
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: QLlk9EukEctxoxwTnAuDmKDY7xnjtB9/Onx72Go1yfs=
Subject key identifier: 8E:6A:03:A6:9F:AB:6F:66:58:CF:54:A6:BF:A1:EA:BB:6B:E7:57:DF
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 01988B105B08E5353320B2E565B38BE64741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 0345
Signing time: Fri 08 Aug 2025 19:02:41 +0000
Manifest this update: Fri 08 Aug 2025 19:02:41 +0000
Manifest next update: Sat 09 Aug 2025 19:02:41 +0000
Files and hashes: 1: 1vvIkvJGRy621vVPsoLS7KLp9WQ.roa (hash: AaLmkGEE5WFi/MsCmNoVGVjYg2GotUKYwJ8yvjW+a60=)
2: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: aCdZHx++3z/4Tnji8d/+3sdm61yraV/z4E6bEllAjHI=)
3: KLjjQzFk9GYkvqPEoe40SA-mXbg.roa (hash: 2jEymy+mMO9pWyCpodUhIwEZFiuwLfDEfoelvtg+xqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:10:5b:08:e5:35:33:20:b2:e5:65:b3:8b:e6:47:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: Aug 8 19:02:41 2025 GMT
Not After : Aug 9 19:02:41 2025 GMT
Subject: CN=8e6a03a69fab6f6658cf54a6bfa1eabb6be757df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:aa:13:0c:00:88:bf:dc:01:74:c1:0b:49:55:
72:57:e7:51:5d:c3:54:c9:b0:3d:d2:c0:86:48:ff:
67:37:67:d8:85:93:b2:ec:e1:19:89:4c:ee:70:57:
c5:78:3b:7d:52:01:ed:07:2c:97:31:12:e4:e4:a1:
22:25:02:63:e6:b3:38:05:b4:c9:7e:c7:93:ca:d2:
c8:64:05:4b:5c:48:4d:43:4a:c6:16:73:6a:f9:ab:
da:59:78:cc:89:91:90:8a:bc:c6:ff:40:d6:92:11:
49:29:57:60:b4:af:8a:c7:3b:2e:7a:6b:5d:c6:14:
89:9b:45:a0:e1:e8:c4:26:2d:d9:44:be:5a:ed:52:
16:e8:1b:5a:42:03:09:d0:9f:f9:40:a8:cd:2b:04:
83:b9:60:44:45:2a:d3:e0:e1:18:bf:f2:6e:bd:04:
58:02:47:ce:d6:e7:12:30:d6:85:a1:f7:f7:6a:cd:
6c:f1:ff:21:e8:ee:23:88:78:30:38:c8:ee:36:c8:
57:bb:0b:fa:4a:b6:ec:3f:1e:62:c6:42:a7:6b:48:
16:61:48:e1:90:8c:1c:ea:78:71:52:c9:b7:7b:fb:
64:62:a3:c7:30:d8:29:25:4a:30:85:6e:1a:00:8e:
66:b0:05:15:4f:53:4b:78:eb:ff:d8:54:3f:31:7f:
b9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6A:03:A6:9F:AB:6F:66:58:CF:54:A6:BF:A1:EA:BB:6B:E7:57:DF
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:1d:be:63:7b:99:04:7f:61:8b:dc:4f:65:80:db:04:f5:87:
f0:99:28:ab:19:8d:37:df:e5:48:a6:ad:f5:fc:6a:3d:5f:8a:
00:98:a7:6f:6c:97:52:b4:2a:3a:a4:7f:1d:02:99:e5:5f:ac:
3b:16:4c:62:c7:58:94:72:51:6c:19:af:76:0a:4a:9d:0c:2e:
9f:72:14:b7:7b:7e:9a:31:87:84:df:e8:c7:cf:45:e9:6c:72:
ed:48:00:01:53:5f:51:8f:a7:02:32:14:cc:24:a8:42:26:f9:
18:5a:ea:cb:62:48:74:02:46:bc:30:4b:2c:4e:65:0e:73:5c:
80:06:23:f1:e6:38:d7:d5:91:e3:9b:a7:a4:30:8b:11:bf:cd:
86:b9:d7:6a:92:64:67:5a:e8:ef:a1:7c:9e:89:83:2e:f1:24:
dd:a2:82:71:0c:d2:d6:b3:79:6c:8e:51:07:f5:7a:7e:fa:70:
2f:65:9d:85:e1:13:49:e3:9d:0a:59:03:b9:c0:d3:54:c5:92:
1d:d9:df:2e:13:ce:c0:36:64:53:31:75:de:07:29:19:3e:5d:
b8:63:4a:c4:5d:72:ba:4d:2f:17:4c:97:3c:d5:ed:62:4e:87:
9a:14:8b:c7:ed:c0:c5:ed:97:e7:e0:ed:56:dc:9a:cc:87:2f:
c8:27:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:12 2025 by rpki-client