Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: 1EEaMOZXITzg5L4hwz6rmLLLbnFYnVBsSiGI5IH90ME=
Subject key identifier: 65:17:4D:57:36:AA:03:44:FF:53:CE:D1:33:EA:8B:83:AE:49:FB:43
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 019872985722449714CB8DD65C7111643B47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0F3F
Signing time: Mon 04 Aug 2025 01:00:42 +0000
Manifest this update: Mon 04 Aug 2025 01:00:42 +0000
Manifest next update: Tue 05 Aug 2025 01:00:42 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: eGcL5E/mkdTOfya33fhpOjk41b2fIwNKK71ys2739QM=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:57:22:44:97:14:cb:8d:d6:5c:71:11:64:3b:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Aug 4 01:00:42 2025 GMT
Not After : Aug 5 01:00:42 2025 GMT
Subject: CN=65174d5736aa0344ff53ced133ea8b83ae49fb43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:5a:0d:8a:a1:45:1c:68:0c:ec:f1:fc:8c:
15:f6:63:7d:52:34:b7:21:0d:13:74:b3:53:87:8e:
1f:3f:7b:3c:f6:35:a6:c3:a7:f4:6d:0f:be:41:7e:
f7:21:1b:2a:3c:50:74:f5:d8:41:89:57:29:db:22:
95:81:fc:a7:fa:3a:a3:64:8a:33:a3:d4:b1:f7:2e:
d6:1b:a2:62:2f:80:b1:23:4d:4c:06:a3:df:e6:0a:
23:1a:1c:50:25:54:3b:e4:1e:2b:92:ec:75:5e:66:
16:72:36:b6:1a:a1:f4:88:25:d4:4a:49:3c:92:dc:
05:29:19:47:4a:82:df:72:39:2d:40:ba:2c:d1:59:
00:ce:9e:b4:44:6c:e6:71:97:74:dd:b8:2b:3a:f3:
f5:7b:4c:f0:f6:8b:74:38:39:ad:79:ca:73:31:7d:
e3:9e:a3:5e:01:48:d3:37:ef:4b:da:6b:eb:c7:2a:
b6:1e:41:98:f9:7f:3e:60:1a:5a:33:74:69:62:9d:
bb:b0:2b:60:b4:46:31:90:33:52:c7:2d:c7:42:fe:
b3:b9:26:34:6c:a7:b3:1b:a9:55:b9:9d:65:f8:3f:
a0:cc:b6:0e:eb:9e:47:af:8f:f6:5f:ea:69:98:c3:
15:a3:8c:b4:99:54:20:02:c1:83:b3:6b:8a:b7:c0:
1d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:17:4D:57:36:AA:03:44:FF:53:CE:D1:33:EA:8B:83:AE:49:FB:43
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:67:00:1e:68:56:82:e3:93:8f:53:27:79:f5:ff:6e:12:a9:
8c:4d:b7:c7:69:57:e4:78:a3:e9:16:42:08:01:aa:d6:9e:d1:
d0:31:ff:3a:e2:83:55:13:ca:4b:0e:2b:4c:b1:78:1e:58:b5:
72:3f:1c:b6:7f:f7:ef:37:e0:42:2c:8b:07:a6:be:12:3b:54:
9f:a5:ef:12:e1:19:ad:cf:fd:34:18:ac:50:3a:9f:97:80:6c:
cb:ee:46:84:ab:77:44:65:c4:ab:b6:0e:0c:36:a7:73:62:5f:
8c:b1:c5:fb:f6:de:91:47:00:29:ff:61:5a:2e:2f:d8:ef:72:
58:4e:02:88:d0:87:d2:11:96:4e:59:c5:4c:04:0a:48:2c:33:
f3:ba:be:ca:45:1c:3b:ab:11:ee:e0:c7:07:f1:1d:27:fe:2a:
fe:6c:e0:8d:b5:6b:e0:0a:2b:1c:fb:81:17:bb:8a:c4:6a:a9:
64:ec:fb:70:98:b7:b8:5a:33:c1:69:36:bb:c5:0b:82:48:66:
d2:d5:2d:db:34:fb:c1:f3:b2:41:ee:e2:36:1e:7d:16:ef:f4:
d7:15:eb:54:f8:01:a4:e0:93:25:4e:14:10:a7:fa:5c:cc:24:
0f:0a:b5:5f:39:f3:b2:b0:90:ea:12:2b:30:4f:e6:85:25:02:
9c:03:e6:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:55 2025 by rpki-client