Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: PVJEqledTbO9WaPHlfJpH7KkYgw6kg/wXZQAThgHVbQ=
Subject key identifier: 67:B2:67:F0:F5:58:9F:38:25:36:0B:44:04:24:9C:83:96:32:2E:A3
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019880C2AF113D143C19D1BF0B9FF8A5709B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1621
Signing time: Wed 06 Aug 2025 19:01:39 +0000
Manifest this update: Wed 06 Aug 2025 19:01:39 +0000
Manifest next update: Thu 07 Aug 2025 19:01:39 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: qNcs2wPQyPL/kriNaYjGfkcAgZ2LcOYRzmsflF689Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:af:11:3d:14:3c:19:d1:bf:0b:9f:f8:a5:70:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Aug 6 19:01:39 2025 GMT
Not After : Aug 7 19:01:39 2025 GMT
Subject: CN=67b267f0f5589f3825360b4404249c8396322ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:32:c6:ef:ed:26:3d:fa:39:c9:27:f2:86:e9:
6a:62:33:d2:0e:5a:43:5b:eb:1f:10:af:1c:f7:0b:
df:f7:93:a4:1e:45:3f:32:36:50:26:96:5d:8c:74:
7c:b8:7c:38:dc:b3:66:12:c5:ba:3b:77:65:56:91:
39:5c:f1:d0:e7:f0:68:b6:f7:26:a2:ff:c4:b2:95:
2b:a8:95:b8:cb:52:c8:e8:1a:14:f9:89:00:6f:c0:
6e:47:1f:77:24:7e:e6:a9:0f:1b:57:97:26:91:71:
5a:91:54:9f:1a:6b:ec:8a:a7:03:f5:0b:38:72:b3:
26:4a:73:99:c2:15:63:b6:01:f6:c3:43:1f:37:11:
6f:8d:c4:81:0f:de:b0:58:d7:19:e6:88:54:d9:61:
85:02:22:60:d4:66:e9:60:ba:ad:dc:bb:ec:d2:6b:
3e:25:1b:9b:0e:62:a9:e0:83:90:c2:c8:c0:8e:6d:
c9:5b:64:b0:e9:77:ee:b0:c2:49:cf:3d:13:02:2d:
c1:01:7c:76:5b:fc:6f:73:6b:3f:6a:57:50:c5:0e:
8d:7a:a3:46:37:34:ca:45:21:9a:80:e2:eb:51:f7:
5f:09:8a:5d:00:5b:ad:74:50:27:fc:38:a6:6d:81:
06:3d:90:61:ec:9f:76:f1:32:56:39:a7:ef:24:fd:
45:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B2:67:F0:F5:58:9F:38:25:36:0B:44:04:24:9C:83:96:32:2E:A3
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:03:21:da:eb:b2:e0:16:ca:71:52:51:cd:e9:ba:fc:0f:8a:
ee:d2:37:58:c5:03:0b:93:b8:69:d1:76:1b:e2:a4:cc:25:36:
1b:96:a0:15:b5:5c:1a:29:d3:dd:88:f5:0c:a9:66:c3:cb:6c:
3e:06:5d:74:87:7a:bb:cc:87:28:cf:b0:9f:61:e4:4c:6e:19:
e0:03:ed:87:65:cf:66:53:5d:49:3e:b8:a0:e2:2c:06:81:4f:
6b:e6:57:90:21:ac:fc:8e:b3:64:40:41:eb:07:3d:5d:75:e8:
d5:90:9b:1e:d4:ce:11:8e:2f:74:ee:5a:f6:a6:59:03:10:c5:
81:7d:5e:a4:9a:22:cf:64:a8:f6:8e:75:cb:79:14:48:4f:75:
33:f7:ad:a9:f3:6c:ca:a2:fc:87:df:d3:31:37:35:46:8b:85:
70:27:ce:72:2c:bc:c7:a1:b9:e2:e8:49:4c:ed:4a:12:8c:23:
b2:f3:28:47:ac:e7:93:97:73:6f:bc:d6:3d:77:89:16:c9:6e:
d1:f4:0e:f2:1d:06:73:24:34:64:8b:53:99:4d:5b:72:4e:51:
d9:d9:99:71:a6:82:37:d2:18:4c:d3:bc:1b:7f:b7:82:2a:b9:
33:9b:64:3f:22:0d:da:58:79:a7:6e:e5:f9:96:ef:75:34:33:
e0:fb:20:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 02:03:44 2025 by rpki-client