Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: j08rfCzm35IW6HyofUKxIZ1cDH6by2hw7Pb7VGoltqU=
Subject key identifier: EF:57:B4:26:8B:3C:97:70:79:8F:9F:7E:53:D8:48:68:16:EB:EA:16
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 0198917E8B01CC43BD69263635270DC89194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 1629
Signing time: Sun 10 Aug 2025 01:00:46 +0000
Manifest this update: Sun 10 Aug 2025 01:00:46 +0000
Manifest next update: Mon 11 Aug 2025 01:00:46 +0000
Files and hashes: 1: 1-9Z39awtCUNqeCcuYwIOQubEoEY.roa (hash: AJvelHrJ42adBWeCqNbgdbqaGB/A4YMI32J/x3+LlBI=)
2: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: 2tYUOgQMaeBsD+wyL/7Mi9HsgskH/dgcEMiDokIRdzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:7e:8b:01:cc:43:bd:69:26:36:35:27:0d:c8:91:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Aug 10 01:00:46 2025 GMT
Not After : Aug 11 01:00:46 2025 GMT
Subject: CN=ef57b4268b3c9770798f9f7e53d8486816ebea16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c7:dd:e7:84:a0:b7:8f:29:d6:e2:e6:27:f3:
e1:a2:fd:43:e6:f6:7c:58:21:d8:e3:e7:c1:9b:bd:
0b:0d:0d:73:e7:4d:89:29:da:e1:2b:97:63:20:92:
41:30:20:5b:78:3f:6d:ca:67:ee:96:ab:9f:f3:ff:
0d:18:14:9f:0e:3f:b7:ce:e1:5b:e0:73:2f:fb:d0:
48:c2:15:4b:47:f2:be:40:de:74:56:0a:24:13:f7:
17:63:56:e1:f9:cc:3c:f8:29:50:a5:75:ce:7b:4c:
fd:e3:48:63:01:03:40:8d:85:fc:c7:65:8a:25:9c:
1c:f0:b5:fc:71:57:52:2b:d0:d3:0a:57:a5:6b:37:
7a:46:8e:62:5f:1c:6a:eb:74:77:a4:bd:a9:28:08:
57:3b:76:91:46:99:22:02:5e:82:59:90:e2:06:c5:
96:98:41:41:e2:7f:f7:f5:6b:7e:9e:d7:6e:c9:c2:
54:72:0d:d7:4b:95:b1:d7:12:8a:50:3d:95:e3:7d:
b7:96:d7:0b:1e:50:f6:fd:a3:72:0c:cd:ec:fd:c7:
8f:06:de:a8:74:c3:9f:0f:9f:4f:b9:ec:44:39:94:
1d:dd:33:fc:58:86:fc:86:6c:a7:0d:6a:11:17:fa:
2a:63:cc:17:01:ca:b3:54:bf:e1:86:72:a0:7f:4b:
48:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:57:B4:26:8B:3C:97:70:79:8F:9F:7E:53:D8:48:68:16:EB:EA:16
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:b4:ee:d1:cb:70:ad:a7:8e:fd:b8:7d:92:49:44:b7:63:2d:
54:a5:f2:b2:91:53:af:5f:d8:c3:28:d7:7c:9c:c5:b8:98:d3:
37:27:5d:75:6b:4d:5a:e8:c2:53:6e:51:ae:2b:e1:53:69:0b:
23:a2:a7:4e:9a:1c:d2:bd:da:fa:f5:fe:c4:52:85:a4:51:a8:
29:6e:9b:25:20:01:f3:d3:a8:5a:36:db:1c:ea:4e:2c:8b:47:
33:87:ff:fa:a8:58:67:99:22:41:2d:00:8e:8c:31:9e:51:e0:
ee:71:ed:6c:d9:01:8b:10:e4:62:fe:33:ef:aa:e6:d4:d3:67:
87:12:84:59:c3:78:d8:51:d3:6f:0e:c3:09:47:e9:8a:62:77:
ff:5c:67:0d:89:ff:57:b0:1c:e2:7e:5b:1b:91:ac:57:65:bb:
d7:f4:d1:0e:46:f3:40:3a:fa:03:c1:8a:3f:9d:1f:4e:8a:6f:
9a:35:e7:91:96:9d:8e:75:d9:7a:75:58:73:43:ba:9e:c4:ea:
04:31:c4:f4:10:88:8e:54:dc:b0:54:39:27:4e:4d:ce:e7:73:
54:5b:db:92:67:ae:d2:73:8f:a9:af:c4:91:19:f3:96:38:5a:
b8:5f:d6:51:21:6c:21:af:2b:bd:01:97:a8:aa:78:f8:49:4f:
ee:c4:2e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 10:35:48 2025 by rpki-client