Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: PRns4mth4VPUc1bewL3MEJ/mfCe9R4mPjc7jF4EseJU=
Subject key identifier: 1E:54:59:63:AD:97:42:78:44:8F:AA:EE:13:5B:89:E1:70:9C:0F:F1
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 01987F0A47497FD05F69C2AFF1F1847980A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 0122
Signing time: Wed 06 Aug 2025 11:00:36 +0000
Manifest this update: Wed 06 Aug 2025 11:00:36 +0000
Manifest next update: Thu 07 Aug 2025 11:00:36 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: 9cePlXp3BvWy9DZx1M9ZszkIfZfxbI2GnZm2bhPabOY=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:0a:47:49:7f:d0:5f:69:c2:af:f1:f1:84:79:80:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Aug 6 11:00:36 2025 GMT
Not After : Aug 7 11:00:36 2025 GMT
Subject: CN=1e545963ad974278448faaee135b89e1709c0ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:06:ff:2a:93:a8:51:6b:59:92:0e:94:9a:
b2:ef:51:5c:8b:3a:4e:40:44:98:52:c5:85:44:6a:
e2:96:1a:48:63:92:bc:f5:e9:6e:0f:0d:1e:1a:7a:
4c:f7:1d:e5:3f:98:76:06:39:aa:6f:58:d4:49:a8:
c3:33:e6:a1:97:51:14:6b:26:ea:27:53:78:52:7a:
04:be:7f:91:90:4f:44:59:41:35:14:01:5c:55:e5:
bc:44:ad:08:73:16:11:ea:f2:ee:5c:e6:64:4a:c7:
4a:60:20:b8:94:54:69:5d:63:5e:f9:a4:ef:be:19:
3a:35:bc:4f:8d:59:59:40:b9:c4:81:4d:7b:43:e0:
0a:ad:19:3a:2c:ce:c8:ed:3c:dc:2c:f8:d0:2b:9b:
3b:57:52:b9:ea:3c:15:e9:18:12:25:55:17:8f:11:
01:79:8d:0c:a9:84:cb:36:e5:d6:49:3d:9c:ca:78:
8f:81:bb:c4:0f:db:93:14:30:a6:2e:ff:fc:e2:00:
36:29:f7:24:0c:26:c4:31:e9:4f:45:c1:cc:57:b7:
f7:6e:bb:7e:75:5b:35:38:7d:2f:12:10:0c:26:f7:
50:0c:74:0e:5a:2d:e9:79:b3:59:dd:1f:b1:b6:c5:
bb:37:8c:01:b5:28:b6:a4:d9:08:bb:b4:ca:f6:23:
25:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:54:59:63:AD:97:42:78:44:8F:AA:EE:13:5B:89:E1:70:9C:0F:F1
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a7:8f:77:0c:65:11:3a:52:50:3c:f5:9f:51:b4:59:6d:4d:
eb:0a:ee:33:24:45:e4:ed:77:05:c3:89:7a:ae:f7:c9:58:e4:
bd:98:06:17:33:5e:c4:f7:1d:45:ca:5f:51:cf:db:80:83:a7:
bd:f5:b4:15:8e:b8:41:a1:b2:80:dc:f3:ba:f1:9f:be:67:0d:
9c:4f:f7:97:b1:89:62:54:6a:ac:b4:fd:6d:e3:cd:46:b0:f8:
60:05:1a:e0:2c:04:d5:ee:3e:b5:5a:d9:aa:93:26:f6:cf:ac:
a6:5c:fb:5a:b9:10:b3:d5:81:ab:81:53:63:78:96:61:9b:26:
bc:c2:b4:1a:07:01:65:31:c8:a3:ef:4d:c2:a2:92:5f:45:2c:
4a:68:80:6e:33:71:13:17:a4:1b:b8:45:d7:ec:4f:d6:4e:27:
fa:71:4b:3c:17:0c:c6:a0:8d:1a:b3:5f:63:da:f4:21:4e:a0:
ef:bb:a3:2d:ea:4f:72:bd:7f:f6:3d:ba:65:5f:51:b1:39:54:
1c:8a:f3:e0:ea:30:4d:8e:67:ac:44:18:aa:0f:14:32:31:1f:
27:98:71:4c:53:a8:1c:f8:87:44:84:80:54:19:78:28:9c:f6:
84:5a:3f:ad:a2:d6:ee:3b:e2:19:10:13:e3:5a:4a:a0:e3:8e:
9b:67:4b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:37 2025 by rpki-client