Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: SzR3l0ygK9j6MEfLMiLLZqDoqUM3UDp6L2Snvbg1GR8=
Subject key identifier: CD:90:9D:D9:6B:43:22:57:40:FA:A5:ED:EF:04:89:A0:51:79:66:27
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 019891ECB8F322DFBAEA3302166E1FDA9FDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0C63
Signing time: Sun 10 Aug 2025 03:01:06 +0000
Manifest this update: Sun 10 Aug 2025 03:01:06 +0000
Manifest next update: Mon 11 Aug 2025 03:01:06 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 72YV/6wX5djtrA7uSVkDgqMo8PN3eglYo7e5LKrql9M=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:ec:b8:f3:22:df:ba:ea:33:02:16:6e:1f:da:9f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Aug 10 03:01:06 2025 GMT
Not After : Aug 11 03:01:06 2025 GMT
Subject: CN=cd909dd96b43225740faa5edef0489a051796627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1a:0f:72:c4:a9:5f:20:95:a1:a1:b6:32:c1:
db:af:cc:de:61:78:6d:fd:44:15:ec:d9:1b:17:ba:
9f:74:7f:c4:29:64:75:5b:7b:98:cd:98:cd:1c:bd:
ec:b5:4c:05:e0:b0:96:45:00:4a:d5:34:e5:62:9c:
c1:4d:d3:cd:c1:90:a9:a0:28:e3:dc:c8:26:b7:6f:
90:90:19:5d:82:37:3b:c1:e9:5a:96:c1:02:57:b5:
f5:5b:87:48:74:32:81:e3:45:03:1a:76:08:9f:3f:
27:8b:ff:ed:f8:55:c2:85:ad:e8:c7:2f:37:4b:6f:
3e:23:df:92:47:90:06:9d:3d:a1:67:f5:26:83:54:
4c:49:02:c9:22:ce:9a:8c:43:6d:cc:7b:33:01:0c:
bc:04:8c:e2:53:ad:9a:1c:ec:00:8e:52:d4:b3:2e:
a6:e0:2b:54:35:02:1d:dd:d3:43:0f:de:e7:f4:30:
e2:c7:3a:e8:0a:b2:27:19:70:37:37:73:2f:0e:e0:
cb:8d:b1:53:bd:82:d7:df:af:c9:6e:9b:eb:11:8a:
ce:36:0a:9f:0e:e6:ba:13:01:dd:08:92:33:d3:24:
22:b7:69:79:88:a3:16:5a:fd:b7:5c:8d:50:bb:86:
c5:53:c1:b5:26:b3:79:e8:2e:60:1a:22:61:15:e0:
72:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:90:9D:D9:6B:43:22:57:40:FA:A5:ED:EF:04:89:A0:51:79:66:27
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:4b:e6:de:0c:65:5f:7e:fa:10:90:07:ae:d6:6d:43:9c:95:
30:50:59:1d:d5:d2:26:65:fc:17:38:cc:f3:c7:96:a4:88:f1:
c1:f4:9f:76:e4:74:63:80:94:7c:ff:ba:94:07:bb:34:8b:0f:
f6:1d:a7:67:42:5b:2b:87:02:71:e3:97:65:38:f7:02:80:56:
1c:fd:f2:3d:8a:f3:cf:e5:79:15:0f:8d:6c:e3:cc:91:23:dc:
62:d1:11:4d:3d:bd:49:1a:3a:4f:3a:bf:ee:ad:ab:05:84:4d:
f2:66:c1:66:cf:3e:0f:1c:6f:12:8f:63:84:c0:b7:ac:e0:9b:
7e:e4:33:87:bd:22:ea:eb:8c:15:37:b1:80:31:64:64:65:51:
5b:d4:3a:d7:54:3b:60:67:39:8d:9e:7b:53:d7:a4:65:dd:88:
81:e2:38:52:df:7a:05:e5:c5:12:c0:b0:7f:eb:6b:62:8f:25:
99:d8:8d:4d:2a:3e:c1:05:9b:4f:a0:49:df:6e:3d:28:e7:30:
15:85:a1:db:c7:b2:04:9e:b1:92:f0:8c:5e:38:88:0e:b7:63:
5a:f3:55:ee:e8:71:fe:f3:4e:33:5f:ca:ca:ad:a2:d9:a6:16:
03:99:cb:73:bb:4c:1a:89:2d:da:d4:6a:de:0a:0a:f3:29:c4:
a8:78:ea:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:34:38 2025 by rpki-client