Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
File: OvdxDfit1ku5aI4PRYG-pn5ALGY.mft (raw, json)
Hash identifier: zHiqIJklrZLfxQ6jt1zbDmWARNWKoFR/bOaI73NwHuU=
Subject key identifier: 06:68:0A:34:A2:1C:B1:5D:2F:04:AF:2A:01:EA:1B:CD:7B:AA:DD:92
Authority key identifier: 3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
Certificate issuer: /CN=3af7710df8add64bb9688e0f4581bea67e402c66
Certificate serial: 0198819E585AB2DDEA45B016D3F22A2801BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
Manifest number: 0B5A
Signing time: Wed 06 Aug 2025 23:01:34 +0000
Manifest this update: Wed 06 Aug 2025 23:01:34 +0000
Manifest next update: Thu 07 Aug 2025 23:01:34 +0000
Files and hashes: 1: 1-5V6RXgQOXjxU3mO34q_0PmmYk4.roa (hash: UBzppXP3Ubih2qJBoeebTWZSAjaul2dwW+uHzrrKrpI=)
2: OvdxDfit1ku5aI4PRYG-pn5ALGY.crl (hash: WfgDHf4S2eg+0vagby3y4+/O+S+0DlcGzfRL+IuH5Qg=)
3: XSqKcr4vohHwUX7C_jwkOz3T4S8.roa (hash: S5RGDFj4AygaOQ9nMJnUMnAW4DmVGX2kAbpxmhv1Nxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9e:58:5a:b2:dd:ea:45:b0:16:d3:f2:2a:28:01:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af7710df8add64bb9688e0f4581bea67e402c66
Validity
Not Before: Aug 6 23:01:34 2025 GMT
Not After : Aug 7 23:01:34 2025 GMT
Subject: CN=06680a34a21cb15d2f04af2a01ea1bcd7baadd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a4:d2:db:cd:d5:f1:23:9e:a2:c4:8d:92:08:
a3:12:64:95:8b:55:50:6c:72:28:00:1a:a8:f8:8a:
34:e6:3c:8c:35:f8:25:d4:7a:22:03:4e:0e:b4:8e:
72:09:a4:8e:b2:61:c7:d2:cb:d8:d1:01:45:c1:de:
e3:20:71:0e:ee:70:8f:7b:5d:52:1e:ec:9c:dc:1f:
cb:6d:be:bf:f1:27:63:8e:5f:a1:68:0d:a3:95:b6:
60:c7:d7:51:1c:dd:09:cf:c6:d2:6b:29:bf:7f:e0:
70:98:b8:48:4d:7b:27:4f:2d:56:f3:c6:d5:9a:97:
e8:9d:7d:d7:87:f6:79:a6:52:d1:8b:d3:76:db:41:
89:24:f9:e2:b5:1a:24:61:18:cc:82:d4:02:a7:5c:
ea:b9:a1:15:97:a6:19:85:b5:e3:71:66:20:42:62:
15:bf:50:89:14:8d:05:fa:4a:54:8d:e6:0c:31:e4:
d7:23:86:6d:aa:2c:c7:36:b7:29:b3:b7:12:ac:1f:
e8:cd:96:d9:db:92:6f:0c:6d:c2:aa:1c:4d:e0:d8:
d5:ad:4a:3a:ab:76:95:ae:ee:f8:58:77:78:bd:19:
75:ea:73:d2:11:1b:cd:1c:bb:c6:de:04:4a:42:6c:
b4:b7:cb:94:d8:18:c6:2f:fc:cb:df:f9:f5:e1:49:
3e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:68:0A:34:A2:1C:B1:5D:2F:04:AF:2A:01:EA:1B:CD:7B:AA:DD:92
X509v3 Authority Key Identifier:
keyid:3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fd:84:ec:74:2b:b6:f3:6e:70:e9:8b:f5:e1:e4:68:57:c5:
1d:cd:2d:c4:1e:c1:4d:94:f9:46:c6:63:48:6b:f2:38:1c:a8:
76:db:43:2e:7a:54:90:32:bb:cd:3d:41:33:df:0e:ef:db:4c:
79:a5:b3:85:2b:e2:d1:28:bb:b9:8a:a6:19:29:24:75:80:a2:
cd:1e:17:49:f6:c7:3f:93:4e:61:94:b6:92:27:36:1d:22:d5:
1f:87:72:88:6a:5c:50:da:40:16:c7:02:af:e6:cb:54:5c:15:
9d:3c:93:31:6e:fd:fd:96:0e:5e:59:5c:30:64:eb:43:7e:ef:
72:b9:59:2d:76:e8:8f:fb:d3:94:3f:55:0c:62:9c:d0:50:4c:
33:43:75:41:39:5e:a6:d9:6c:56:f8:51:17:85:7a:fc:cb:cb:
a6:c5:30:a3:a5:a6:08:ba:17:69:f3:4e:0b:7a:28:fb:75:42:
ec:b6:7f:e0:01:62:99:45:17:16:b0:bc:bb:93:4a:86:f3:b3:
c5:41:94:19:f3:d7:ba:f8:5a:5e:b3:d4:1e:67:6c:c4:75:12:
79:4e:86:9c:ef:e9:66:dd:6b:05:d1:b3:4e:ed:9d:29:eb:6c:
52:c8:fd:6a:7c:fa:3a:95:54:66:69:2c:17:f5:dc:ec:f8:de:
5b:22:82:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:40:21 2025 by rpki-client