Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
File: OJsvo2UTg6f8aoatulbHxiB9dWg.mft (raw, json)
Hash identifier: NK6IiQUrlxXX+S7gyTEt+CFxyYslI6X+KZXEHmddtrU=
Subject key identifier: 6F:DB:4A:89:F8:F3:B0:55:D3:8A:C5:B5:B2:76:EC:BA:F1:C4:22:A6
Authority key identifier: 38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
Certificate issuer: /CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Certificate serial: 01987DC0D650E1053894DC804EB34B138306
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
Manifest number: 0E05
Signing time: Wed 06 Aug 2025 05:00:46 +0000
Manifest this update: Wed 06 Aug 2025 05:00:46 +0000
Manifest next update: Thu 07 Aug 2025 05:00:46 +0000
Files and hashes: 1: LVniV-fBUsD2XHyiKXh59lNaKck.roa (hash: e7ROoJyN3pM39RDR+x9hRmjX8OTAnl8OOTQ8mCyFwtU=)
2: OJsvo2UTg6f8aoatulbHxiB9dWg.crl (hash: oPxwg5HxQKq8qfaojwwgwGE7GhQBtcwCs8RfbOXUqco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:c0:d6:50:e1:05:38:94:dc:80:4e:b3:4b:13:83:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Validity
Not Before: Aug 6 05:00:46 2025 GMT
Not After : Aug 7 05:00:46 2025 GMT
Subject: CN=6fdb4a89f8f3b055d38ac5b5b276ecbaf1c422a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ab:0e:40:a1:dc:e8:a4:f6:db:ce:ff:05:b2:
30:40:71:35:dd:48:dc:ff:31:4a:28:0c:ed:03:60:
ae:eb:59:2a:d4:7d:87:a3:9f:d4:79:80:c8:c1:11:
c2:b0:3f:a8:d4:5d:ee:56:b4:a5:a6:d0:41:0b:05:
88:89:4e:3a:cf:77:03:6b:53:42:ab:29:da:46:0f:
00:01:7e:8f:1b:c1:69:b6:0b:d8:51:20:33:3d:13:
bf:5e:6d:60:a3:ee:c4:32:3a:d1:4c:d7:a2:2c:28:
b7:19:8e:2c:51:a2:df:6c:04:fc:ef:ab:6f:20:74:
88:05:1a:7f:c5:35:0c:7e:e3:f0:8f:14:87:ea:50:
1d:84:6b:65:cd:69:7a:eb:9d:94:b3:f7:3a:27:6b:
20:ac:9a:b0:ae:fc:b9:ee:40:2b:4d:38:55:0f:26:
93:69:c3:20:0c:c9:ea:8c:c8:dc:f8:c0:43:43:f3:
50:95:a1:0a:48:33:db:82:00:1b:eb:8f:1b:f8:14:
f1:49:65:4b:3a:d0:7c:76:5f:59:ff:39:e3:6d:6d:
8a:cf:a3:c4:db:44:59:2f:9b:c2:e4:85:db:01:c5:
c9:c8:c0:db:d8:5b:fc:8b:8e:12:8c:2a:fe:39:70:
ff:de:fb:e2:67:99:f8:2e:95:ca:6d:5c:48:f9:1e:
11:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DB:4A:89:F8:F3:B0:55:D3:8A:C5:B5:B2:76:EC:BA:F1:C4:22:A6
X509v3 Authority Key Identifier:
keyid:38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:cb:68:82:03:f0:98:5f:97:0d:38:a9:1a:e4:c1:1d:76:36:
87:c3:84:79:f1:a6:e4:96:d8:32:57:66:8b:72:c3:8c:52:4d:
ee:0e:ce:02:84:e4:f3:53:a1:8c:c8:c4:ee:c8:b2:71:50:37:
0b:c5:17:fa:1d:e7:1c:7b:35:af:ab:d5:d0:b1:60:f2:bf:4e:
9e:e7:af:cc:e3:01:a9:86:46:7a:17:0d:44:28:be:99:61:48:
2e:b9:ef:45:f3:29:94:bd:9c:2c:49:bc:16:c5:55:4d:7e:56:
75:4f:c5:08:96:a3:1a:b8:22:56:8f:9c:29:f1:15:73:7a:33:
91:1d:8a:8e:4a:2a:4e:89:ea:96:95:4a:eb:b5:fb:4e:fe:a7:
24:e5:9c:89:b3:9c:2e:eb:9b:3a:2f:ce:3f:93:7c:c0:20:36:
8e:57:6b:e0:17:ba:62:20:dc:83:95:9d:a0:be:12:d2:71:66:
64:5c:6f:84:80:3e:c3:e1:85:5e:03:8b:56:6c:5e:2c:ee:12:
12:00:7f:ae:f5:98:3a:9d:db:ad:33:f9:eb:09:bf:45:64:e5:
a2:a7:3a:c7:30:49:68:41:b8:75:67:ae:57:a9:27:df:08:35:
5e:3d:34:78:56:1a:0b:7d:5d:ad:e5:bd:80:23:b1:40:a3:d7:
f8:13:33:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:02:13 2025 by rpki-client