Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
File: OFBtgKtZLee-CjMbv0-gBo1BQIo.mft (raw, json)
Hash identifier: ZVi7K6x4jXvDjdc/GXvabH+ZCbJwH/Kq994LJa3NoBk=
Subject key identifier: ED:F9:97:4E:E3:47:43:A3:7E:84:4A:28:A7:34:EB:AF:6E:A4:0A:47
Authority key identifier: 38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
Certificate issuer: /CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Certificate serial: 01987306BFCD7F5DE091AD3A30E7E7732558
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
Manifest number: 150B
Signing time: Mon 04 Aug 2025 03:01:18 +0000
Manifest this update: Mon 04 Aug 2025 03:01:18 +0000
Manifest next update: Tue 05 Aug 2025 03:01:18 +0000
Files and hashes: 1: 8fjGJEbNOKgjtgGvG0x5bdVrRFo.roa (hash: 6ZZJ4QGkpbcq3hIOVhgvm79JeONPbl5ojVu1zQKUgnU=)
2: LiZI8DHKt2cl3ZGAwMQs7hzSWLY.roa (hash: YZv7B4YQ18wMpKvjotc88oKaw7AFVr3K3Ln8F9meSnc=)
3: OFBtgKtZLee-CjMbv0-gBo1BQIo.crl (hash: BpMwzVRxiBJBUR6ffuq5pSxP+vpwLxBJl5/UH+CuMYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:bf:cd:7f:5d:e0:91:ad:3a:30:e7:e7:73:25:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Validity
Not Before: Aug 4 03:01:18 2025 GMT
Not After : Aug 5 03:01:18 2025 GMT
Subject: CN=edf9974ee34743a37e844a28a734ebaf6ea40a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:de:68:16:6b:c2:f8:a9:4a:7d:66:cc:58:ac:
9f:c7:8f:fd:4b:27:ae:06:3b:99:66:fa:f5:22:59:
08:56:98:3d:3b:d7:f9:55:9d:22:a7:14:ae:e1:8e:
f2:65:1f:56:43:d8:f0:a7:8a:b5:27:6b:fa:19:ce:
bc:9a:ae:c7:d1:43:a9:17:78:48:2b:b1:dd:b3:ed:
cc:0d:bb:47:8b:11:78:c6:72:9f:23:ca:4d:8c:2d:
aa:40:85:e5:3f:65:1a:7d:69:9d:e2:73:58:83:ce:
93:fc:12:a6:f3:33:23:89:b0:28:48:52:df:c5:54:
c3:2b:5e:fd:c1:44:02:5f:3c:b1:fd:d1:82:ef:85:
9d:df:e3:e5:c8:2d:fc:1a:fc:a6:bf:ca:b2:12:25:
47:fc:76:cf:a7:06:e5:12:ee:fa:79:11:c4:ec:7e:
76:ca:96:c2:b1:c7:25:7b:71:6f:86:4a:17:fb:da:
ca:bb:55:17:13:1c:a8:af:27:bf:a4:5c:e0:67:94:
3b:65:b4:66:7a:5e:0a:6c:0c:01:51:50:4d:25:fa:
ea:02:c1:8e:34:a3:c2:18:b2:e6:97:3a:5d:c5:5b:
57:7c:c7:bf:84:39:68:75:70:96:bf:9f:c7:74:9a:
84:59:47:ae:7a:10:cc:c2:6f:f8:7c:18:ba:7a:de:
5d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F9:97:4E:E3:47:43:A3:7E:84:4A:28:A7:34:EB:AF:6E:A4:0A:47
X509v3 Authority Key Identifier:
keyid:38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:85:eb:3b:15:12:19:bb:27:f5:89:65:1c:a6:fa:aa:d4:72:
81:be:6e:ed:8a:42:61:f4:d7:59:e0:ae:1b:16:e5:ed:65:70:
50:0e:e5:52:ee:89:02:d3:67:f6:fd:19:52:4e:8d:ff:58:54:
3b:a7:b1:da:96:a0:76:82:eb:0b:85:68:48:e3:80:74:f3:f4:
5e:eb:f9:75:d5:71:8f:90:5c:89:85:0a:39:1a:bb:50:d7:b9:
1f:62:b3:c1:e0:71:91:15:e7:bb:7c:c4:d5:1f:51:33:f6:5f:
0c:17:01:c6:b3:89:12:e7:ab:6d:fe:47:41:f9:eb:92:db:96:
02:15:fe:c4:e4:bf:d0:20:6c:64:6a:fd:0e:4a:bd:33:f9:59:
59:98:08:28:b1:61:f3:71:bc:cd:e3:2f:c0:fb:10:4f:47:ef:
e5:f0:92:ab:c6:85:be:22:c1:51:67:62:ee:45:f9:78:86:00:
b1:d8:96:57:c3:0e:83:ba:ab:28:35:86:2f:8c:4f:3d:2c:48:
a9:f6:bd:03:b6:0f:60:cd:3c:15:c5:02:8f:99:d2:55:1d:c8:
f9:db:2e:58:d2:f7:e3:f1:e3:2a:4d:b0:90:76:df:81:e3:bc:
07:f0:5c:af:a3:b9:e3:3e:78:06:72:8d:26:1b:2e:77:32:7c:
10:d8:f1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:24:56 2025 by rpki-client