Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
File: O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft (raw, json)
Hash identifier: lRgSIV5k7YBt8O9Rr0VOIhrOfO8SnE8ApYTYRxvPINA=
Subject key identifier: 2B:74:7F:6E:DF:97:F6:BA:3F:63:ED:36:58:6E:53:B5:CD:68:13:CA
Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Certificate serial: 019874F5392EBAAA7F7E566291F4AF3A614F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
Manifest number: 161F
Signing time: Mon 04 Aug 2025 12:01:24 +0000
Manifest this update: Mon 04 Aug 2025 12:01:24 +0000
Manifest next update: Tue 05 Aug 2025 12:01:24 +0000
Files and hashes: 1: 9BmVkWHqnPagXm5os2wnNWK9INk.roa (hash: 8RngoNykTFTJnIq5oyzFYRTf3TP7cyLKV5cry6M5mgE=)
2: O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl (hash: i97FrCF2e3VRxJVqmSp03lBF75udd3mThhv1G6jvV6c=)
3: UceenS0AW37r9tIac-IPww_60R8.roa (hash: V8RGgQn1l8C/6JS3VLbt67ThWSSYzYF+1zDXdf2gvmc=)
4: XMfgeWsouW7zDItYh1JZ2jjj45k.roa (hash: vbzvSSJRPNTDibm8O4OpKJZcb0gn8EqIPSb4vf2O1YQ=)
5: bfaBM6FlZYXa4nbuYDgVUb-kZ3Q.roa (hash: xgsMr2NauAKQSxWJwA/kjcmJfb7a4hHGqMdZNQtzfIo=)
6: ect9rt1iTOwU4l499MLwvhBDleI.roa (hash: uzI2RBjcPd1qUaeOmN2JzrZzLgn4U0x7LpGFh6u7YtQ=)
7: k4SuTTWtdBVQ_LKZQ1KA6lDONew.roa (hash: wlxEmhfh10lsvP/Vr0aaNNA3fnG6+QPuVB7G+98rWuk=)
8: n15MEYNvv2pMvnP0JWDh9ke-rMw.roa (hash: a5c2NX6rzpDN08ss2QyMsYiZjq6GT9uV8kCAFrcH1WA=)
9: wb50_D1ewkMOUFxLDz2rdaS7yFE.roa (hash: oMtAJWBhFmyN0NJmKrxaTP7Y/Gbn/GmAXozjV5Dt6I8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:39:2e:ba:aa:7f:7e:56:62:91:f4:af:3a:61:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Validity
Not Before: Aug 4 12:01:24 2025 GMT
Not After : Aug 5 12:01:24 2025 GMT
Subject: CN=2b747f6edf97f6ba3f63ed36586e53b5cd6813ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:be:62:9d:cb:83:de:91:de:b9:40:6e:6b:46:
b8:6e:6f:cf:59:28:ef:31:27:01:49:cc:66:3a:b2:
2a:cf:67:6a:15:30:70:b6:42:20:52:d5:13:de:73:
6f:35:11:3a:6b:51:01:3f:51:bc:39:ef:be:14:b9:
82:2f:f5:24:ea:b0:65:2e:1c:af:ec:f5:81:9f:a8:
02:39:26:9d:3c:4d:2b:40:12:85:f9:33:d6:73:09:
3e:d6:de:3d:60:f5:4c:c8:fb:d2:ee:39:c8:e0:e6:
bb:c7:d5:b3:20:18:5e:99:21:22:7a:23:b7:d0:6f:
3c:cb:47:a3:dd:18:b6:28:9f:de:02:62:ed:1c:85:
42:9d:03:58:fd:72:36:9c:d4:e0:ef:31:18:91:9c:
0f:4b:c9:ec:dd:d4:53:58:65:78:46:5e:9d:ac:53:
d9:a3:38:7c:b7:8a:0f:89:a5:c1:3a:d8:e5:ab:56:
c6:d1:ae:57:38:fe:ff:8a:fe:ee:64:c2:53:d1:e0:
9d:0f:59:f7:5d:ed:d5:21:9e:14:bb:2d:59:b7:df:
d2:23:a1:49:0c:1d:91:86:ee:8f:0e:9c:ab:48:d5:
d1:66:0a:79:7f:84:4f:14:77:6d:82:37:d2:0f:71:
c4:cf:ab:96:a0:cc:b3:85:94:30:b2:84:30:66:05:
38:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:74:7F:6E:DF:97:F6:BA:3F:63:ED:36:58:6E:53:B5:CD:68:13:CA
X509v3 Authority Key Identifier:
keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:95:0e:cb:e3:cb:13:79:c7:e0:84:ce:96:89:d0:71:f5:c3:
e9:51:07:5f:d7:a0:a2:ec:1f:60:7d:3a:d8:fb:d9:04:2c:50:
3b:00:35:a2:bc:b6:ed:6f:c3:99:92:b9:43:41:0d:c8:70:f5:
42:f7:9b:cf:dd:6e:ec:f0:89:7c:60:bc:20:fb:a0:8c:f9:4f:
f6:a8:90:51:ee:2c:4b:03:a2:06:19:39:84:30:c8:3d:45:71:
fb:a3:61:8d:92:b0:09:c1:47:cb:81:5b:e0:95:76:c7:1a:a4:
36:12:ae:b7:94:9e:bf:26:5a:cf:d0:3b:e8:6c:d7:f0:43:dc:
15:8c:eb:be:7c:30:f7:94:39:5f:01:b3:76:90:4e:02:ef:cb:
fe:aa:85:e4:b3:d5:79:dd:e5:ab:6b:c2:c9:5c:cc:73:1b:e7:
42:70:10:03:b4:df:1a:aa:85:0b:7c:36:52:2d:51:ac:79:8f:
df:64:71:27:2a:43:74:0e:b0:87:20:68:05:d2:5e:d1:e9:40:
99:69:3c:35:05:34:50:c9:c8:4e:ff:41:ff:a4:8a:6e:5b:0f:
0d:75:b5:e0:89:ec:2a:ce:96:4d:59:df:82:5b:d4:84:e8:4b:
40:91:45:0b:f3:62:93:ba:95:c6:67:54:67:61:59:44:1b:5a:
1c:6d:4c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:16:41 2025 by rpki-client