Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: Ub1kWirKOrjGwK2j92wPvGkw1j7WPUklzB+4+NmZ4TA=
Subject key identifier: 6C:65:95:45:95:1A:18:76:89:49:13:3B:07:5D:B2:76:49:30:1B:C4
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 01987C40CDF1A6FAD9316926D6EDBFCDE23B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 07EF
Signing time: Tue 05 Aug 2025 22:01:18 +0000
Manifest this update: Tue 05 Aug 2025 22:01:18 +0000
Manifest next update: Wed 06 Aug 2025 22:01:18 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: 0Docc5KZwqnuLjPu4j8SuT/R3VhZ6/erWtW4yj6/Qlw=)
2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 22:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:40:cd:f1:a6:fa:d9:31:69:26:d6:ed:bf:cd:e2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Aug 5 22:01:18 2025 GMT
Not After : Aug 6 22:01:18 2025 GMT
Subject: CN=6c659545951a18768949133b075db27649301bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:ca:5c:6f:49:07:7f:65:4f:61:1c:78:ef:
25:41:13:25:1b:6d:cd:2e:62:a0:b2:41:70:f6:4e:
2a:64:43:86:3d:eb:82:31:25:fd:01:bd:c4:2f:6f:
92:e0:7e:be:d9:e5:3f:e9:d0:34:b6:03:38:99:40:
ff:0b:7f:6e:a3:93:87:b2:ec:50:aa:21:7a:25:02:
f6:7a:d6:e8:86:ca:f5:21:9f:d5:d5:de:9d:e1:5d:
26:d6:7c:0b:16:12:32:a0:6d:fa:8c:14:18:ae:ce:
b5:e7:22:ee:d6:aa:d3:62:f9:87:99:e9:0c:71:70:
16:e3:93:c4:09:58:15:da:b6:14:3a:99:9f:b4:c3:
7e:4d:b6:fe:ea:4a:6c:e7:11:ac:21:26:89:de:01:
ef:8b:90:e1:17:90:52:75:4c:f9:cc:22:29:27:89:
52:f0:32:a0:8e:42:4d:ea:f1:af:9f:e0:63:ed:45:
33:d0:06:1f:51:e3:91:6e:04:6d:40:d8:34:cc:af:
77:90:85:5a:b1:1a:83:3e:17:4e:ad:66:12:73:e7:
2f:1f:00:c9:65:88:ad:40:33:44:3c:99:40:f5:3f:
14:f3:cd:98:a2:6f:86:f1:52:32:7f:00:96:e8:87:
fd:cb:ec:35:d3:c9:31:d2:75:17:7a:68:aa:10:6d:
ac:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:65:95:45:95:1A:18:76:89:49:13:3B:07:5D:B2:76:49:30:1B:C4
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:f2:53:64:f4:ac:ca:bc:99:97:e5:3e:96:16:01:db:f7:9c:
11:a5:ae:f9:40:bb:e7:4c:eb:6c:bd:46:be:29:fc:bd:5d:d2:
54:d8:ec:34:62:35:93:86:da:1a:58:7e:61:b1:e1:1b:8e:4d:
4b:a2:f2:f9:86:cf:fa:9c:6f:95:ff:62:a1:3b:6a:35:9a:94:
d2:e9:ca:5d:a8:47:89:99:d5:36:36:4a:2e:d0:93:e8:e7:45:
2c:8c:b9:1c:da:74:37:79:fc:9c:44:bb:95:58:d6:fd:bc:d8:
f3:e2:f4:e1:c9:42:85:e5:b9:2e:54:02:e8:a3:ba:d5:a4:bc:
c1:e8:e3:56:c6:9f:f4:e0:39:95:99:c1:71:8e:4f:84:cf:52:
c0:10:6a:39:1e:86:72:11:91:49:18:94:3c:5f:d8:d0:b4:8c:
44:a9:37:9d:8e:a2:39:48:d3:cc:b9:bd:49:7f:5d:9a:f5:40:
c1:81:d1:3b:64:a7:a9:3e:eb:1b:e8:e0:c6:fb:cf:b1:36:b9:
eb:d2:aa:c0:1b:8b:df:f7:65:79:29:3b:82:12:a0:2c:c1:d3:
f5:f1:6e:f0:ef:96:19:8c:0b:15:98:e1:63:42:0d:9a:97:bb:
84:d4:68:64:e8:21:61:31:23:46:05:e4:f1:03:79:c8:a1:b9:
50:56:0e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:58:14 2025 by rpki-client