Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
File: rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft (raw, json)
Hash identifier: 3T2CvCeNfme001AY7oNr21mc/QDoy+bpnnegFTueqfo=
Subject key identifier: 6B:12:8A:9D:90:65:7A:CF:49:4C:F8:32:3B:0B:73:5A:48:A7:0D:25
Authority key identifier: AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
Certificate issuer: /CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Certificate serial: 01987A88BAD95FE82B9DE48FD932DE20B753
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
Manifest number: 023D
Signing time: Tue 05 Aug 2025 14:00:37 +0000
Manifest this update: Tue 05 Aug 2025 14:00:37 +0000
Manifest next update: Wed 06 Aug 2025 14:00:37 +0000
Files and hashes: 1: 2-l-7yT7_u7_OYzRYJFyaa75TPk.roa (hash: bYwJQxGV83lRBUqEUc8QOqElQ+XjkvUc1MyoxR+0EMk=)
2: rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl (hash: WG6bM92AsT4PuL3s4kMtKyWEIpS9r8DlT+i0+GVR4ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:88:ba:d9:5f:e8:2b:9d:e4:8f:d9:32:de:20:b7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Validity
Not Before: Aug 5 14:00:37 2025 GMT
Not After : Aug 6 14:00:37 2025 GMT
Subject: CN=6b128a9d90657acf494cf8323b0b735a48a70d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:18:d6:9d:05:06:6a:ee:a9:32:0f:70:26:
82:34:0c:ea:5c:c1:37:35:8b:9b:a5:50:95:ef:e9:
87:06:76:e7:c9:6a:85:31:36:ce:4f:45:3e:e7:7a:
f9:8d:d2:3f:d2:47:41:9b:1a:92:6d:e6:bd:a4:a1:
9f:0b:4e:39:72:4b:64:0e:2a:8e:34:3f:e4:fb:f2:
f3:d7:af:7c:54:78:7d:b8:c2:d4:0f:18:67:05:fc:
ee:7a:94:c7:0b:c2:05:16:8f:93:08:a3:36:69:01:
79:3b:d5:77:d0:62:22:e3:a0:05:1e:3a:ba:51:16:
37:d6:98:f7:0e:14:89:c0:78:65:39:98:e4:f0:58:
6f:72:46:9a:b7:aa:97:27:25:fd:b0:49:40:d9:62:
05:12:93:ef:6c:83:23:3b:da:63:24:ef:44:0f:1a:
22:bb:1a:18:1f:82:ec:e6:16:c7:a2:fa:8a:31:78:
90:49:cb:af:3f:17:29:00:91:e5:f8:82:51:a0:e4:
57:32:c9:0d:aa:e0:7b:04:1c:df:7e:ad:f4:ea:97:
05:74:0d:bb:64:1c:b7:72:e8:c7:4e:a9:69:16:c4:
ee:af:b4:9d:b3:91:96:57:c2:38:7b:87:2e:e9:18:
1f:81:87:9e:f9:8b:2f:51:3c:fb:20:61:c2:93:bd:
e0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:12:8A:9D:90:65:7A:CF:49:4C:F8:32:3B:0B:73:5A:48:A7:0D:25
X509v3 Authority Key Identifier:
keyid:AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:fd:d2:5c:1c:6a:cd:61:6a:ac:41:06:92:20:08:4b:cb:6f:
d7:53:b3:1c:10:fc:53:c4:52:a2:c6:77:db:e6:00:c9:4a:8d:
be:30:f6:2e:40:c5:1c:62:0e:94:aa:65:87:63:c1:be:43:84:
fd:9b:a8:ed:25:0f:bc:d2:59:0f:ca:a4:5f:17:25:d0:4e:68:
54:2a:a4:ef:f1:ee:48:64:66:26:73:e7:5f:5a:41:af:16:75:
9a:24:86:d0:be:ea:db:a4:d8:29:7e:88:d0:0b:32:7a:43:59:
1f:15:ac:b9:35:87:ab:aa:c9:ac:54:d8:6c:b5:1e:6c:20:b0:
7a:54:27:7b:34:6e:f9:c5:d7:9d:ab:a5:ea:a9:58:d1:2a:2e:
41:f7:f3:70:cd:7f:0f:79:71:db:5c:37:a1:80:a6:36:ba:33:
b2:25:02:1d:21:12:1a:bf:59:4f:ec:e8:2a:0b:a1:2c:a9:dd:
1c:6c:2b:6d:25:31:b8:14:5b:15:8d:0a:06:10:33:4a:8e:f0:
d2:25:5c:e5:ab:0f:c3:c1:bf:45:c0:c4:10:77:c4:3f:f3:44:
0c:0a:30:3a:ce:e4:66:c4:47:63:e8:ba:22:83:12:75:dd:a1:
f0:13:d3:c7:1f:c4:cb:de:67:8c:32:b5:8f:c3:f0:f7:05:81:
8a:1a:9a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:18:34 2025 by rpki-client