Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
File: cOKzQXw5wP47u7xNUj7UN7KcWhw.mft (raw, json)
Hash identifier: gXGgLnI8RUTw5bTX95ZZyuC+BYCJ/LpHvDmjqhnNCfU=
Subject key identifier: 44:7E:7B:B8:87:C2:9A:3C:5D:AD:7B:43:4B:1C:F2:26:AB:9B:C7:2D
Authority key identifier: 70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
Certificate issuer: /CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Certificate serial: 019896A679FA0C98C59D1CC4CC72E42E16B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
Manifest number: 15BB
Signing time: Mon 11 Aug 2025 01:02:29 +0000
Manifest this update: Mon 11 Aug 2025 01:02:29 +0000
Manifest next update: Tue 12 Aug 2025 01:02:29 +0000
Files and hashes: 1: cOKzQXw5wP47u7xNUj7UN7KcWhw.crl (hash: xmBv2/dG/Et4LbMduyNYecrZ7hs4KoQ/i7TpG//Dli4=)
2: wZl766gEgIlD1PBWErT8JXtbQ6E.roa (hash: GJKy6CeHDJyN+o1oRpRHchOhI0KPIFrY454WKeTW5CM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:79:fa:0c:98:c5:9d:1c:c4:cc:72:e4:2e:16:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Validity
Not Before: Aug 11 01:02:29 2025 GMT
Not After : Aug 12 01:02:29 2025 GMT
Subject: CN=447e7bb887c29a3c5dad7b434b1cf226ab9bc72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:c9:b1:92:a6:ca:67:99:1e:17:86:41:56:
68:cf:92:89:8d:7f:d9:6f:f3:77:7b:3f:b7:27:30:
59:3b:6c:ef:7c:d8:c3:eb:16:d0:d8:3d:30:73:84:
06:6a:0a:52:66:81:9f:2c:31:e5:2e:a4:e5:d8:4a:
6d:5e:df:f1:93:05:4c:14:25:4d:cf:bb:62:1a:fb:
09:01:be:da:a8:8e:eb:42:f8:ec:97:e0:42:23:d2:
75:fa:f6:4e:0f:e2:7f:d8:ad:52:2c:37:cc:09:b7:
7f:70:9e:d8:f1:ce:aa:0d:17:dc:bc:fe:9d:9b:31:
b4:54:ff:b2:cb:ef:da:64:f2:af:3a:eb:c6:f8:f5:
38:1b:83:4c:1d:77:6c:eb:50:5a:90:99:c3:57:7a:
57:65:96:af:00:35:18:97:2a:33:c0:04:1d:e6:fc:
ec:63:f1:8e:12:53:ea:cc:15:7e:84:5a:77:b0:58:
07:c5:8f:78:42:5f:15:ad:2f:32:c1:7c:76:5e:70:
7a:12:c2:04:3c:54:3a:86:9a:37:05:e8:2c:2d:77:
41:31:a3:4d:f9:01:cf:05:58:5a:85:8f:a0:ef:57:
a8:7c:86:df:40:ed:8d:00:de:14:c4:1f:23:a2:94:
82:bb:a6:b9:c6:0c:bb:1a:9b:0e:ba:b5:0b:a7:8d:
20:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7E:7B:B8:87:C2:9A:3C:5D:AD:7B:43:4B:1C:F2:26:AB:9B:C7:2D
X509v3 Authority Key Identifier:
keyid:70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:3d:27:7f:0f:13:44:17:35:70:0a:cf:29:b4:6f:1d:94:dd:
d3:58:bb:e5:ba:e2:11:03:a8:4d:b3:de:f4:37:89:d1:bc:f9:
21:a8:ce:f5:70:c8:2e:13:bd:66:3c:39:2a:20:fb:97:aa:fd:
e3:2b:e1:89:bd:cf:02:6a:ca:dd:89:72:49:5a:ea:b0:7d:21:
8d:f9:74:77:41:e4:5b:bd:68:af:6b:59:4f:42:25:5f:31:30:
3a:11:a4:42:91:64:ab:51:3d:d1:fd:a9:b2:e7:15:40:3d:f1:
c4:c3:b9:c1:7e:1b:eb:9b:1f:70:b0:f5:dc:13:ea:0c:f6:c6:
f5:0d:ad:bd:c7:88:05:0b:6c:74:e4:be:ba:7d:d6:92:59:43:
fd:94:02:af:f9:a3:14:15:a0:2f:9c:0f:d4:25:84:de:dc:9c:
72:b4:d9:ca:99:54:19:03:6f:62:d7:1f:5f:9b:19:84:18:83:
41:c8:af:f6:54:ed:c9:17:70:87:96:73:31:cc:ce:0b:e7:09:
0d:66:e2:30:5e:02:b8:e1:d1:9e:54:1d:06:53:95:56:0f:8a:
8b:f4:b9:b3:91:58:5c:ef:cb:45:84:62:41:ce:cc:42:98:48:
65:65:cb:d0:a2:13:f8:c6:b8:ca:64:7c:6f:cb:2f:85:76:f4:
d1:45:bf:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:05:00 2025 by rpki-client