Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: u4Oc6F+F9w25CMKAFebUbWmWgTBivipcD7R3xXMbEmE=
Subject key identifier: A4:D7:9A:11:17:84:4D:99:6E:50:33:C6:56:8F:AA:7F:70:B8:91:0C
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019873E1F2E3337EC3940CAD467578178892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 07:00:44 +0000
Manifest this update: Mon 04 Aug 2025 07:00:44 +0000
Manifest next update: Tue 05 Aug 2025 07:00:44 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: jMjeTalyaxbchtz4OvGaSK2yKPqfy15DjuPSRSzV2zk=)
2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:f2:e3:33:7e:c3:94:0c:ad:46:75:78:17:88:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Aug 4 07:00:44 2025 GMT
Not After : Aug 5 07:00:44 2025 GMT
Subject: CN=a4d79a1117844d996e5033c6568faa7f70b8910c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bc:bc:94:27:9f:c7:be:72:7b:48:4c:7f:58:
c3:50:be:7e:ab:de:dd:d8:88:68:33:7c:3b:76:2f:
3e:a0:ff:86:16:2b:2f:3a:19:a3:51:3f:d5:39:0d:
62:49:d6:94:d0:a1:4d:d5:5d:41:ec:e4:49:3d:9d:
92:ed:f8:41:4f:95:e0:07:e8:06:18:0f:80:12:51:
06:24:98:dd:24:95:7f:51:46:93:03:7f:9e:7d:db:
76:37:aa:26:14:11:82:9d:55:ee:38:e7:a7:76:66:
e8:ff:34:76:83:01:6f:dd:97:aa:a8:12:d4:b3:2c:
55:bb:6b:64:c0:be:c3:32:73:dd:0d:c5:fe:07:fc:
bd:b8:00:8b:58:a5:ba:3b:ad:62:d5:fc:89:ad:a5:
e2:e6:84:9c:46:18:df:85:b7:33:94:2c:17:2d:2a:
3b:af:70:49:58:fd:34:2c:94:82:be:07:ed:cc:90:
ea:fb:85:72:5a:49:f2:cb:dc:3c:ce:76:0d:e1:97:
b5:3b:3b:3d:63:e4:75:ee:2c:3f:12:aa:1f:7e:8a:
d4:44:31:6c:a0:21:ed:33:0e:eb:ef:8a:0c:33:01:
bc:ac:f1:21:69:07:49:46:9b:f6:86:80:d5:31:47:
86:0f:82:59:72:40:bf:a7:bd:07:6c:e9:c9:14:1c:
7d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D7:9A:11:17:84:4D:99:6E:50:33:C6:56:8F:AA:7F:70:B8:91:0C
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:8c:90:28:98:d1:f3:88:70:e0:5c:32:fb:f7:cc:64:02:b3:
c4:ab:99:a3:b2:a1:34:c8:82:28:8f:33:7d:49:9e:f5:15:e7:
30:ac:a4:11:d2:f8:ae:43:f3:f6:f8:3f:f2:3c:99:5b:3e:a3:
0e:68:cf:76:5b:02:3f:33:7c:39:66:52:0c:5d:c8:5c:69:db:
69:4a:e7:81:be:29:ef:1f:47:62:e9:4a:e2:23:b3:ec:05:ab:
1f:60:0e:34:7a:2c:61:63:58:6d:68:d1:39:36:74:81:a8:bf:
58:78:6c:39:d0:c9:51:45:87:76:e4:04:94:de:ab:d6:ba:9c:
c0:90:3f:43:c2:d7:81:56:96:48:1c:d3:fc:2d:ef:2e:f9:44:
57:13:cd:b0:28:f0:59:77:f5:00:5c:f0:8b:28:f4:fb:05:54:
df:ee:92:f8:a8:80:f4:e3:07:81:67:ad:c3:64:b3:55:8c:42:
af:a4:89:66:66:a9:72:0f:06:a1:f0:46:3f:62:31:8e:e5:d3:
fa:cd:56:ab:f3:f7:a0:cf:62:cc:0f:02:43:40:9a:28:ea:96:
e9:cb:50:f2:53:72:31:76:bb:de:67:8a:80:fa:bf:37:b2:bf:
77:cc:f6:2d:47:d0:91:f1:9d:6b:50:b2:eb:0b:9c:35:e6:62:
44:a9:e5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:24:30 2025 by rpki-client