Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json)
Hash identifier: QuCNoLfDdDyEMZD1Ulu69qbDt7fGn4sQitS8pJ+WLqY=
Subject key identifier: 75:D5:38:91:A9:4E:0B:95:10:46:90:71:19:22:3D:38:AC:F8:AA:FA
Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Certificate serial: 01989ECC28F0002C0492E1BF3FF545A20FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
Manifest number: 0AAE
Signing time: Tue 12 Aug 2025 15:00:36 +0000
Manifest this update: Tue 12 Aug 2025 15:00:36 +0000
Manifest next update: Wed 13 Aug 2025 15:00:36 +0000
Files and hashes: 1: 3qIWzYrkrCPP_OpSVUhC7_G6DpI.roa (hash: yygvsOn7SmxlaOZM9baJ/n8umdT0wN2hx2GnupmdeSk=)
2: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: KBaDnSYlOotqVaG/+T8zWfV7DxsicLWfShdWQCGzpVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:cc:28:f0:00:2c:04:92:e1:bf:3f:f5:45:a2:0f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Validity
Not Before: Aug 12 15:00:36 2025 GMT
Not After : Aug 13 15:00:36 2025 GMT
Subject: CN=75d53891a94e0b951046907119223d38acf8aafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:53:3e:53:b3:8e:f2:23:cd:a9:38:1d:63:c6:
db:82:08:67:79:19:05:b0:5f:55:90:13:d5:eb:63:
12:fc:29:4f:db:33:0b:3f:e9:8d:66:43:83:cf:2a:
4e:83:6b:31:a7:71:05:b0:6c:f7:84:59:30:4a:f9:
35:0d:fc:40:fd:6f:6d:5a:38:49:ad:f9:d4:4b:4f:
5b:06:65:a1:6b:e0:89:be:0a:6d:64:f9:66:c1:1a:
97:42:9c:f8:49:cb:2e:f0:8e:e1:09:6e:d0:03:19:
89:64:eb:36:80:1d:c5:31:25:50:ab:4f:c8:54:af:
c8:d0:de:75:22:b0:69:fe:a3:f9:6c:18:92:63:ff:
d9:7e:26:af:69:89:09:6b:a3:da:d1:ee:46:4c:4f:
88:75:65:9c:88:0c:28:76:57:54:33:ed:1b:9d:a7:
55:fd:24:c0:5c:5c:b8:0d:95:3b:1d:17:ed:97:6f:
73:26:5c:14:39:18:f7:63:89:34:62:7a:a1:74:4b:
50:c8:c8:bc:d2:d7:0b:e2:6b:76:18:20:96:89:44:
67:d6:68:71:6f:43:9e:35:84:dd:db:5b:70:4f:65:
5e:72:93:5a:89:3b:83:81:d1:b1:f8:01:89:10:61:
64:46:90:6e:00:da:85:5b:20:de:0f:86:b3:32:a8:
aa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D5:38:91:A9:4E:0B:95:10:46:90:71:19:22:3D:38:AC:F8:AA:FA
X509v3 Authority Key Identifier:
keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:0c:57:a8:bb:71:35:39:24:7d:90:1c:3f:19:75:d0:fe:26:
11:73:96:cb:be:f0:e6:7a:72:ae:e4:36:72:56:92:62:d8:1e:
8a:7c:26:67:53:47:ea:8c:74:8a:8e:7a:4e:bb:fa:8b:70:40:
75:ee:a5:09:3a:ff:40:63:59:99:3d:6f:c1:61:2c:5b:c3:fa:
a8:11:56:c1:4b:aa:87:28:76:0b:48:6a:2e:64:bd:da:fb:84:
fd:7f:95:b9:17:a4:59:2a:2c:f6:75:d6:85:2c:e9:38:07:aa:
60:39:d9:dd:e1:42:37:f9:38:51:f4:25:45:22:58:f0:0b:90:
02:99:0c:e3:23:34:d0:62:05:81:4e:c9:51:98:6e:cc:d2:5d:
c0:07:af:a3:18:cc:d8:55:66:97:71:cb:ad:e7:c9:5a:c9:b9:
d5:3d:10:e9:88:d2:76:08:5a:4a:54:7b:be:d1:11:98:ec:c7:
97:fd:02:f6:73:62:24:02:03:30:48:57:e5:34:56:50:96:db:
98:1b:f5:f4:08:78:52:2f:05:ad:75:05:50:e8:2d:a8:9a:69:
9f:93:31:26:5c:02:92:70:69:e3:ef:42:b4:a1:1d:cf:d1:43:
60:7d:bc:b9:d3:c2:bd:52:9f:f7:80:8a:08:80:2f:e0:75:df:
04:25:ea:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 18:54:26 2025 by rpki-client