
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: sENzw65NzdWFHiTGYloVu6zGPN7vUlM+sx55/9//y5U=
Subject key identifier: C1:2A:21:1C:36:56:C5:A9:23:79:85:3B:8A:26:9D:16:D6:D3:15:9D
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 01987A526E3BCF9DB182961A212BCAF084B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 15AE
Signing time: Tue 05 Aug 2025 13:01:19 +0000
Manifest this update: Tue 05 Aug 2025 13:01:19 +0000
Manifest next update: Wed 06 Aug 2025 13:01:19 +0000
Files and hashes: 1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: snOMe8zFLq8PAMniyfEwoxvwmv9deLGBrfKrf+0Qhg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:52:6e:3b:cf:9d:b1:82:96:1a:21:2b:ca:f0:84:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Aug 5 13:01:19 2025 GMT
Not After : Aug 6 13:01:19 2025 GMT
Subject: CN=c12a211c3656c5a92379853b8a269d16d6d3159d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:27:2a:75:a3:3a:f8:76:71:0b:c0:47:a2:81:
0f:f6:1f:0c:15:30:07:b8:d8:1b:10:a8:22:a3:8f:
2d:f0:24:e0:d0:ea:d2:17:ae:f4:55:d3:b5:22:e9:
a2:a6:08:7a:6b:36:7c:fd:b7:61:09:65:45:5b:fa:
b7:db:e7:4e:1c:38:4b:91:9e:a6:fb:21:68:a5:af:
63:6a:25:1f:36:0a:84:45:62:d7:2b:b4:64:1e:f7:
3a:9d:09:ea:b9:cf:db:73:1a:23:c8:d1:d7:ff:a6:
59:9a:6a:61:82:b6:b2:5d:25:cb:25:91:ec:fb:c2:
c9:11:af:90:9b:e0:27:fa:99:c5:88:db:a1:bb:b2:
f8:c7:65:4d:60:df:03:e5:db:98:f4:8d:c7:c7:1a:
d0:59:d3:cb:f5:32:45:6f:3a:0e:56:3d:18:52:bb:
30:95:0e:5e:8c:2a:81:6a:30:fd:07:a0:e7:ed:be:
7c:06:cd:9c:2a:4d:e7:8d:d8:be:a9:7c:33:25:37:
8a:72:b7:83:cd:45:5e:bc:6f:49:12:67:84:81:99:
bc:71:95:e3:c1:e6:ed:24:f2:72:57:30:74:02:be:
de:dd:1f:f9:f2:70:68:42:3a:29:14:07:48:5e:ed:
ce:e4:b3:83:48:76:41:e3:63:07:bb:eb:4c:b3:2a:
26:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2A:21:1C:36:56:C5:A9:23:79:85:3B:8A:26:9D:16:D6:D3:15:9D
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:0f:be:81:34:b3:2c:9e:10:76:5f:43:85:b4:57:c1:6a:d6:
1b:8a:e1:3b:65:f2:35:d4:63:36:c2:97:f0:28:9d:36:c4:04:
6d:7f:df:ea:59:53:67:f7:45:dc:26:41:41:0a:91:b9:94:71:
86:f9:05:49:23:b6:61:78:70:c9:b1:ff:0b:a6:62:39:0e:e9:
2f:dd:41:06:54:c9:a0:35:c8:86:23:67:e7:c9:e5:c3:fc:a0:
f5:f6:77:25:79:d0:29:79:78:fa:7f:29:cc:7e:6f:30:ba:50:
fc:63:e6:55:27:84:f2:59:cb:3c:93:7a:6d:6f:45:11:8b:19:
f0:c3:57:12:f4:9e:f5:c8:b7:1a:51:41:66:eb:6a:ec:e4:3a:
14:d1:d3:3f:73:ee:f3:71:04:15:c5:fc:dd:cc:db:f3:e2:cc:
d0:bb:e8:87:2e:a5:48:f0:54:f7:32:c1:3d:3d:10:37:ab:8f:
77:54:8b:dd:29:e7:e5:3e:3e:b5:97:e5:60:5a:a2:bf:b1:98:
50:15:f5:98:69:65:40:9a:97:ae:a0:b9:eb:ee:16:f7:c3:d1:
dc:4f:2d:ff:8d:c9:3d:06:79:a9:0a:c7:f8:16:b5:89:9b:4a:
a7:27:d6:67:58:a2:08:87:8c:6b:6b:11:78:02:cc:ca:38:fb:
61:c5:f9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:00:29 2025 by rpki-client