f7:77:a9:0f:16:2b:ee:4e:e2:16:c6:f4:
41:13:f8:4c:e2:80:35:ec:cc:b4:0c:3b:94:fa:a6:
9b:7e:0e:c9:61:7a:11:38:44:d8:42:39:ae:66:56:
8b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7F:D7:B0:5A:29:65:DF:6C:28:A4:40:BB:FB:5C:01:D6:11:1B:05
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:99:1c:1c:b9:4a:d1:b2:f7:43:f2:7d:07:36:98:7a:33:48:
f8:0a:33:0e:1b:de:e6:77:e1:10:47:6a:0d:bb:82:bf:a2:00:
f8:18:cb:f8:98:05:2f:78:01:9c:bb:bf:49:58:dd:79:65:34:
eb:07:02:04:d9:12:64:fd:de:c4:ba:63:9e:2e:b6:4f:25:cb:
a7:92:cf:57:53:0d:c1:4b:fd:70:47:be:74:2e:bc:56:ac:2e:
c4:3d:04:8b:fd:91:aa:c9:06:99:6d:5f:fa:a5:68:7e:b4:1b:
81:b7:28:6e:3a:0e:4b:f4:43:4e:9a:ac:75:ab:3d:5d:e6:bb:
7d:0f:33:57:f8:e9:9b:89:f1:ac:70:06:95:4c:be:a4:50:27:
6e:75:83:87:f8:ad:2e:3c:17:dd:3f:a1:1c:f1:3d:62:07:09:
8f:d3:34:ab:2c:57:3e:6e:43:da:57:af:b5:6d:d5:d1:3f:db:
3f:c4:84:28:fb:c0:d7:1a:89:19:9a:cf:c5:34:de:12:34:ec:
c0:e4:6b:52:f9:85:29:e1:d1:ca:98:2d:3c:48:7d:ad:85:74:
91:2d:6d:71:71:da:79:d4:5c:71:fe:99:3f:99:64:99:93:db:
04:c1:fd:ba:4c:24:50:64:cb:fb:4d:af:23:a1:7c:a3:7e:d2:
f0:a5:3f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 08:08:17 2025 by rpki-client