Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: I8lnr+kxRWEJ3Pmip4H70/IpmjJDxlzduKw08W6KAb0=
Subject key identifier: 4A:9D:4E:E6:41:5B:ED:87:8E:6B:C7:8B:85:F1:EB:6D:10:09:66:C3
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 01988AA0F56F7673996C823538AF620B7973
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 15B7
Signing time: Fri 08 Aug 2025 17:01:00 +0000
Manifest this update: Fri 08 Aug 2025 17:01:00 +0000
Manifest next update: Sat 09 Aug 2025 17:01:00 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: Pt6btt4EeqHaObv0HA8OU09BP13TNz5IxDieg0ZOQUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:a0:f5:6f:76:73:99:6c:82:35:38:af:62:0b:79:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Aug 8 17:01:00 2025 GMT
Not After : Aug 9 17:01:00 2025 GMT
Subject: CN=4a9d4ee6415bed878e6bc78b85f1eb6d100966c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:fb:ac:7c:5c:9e:25:20:d3:86:f6:c5:08:06:
3e:df:1e:01:16:ec:fb:f1:ec:71:b6:da:d4:7e:9b:
36:9d:bc:b5:51:6d:34:51:3e:01:fe:19:39:8d:38:
96:1c:5d:25:2b:b4:75:8c:68:42:07:6c:e8:62:43:
12:e7:35:e7:1a:99:09:fb:86:2d:06:0a:91:36:5b:
d2:b1:ec:11:76:dc:d1:8d:c9:92:d7:ea:8e:e1:b2:
34:4a:ce:5c:16:75:d0:da:eb:9f:8e:d0:d9:c8:f6:
50:dd:40:45:cc:3c:4f:8b:76:4a:ca:e5:93:b3:c1:
a9:c9:2c:7c:c0:c1:ee:a0:b4:32:7f:3f:c0:21:2c:
09:6c:45:a4:01:4e:b3:13:70:d6:ce:4d:bd:5c:cc:
e3:35:fc:fe:0f:ad:f1:72:a2:9d:77:b3:49:32:ab:
04:44:85:77:3c:cf:68:56:25:21:32:69:da:af:0b:
48:81:53:e6:13:13:c4:bb:27:02:58:73:88:32:da:
1a:a6:34:c4:5a:ab:d8:d3:49:a7:95:38:c5:56:30:
ca:6b:bf:b6:20:9c:4b:56:1b:da:33:c6:78:47:ab:
0c:47:a4:4e:e1:77:50:42:42:c9:97:17:68:15:50:
66:6f:14:81:25:70:52:59:93:fa:ff:a4:a1:fb:9d:
80:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:9D:4E:E6:41:5B:ED:87:8E:6B:C7:8B:85:F1:EB:6D:10:09:66:C3
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:10:47:09:da:a7:60:3c:66:bb:fe:e5:f6:61:18:7f:37:6d:
e3:38:c2:be:7e:53:5f:b3:b3:87:68:b1:64:86:4a:7b:79:24:
5c:d4:9e:a1:39:14:97:a0:84:15:02:53:2b:47:68:c0:85:38:
5c:29:a8:be:4f:db:1c:67:27:7c:23:b2:42:99:d6:63:f2:67:
2c:62:ec:b4:1e:32:f7:15:64:8b:bd:b9:c2:1f:78:32:6d:ba:
6b:1c:71:53:1d:fe:0c:74:f4:61:07:eb:19:05:7b:c3:ba:c4:
2c:ae:b9:82:13:51:63:0e:52:fd:10:c2:13:0d:c1:51:92:82:
0d:57:fa:08:4b:ac:02:a9:43:e2:a6:3d:2a:61:34:93:27:d0:
b7:20:ea:1e:69:ab:34:ab:0f:1d:ff:eb:bb:84:bc:be:91:c6:
53:6a:0f:b6:ad:e4:03:05:3e:c6:45:54:5b:00:90:ca:13:19:
47:47:92:5d:d8:e7:8b:ce:b4:2a:32:6e:f6:40:43:9a:72:34:
23:c3:7f:19:4d:c8:1d:64:71:a3:28:c8:f5:7c:28:e8:13:9b:
93:9a:25:86:05:2b:21:59:ab:75:33:00:3c:86:fd:96:5b:c0:
6b:a8:f2:5d:35:10:58:72:a0:ae:bf:b1:a1:23:29:9b:7b:30:
12:ed:93:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:22:51 2025 by rpki-client