Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json)
Hash identifier: K12qBwgKzXzUr5+xcxQKzMQ0S6dsSGUJFeePaSQZqaU=
Subject key identifier: 57:2E:99:41:E1:7B:38:80:E0:33:23:B2:3C:47:BB:34:61:5B:80:87
Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Certificate serial: 019873E3243EBEB82365E52927494680FCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 07:02:02 +0000
Manifest this update: Mon 04 Aug 2025 07:02:02 +0000
Manifest next update: Tue 05 Aug 2025 07:02:02 +0000
Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: 5llRKX1IUpyV3Mvwhd0jpPDEb3Ax5CKIDtB0Xd1Potw=)
2: mY9DqP6sBYRDAuWwviu5NNB6lIA.roa (hash: Jpwfq6zWzFUKhEKM7+C1EDuHC9fqQSYeca6cvS8lEYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:24:3e:be:b8:23:65:e5:29:27:49:46:80:fc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Validity
Not Before: Aug 4 07:02:02 2025 GMT
Not After : Aug 5 07:02:02 2025 GMT
Subject: CN=572e9941e17b3880e03323b23c47bb34615b8087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:fc:72:58:c0:5f:95:9c:9f:e5:48:ae:59:75:
a0:76:6e:d3:fd:1f:23:ea:19:81:49:bd:4a:ad:a5:
47:28:d2:87:db:2a:da:e1:2b:3d:dc:03:88:ab:00:
82:44:84:f6:6d:af:de:3c:ba:3b:18:c4:ef:fe:47:
c9:8b:02:26:82:78:ff:a2:6d:e9:57:30:56:56:06:
6e:67:de:6d:00:ae:4a:d4:dd:1e:8d:51:20:26:a1:
d0:d6:5a:6c:eb:f2:50:a8:bf:bf:ff:91:7b:9f:17:
c8:22:c6:ad:9f:1e:4f:8e:a0:7b:4e:c0:d1:ea:eb:
08:ea:71:a4:26:4a:9f:ee:c8:11:a2:e4:38:47:73:
71:77:18:06:70:21:24:68:78:f9:73:44:a4:80:4b:
32:06:c1:2c:cf:6f:85:56:49:b6:26:18:4c:83:36:
4b:16:d3:87:46:34:62:8c:ec:e9:87:df:bb:eb:07:
93:72:55:cb:7e:17:27:5c:18:88:a9:14:59:6a:fb:
26:27:ec:9c:77:39:c6:41:24:34:0f:20:d7:4f:68:
0e:3f:a2:a3:e0:a6:63:2e:9a:31:b4:d6:05:f7:bb:
48:bf:e5:ef:b6:6b:33:67:ad:3c:99:e4:3a:66:48:
2f:29:7d:4b:0c:e4:46:d1:b7:f4:a3:42:f8:50:4b:
24:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2E:99:41:E1:7B:38:80:E0:33:23:B2:3C:47:BB:34:61:5B:80:87
X509v3 Authority Key Identifier:
keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:17:a7:8c:96:a9:77:bd:4c:ef:55:f8:17:2c:e4:98:e0:71:
28:f2:f3:3d:19:69:0e:74:9d:02:e9:0a:d2:88:c5:fe:59:1e:
ff:c5:38:0a:fb:32:28:e7:b3:02:94:a4:bb:81:0f:36:9c:c2:
ba:df:af:cd:e7:f7:a8:50:4a:f4:c0:b2:75:06:db:54:67:20:
fa:cd:7c:a0:57:32:66:49:af:6b:b4:f0:b7:b8:68:33:b7:75:
3a:11:7e:26:0b:85:e3:4b:e9:9d:f4:b5:e9:16:dc:1a:f9:83:
a5:8f:09:1a:4a:dc:22:29:bb:db:aa:99:94:11:61:8e:06:25:
aa:8d:f5:98:d3:29:13:a5:80:00:b2:4e:87:71:14:18:42:86:
c2:b7:c7:e3:b5:55:7f:ce:8f:b9:8c:99:b0:cc:7b:f4:04:27:
b5:e9:25:69:2a:3e:14:b7:57:95:91:f7:0b:d4:5c:be:d1:70:
53:16:2c:b8:9c:d1:4e:4e:6a:b1:d3:95:0c:d8:59:c5:bc:66:
1b:2c:ef:20:dc:3c:01:cf:4a:4f:98:42:1d:eb:be:68:c2:13:
8c:49:4b:f6:07:8a:87:e2:10:ad:fa:0a:70:05:8a:df:4b:ca:
20:e7:4b:0d:21:b9:75:b0:88:28:c2:77:b9:b9:3d:e9:8d:77:
e4:be:d1:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:11 2025 by rpki-client