Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: 4CMpXCtr4XPZg3Z6kbhKPPMXBKSUGUMouCKyeyAjKQY=
Subject key identifier: 2D:F7:BC:A3:1A:BD:FA:ED:50:42:28:90:F0:EB:5E:EE:0C:63:6A:4C
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 01987A88D0D06E3CA9A9725B712A67E8FF3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 160B
Signing time: Tue 05 Aug 2025 14:00:43 +0000
Manifest this update: Tue 05 Aug 2025 14:00:43 +0000
Manifest next update: Wed 06 Aug 2025 14:00:43 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: Ynx5UC5385V0OnH/X4zfbdtrxjOyZVO3/3rbihM4oos=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:88:d0:d0:6e:3c:a9:a9:72:5b:71:2a:67:e8:ff:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Aug 5 14:00:43 2025 GMT
Not After : Aug 6 14:00:43 2025 GMT
Subject: CN=2df7bca31abdfaed50422890f0eb5eee0c636a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:81:53:88:de:8b:3e:09:45:65:5b:f8:81:
91:b6:b8:a3:c8:23:2b:fa:2d:c7:26:5c:91:21:9e:
b4:35:e1:ca:af:23:97:01:05:28:d6:73:2f:2b:9b:
b2:ab:40:65:86:5a:7d:97:9e:ca:92:39:92:93:18:
79:2f:e9:e4:89:a8:96:dd:cb:1d:22:5b:e8:24:5d:
68:35:e0:d2:77:b0:d9:c3:34:6a:d8:69:4e:28:4c:
17:9b:81:cf:9f:eb:15:2a:0e:bb:39:a8:09:17:f2:
44:5f:57:8c:f4:91:4f:5b:53:43:df:75:22:56:6b:
c7:0c:9c:6c:1c:4f:b1:17:59:fb:32:1b:2a:58:65:
82:33:86:42:a2:98:3a:c7:a0:62:86:8c:1a:b4:81:
92:ce:c0:b4:a6:1f:a2:9d:17:09:6c:b3:00:9e:7a:
35:96:36:88:bb:b7:3e:d9:9e:1e:03:6f:bf:2f:49:
54:1e:6b:f8:f1:d4:73:96:ec:e0:c0:bb:0b:86:fa:
07:20:90:69:92:f4:99:52:4e:bf:2d:68:6e:16:3a:
29:95:a7:0c:f0:f8:06:83:1a:cb:6d:c1:46:b5:75:
39:9a:0f:ea:00:cf:bb:36:3f:a9:62:60:07:be:f8:
01:21:31:b3:c0:91:52:5c:8b:4d:48:c2:4a:d4:1d:
06:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F7:BC:A3:1A:BD:FA:ED:50:42:28:90:F0:EB:5E:EE:0C:63:6A:4C
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:42:80:96:fd:cf:66:b0:c7:8e:c8:cb:d6:00:a7:67:d3:71:
62:aa:5d:a3:f5:ef:83:e4:98:4b:ef:c9:d8:3f:76:c8:94:64:
ac:31:3d:32:8f:60:43:15:af:f9:83:41:04:13:4c:af:7c:75:
bc:c4:28:46:14:a5:00:19:b1:5e:aa:43:0a:1a:fa:da:23:ba:
77:28:a1:01:7f:f4:dc:02:2b:ca:a6:29:a5:db:16:d1:aa:b8:
12:18:98:66:09:b8:7f:0e:81:1d:27:b7:a6:a4:71:6d:c3:5a:
08:e2:d9:d4:54:15:ab:16:a3:b7:ba:87:ea:94:d3:f3:7b:9b:
d8:0c:1f:a8:80:e4:fd:a5:91:82:1e:dd:8c:64:93:16:a6:3e:
61:a6:02:b1:09:80:a3:c9:3d:ac:4a:4a:ec:99:9e:0c:be:04:
5f:41:e2:db:54:ec:c7:b3:ad:9b:84:b4:2a:51:14:34:63:32:
de:21:78:32:0c:b2:fe:6c:ba:98:f7:b4:95:8b:e1:ee:2a:49:
4e:2a:13:f1:7e:ac:f0:ae:61:cc:e6:2b:1e:05:a9:aa:49:f7:
f1:69:40:40:02:84:47:f0:27:34:85:59:8c:32:69:0a:fe:44:
e7:4a:4c:78:9e:81:09:18:cc:41:a1:67:6a:ad:98:4c:72:cf:
b9:4d:06:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:08:18 2025 by rpki-client