Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: zHol1Zf9uvPiJXaeGdKnRcsCMtk4D61meUSl/WkJtig=
Subject key identifier: FD:2F:1C:98:53:A3:ED:65:38:2D:64:55:2D:F0:15:66:2A:E2:7A:D4
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 0198879F91343F9C196AC6C3FBA207AFB7CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 0D08
Signing time: Fri 08 Aug 2025 03:00:38 +0000
Manifest this update: Fri 08 Aug 2025 03:00:38 +0000
Manifest next update: Sat 09 Aug 2025 03:00:38 +0000
Files and hashes: 1: 5FA6usbApR1_cX5AgsEzHiEcMB4.roa (hash: 7OuczURaJl5BP/q53z8kXUiqcwX3Z4OY7NVnaBx1Pg0=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: O9uKcZyuxszE0wI3bUV/gu3CikZYI2Zo3Ofdu/8Ae0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:91:34:3f:9c:19:6a:c6:c3:fb:a2:07:af:b7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: Aug 8 03:00:38 2025 GMT
Not After : Aug 9 03:00:38 2025 GMT
Subject: CN=fd2f1c9853a3ed65382d64552df015662ae27ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:46:67:6d:ac:93:1e:3f:e7:c8:55:b5:6b:80:
47:58:68:96:09:b2:58:62:6a:9e:95:5a:6c:cb:38:
29:34:ee:66:ea:ae:36:55:7f:8a:a7:a1:94:ff:a4:
4c:67:2a:13:e0:a1:6c:f5:6e:ab:e0:b3:02:89:71:
bb:96:5a:82:b0:03:4f:ad:8d:20:3c:20:0a:c7:3e:
57:fa:8a:c8:0e:f2:e9:4a:fd:31:26:9a:94:d1:5e:
16:bb:54:95:24:d7:c5:49:56:3e:2c:d6:47:8f:87:
68:56:8b:44:24:38:97:79:c5:27:d1:20:63:c1:e1:
50:12:84:c5:80:d5:25:02:dc:f3:69:42:8b:82:ba:
05:37:38:88:1f:49:5e:87:36:3a:99:b9:82:5d:e8:
00:1d:fc:c0:84:07:44:db:95:9a:06:96:ce:c2:f9:
4a:46:e5:12:7c:39:76:f9:07:62:1c:b8:d7:d6:26:
4d:8e:b7:a7:16:f0:20:0d:c5:f4:37:d9:56:f3:8a:
ed:0a:d8:ab:aa:cb:85:f3:d9:7b:f2:61:8a:83:b7:
a2:f3:8b:7d:f2:a1:1e:6e:38:3d:9c:7a:9b:10:6f:
4c:9b:c6:99:ec:63:fc:3a:9e:e3:4c:d3:7c:c9:6e:
99:d1:41:cc:5f:6d:f7:82:75:fb:86:7d:3c:73:3c:
b5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2F:1C:98:53:A3:ED:65:38:2D:64:55:2D:F0:15:66:2A:E2:7A:D4
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:86:26:8b:2b:be:00:63:26:1c:19:cf:e8:13:79:c6:48:15:
dc:c3:42:16:d8:8e:54:38:b2:e5:47:d7:de:fd:68:a3:9f:e2:
ca:ea:a9:1e:71:94:e8:65:6b:55:cf:ae:74:58:d0:3d:77:10:
d7:03:a6:6e:6c:c6:68:04:17:87:ae:71:07:9e:3a:0d:a2:64:
89:ef:29:65:d3:30:f9:da:e5:f7:f0:fe:0d:47:d7:bc:b9:a8:
9c:09:51:9b:7b:26:69:17:5f:c1:8b:04:bf:c7:54:f4:32:a5:
f6:be:a7:fb:18:c1:f8:8b:19:77:9a:47:d6:89:2b:94:73:4e:
2b:de:6e:ab:73:df:90:8d:3c:fe:94:89:d9:2f:43:9c:c8:f5:
26:bd:ba:89:67:39:e6:c5:20:5c:8a:d6:b1:35:b1:c7:95:f4:
34:78:4c:a1:56:6b:0d:00:2b:e3:d2:ef:d1:bd:4c:ce:ee:46:
55:41:58:16:36:38:fc:0c:c4:6b:4b:2b:b9:97:89:9f:54:8d:
69:db:f7:f0:f1:63:fd:b8:45:1a:66:33:7b:76:72:ab:7e:99:
68:e3:ab:22:d0:2e:60:bb:c3:4f:4f:bd:36:84:b4:2c:bc:11:
c6:04:d6:48:79:31:f8:33:80:78:8d:e7:61:de:3a:5e:ae:f7:
3c:f8:2c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:12:10 2025 by rpki-client