Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: jGtpaYdQ+Wlo7FOrH6ZRP50jMp1e7zyvex1bKeLsIYA=
Subject key identifier: 3D:CF:99:49:E4:FE:75:06:0A:EC:6F:5E:96:53:BB:27:D9:AF:30:A7
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 01987450593248C549D2E599C67922E78D42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0220
Signing time: Mon 04 Aug 2025 09:01:19 +0000
Manifest this update: Mon 04 Aug 2025 09:01:19 +0000
Manifest next update: Tue 05 Aug 2025 09:01:19 +0000
Files and hashes: 1: miHlM9LoOvhYbZQONUYiQ010Y0Y.roa (hash: lxFbzya4PF93jTfC+wdGWG8lRjQOoMqPwgxmgMabAZw=)
2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: 8SQBzXsOk7aTt94rK82rZWlBW3wkjdDxxwZRRl++HfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:59:32:48:c5:49:d2:e5:99:c6:79:22:e7:8d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Aug 4 09:01:19 2025 GMT
Not After : Aug 5 09:01:19 2025 GMT
Subject: CN=3dcf9949e4fe75060aec6f5e9653bb27d9af30a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:40:c6:70:9c:2a:e1:ca:14:67:64:5d:f8:41:
50:10:3d:b1:9d:4d:bf:9e:9b:0f:4c:a1:10:55:89:
da:1a:6d:54:20:68:04:13:3d:00:f0:6d:8e:35:54:
f2:2e:06:9a:0d:11:eb:fd:00:18:4f:1b:ff:26:06:
4a:a1:31:07:13:61:65:8a:4a:0d:ab:db:df:73:c4:
9d:2d:d6:19:0b:48:b3:b6:59:9b:3f:fe:7d:dc:9e:
67:dc:c4:a7:74:d7:5e:a8:54:d6:20:e7:3e:9e:00:
9a:4f:5b:54:7d:ba:f1:16:3f:63:8b:ad:49:f0:ba:
c1:cd:33:66:fe:15:23:d8:33:bc:67:83:bc:fa:9b:
e9:2d:a7:ee:27:74:35:19:16:90:8d:a1:9b:50:7c:
82:61:66:ab:44:c1:93:bc:92:96:c3:c1:b1:06:d7:
de:39:59:e0:d9:c5:3c:4c:b1:a9:b3:18:6e:df:3c:
ac:58:8a:91:85:e3:0a:68:2b:db:5b:b3:18:bd:c1:
21:59:35:0e:75:c6:96:76:80:30:1a:13:67:c5:bf:
e9:a5:47:41:02:ae:92:e3:dc:8d:5a:7b:68:c4:6f:
dd:d7:33:aa:79:dd:38:7a:6d:f2:fe:cd:73:4d:7e:
23:59:90:c1:36:ed:a5:87:5a:10:c7:da:51:33:4a:
36:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:CF:99:49:E4:FE:75:06:0A:EC:6F:5E:96:53:BB:27:D9:AF:30:A7
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:95:43:db:aa:88:f7:7a:11:5d:4a:44:59:6b:64:ed:f8:3b:
f1:89:41:3a:26:45:90:d2:dc:bb:12:55:9b:21:b9:fa:11:50:
12:84:2d:31:ee:ae:bb:92:73:58:04:f8:70:4d:0a:af:3d:3d:
8f:6f:e3:8a:ef:97:d3:34:a9:99:0d:69:b7:59:68:1e:b2:21:
16:ef:14:89:22:5a:5e:86:72:fc:fb:1f:f2:40:ae:29:14:98:
fa:e3:dd:d2:02:ad:5c:19:bd:39:fc:8c:e1:b7:72:ba:ba:ca:
84:64:4a:41:3b:9f:53:9c:e0:70:62:a0:52:2a:6d:ff:69:16:
79:3e:68:ed:6b:ed:54:82:e7:65:38:0f:2b:84:65:3b:83:c0:
98:f6:2b:8b:99:a9:b8:fe:94:a4:4c:38:32:ea:da:60:3f:3e:
04:07:a1:b9:a1:eb:9d:6a:5c:6c:95:54:df:d4:4a:33:c4:6c:
c9:23:a1:e7:90:66:85:a6:d8:f2:0c:c3:81:66:2a:a0:35:97:
a5:9e:96:7f:41:91:b8:5b:1c:45:a7:e7:a5:dc:53:40:3d:ae:
67:59:88:9c:2d:81:a5:43:1d:91:60:fe:24:85:49:9c:35:8c:
08:20:78:6d:03:03:22:ff:b6:67:b2:6a:ba:57:1f:d5:1a:3e:
8b:fd:d7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:07 2025 by rpki-client