Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json)
Hash identifier: tOLMQh4J5u65tg1mnTkHsGASXNp/Uz/0V2amwPDJBlQ=
Subject key identifier: 8E:32:31:11:89:4D:1A:09:81:23:AC:78:30:E5:5C:4A:96:62:E3:39
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 019874BDAD9478C1DB0027A028806E776454
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
Manifest number: 161E
Signing time: Mon 04 Aug 2025 11:00:44 +0000
Manifest this update: Mon 04 Aug 2025 11:00:44 +0000
Manifest next update: Tue 05 Aug 2025 11:00:44 +0000
Files and hashes: 1: UzSEdJBP2Gqr1z-0qx79WTsLauw.roa (hash: vl1ow4mOIeKlrrAdbJAJQJmVxWS6mp39VC/9XaCz00U=)
2: XebRYOITfzcAbcv2WQiIUJzp9IY.roa (hash: /LlV1c2jBHdUzm3m7BbrQfvi7DnfI/2A+wzHJz5/0Eg=)
3: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: 1Jl2/vTc7m8yymllp87xD8LftxeGnLYn3pUKyrQElTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:ad:94:78:c1:db:00:27:a0:28:80:6e:77:64:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Aug 4 11:00:44 2025 GMT
Not After : Aug 5 11:00:44 2025 GMT
Subject: CN=8e323111894d1a098123ac7830e55c4a9662e339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f9:b6:85:d1:db:88:56:4a:0b:a3:69:0e:fb:
b9:ff:7e:85:ca:92:e2:ea:11:16:78:54:5b:f2:e3:
61:a5:c3:70:fd:ea:cc:83:fc:e5:05:10:24:96:f1:
17:01:6e:6f:e6:45:0a:25:6a:c9:0d:7c:57:bd:cd:
92:ab:49:2d:ba:e6:ad:04:a0:d5:1f:f1:c7:7f:c3:
f2:ec:dd:ec:3b:57:d9:55:7b:a3:35:ad:a6:e9:f1:
4e:97:df:72:ff:1b:28:8d:e3:85:3b:4d:e4:68:68:
31:14:6d:23:49:cc:80:78:59:e9:42:e0:db:29:8b:
be:91:66:2b:c5:51:3a:6f:a2:a4:fc:70:8a:67:ff:
84:cb:9f:46:3a:f0:f2:f8:59:5f:a8:71:de:e8:b6:
2f:6c:e9:aa:6a:8d:f1:36:64:e5:45:f2:24:10:68:
2b:66:af:4e:8d:0e:a7:c2:05:b6:b6:91:be:69:b7:
c7:a6:ac:cf:21:3a:96:f1:18:a2:80:60:ee:c3:0b:
80:49:16:af:b0:78:03:05:38:b1:c2:cc:4a:56:c4:
52:3f:bc:5b:c3:e4:23:a3:83:ff:36:1d:90:70:3e:
11:89:01:2e:56:d8:2c:57:2c:33:d7:40:45:7a:56:
0a:5d:fb:56:e5:19:00:93:66:5e:3f:4b:95:84:31:
c1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:32:31:11:89:4D:1A:09:81:23:AC:78:30:E5:5C:4A:96:62:E3:39
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:28:56:f6:8e:bf:ea:21:f9:22:10:37:ec:5c:f6:55:ee:73:
a7:37:12:94:9d:24:45:17:29:42:8d:3b:a0:4d:8b:85:b0:1a:
55:ba:bc:11:73:c3:55:25:d7:74:32:31:d5:a5:fe:47:bb:71:
69:f0:46:6c:45:26:a0:19:8c:e9:37:74:8d:9a:1a:7d:32:5a:
82:65:4b:38:2d:87:19:3d:f1:fe:f2:92:f2:d8:e1:3f:3c:32:
58:0d:86:e5:05:b0:3d:b6:56:1d:1c:c4:27:dc:28:cd:40:86:
1e:8f:41:54:f3:6f:ad:e4:f2:c6:5f:c5:74:e9:36:83:7c:f1:
ef:b8:8b:8f:53:c0:a2:70:b0:a1:14:0a:85:bf:ce:32:66:d0:
59:cc:66:bf:ab:8a:57:2d:59:11:84:7f:b1:ee:89:bb:b2:11:
b5:2a:66:69:55:7d:31:9a:c9:4a:0a:18:92:17:5e:62:db:ca:
ec:f3:be:8b:40:4e:fa:d7:69:78:07:69:12:25:e7:5f:97:33:
aa:db:d6:c3:5b:67:95:66:e0:e8:19:77:cf:60:7d:ac:f4:01:
29:e5:68:bc:29:38:2f:7b:bd:1c:f7:52:32:c9:e8:a8:d9:6b:
23:b9:bb:bb:ab:f1:d2:38:4f:8b:89:39:02:b8:75:ca:e5:56:
8a:6c:7d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:58:30 2025 by rpki-client