Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
File: ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft (raw, json)
Hash identifier: 9MoUIjx7smXNEaEMUMX6g4QQNwfJNMF8JO/RGNqqxag=
Subject key identifier: 06:1B:74:ED:34:67:F2:0F:10:F2:1C:0D:B0:9A:EB:89:86:F5:7A:45
Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928
Certificate serial: 01987D8BAAB28A2F40C6C00FF5F1ADA99DE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
Manifest number: 108E
Signing time: Wed 06 Aug 2025 04:02:41 +0000
Manifest this update: Wed 06 Aug 2025 04:02:41 +0000
Manifest next update: Thu 07 Aug 2025 04:02:41 +0000
Files and hashes: 1: 13rU8nhg31f282Ufq4fY9epK_mk.roa (hash: 71Un032C55jpwedQZGjeiCXgaYcH9RkzCt+gCgI2Wak=)
2: DDq525mddfr-xwBo8-T-YcAlqlM.roa (hash: vbBu7r+JS7z7+nPsGEJDbq+t4cp8fYea0z6mgr+ClXE=)
3: ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl (hash: zY8KoW2Bg5w8VlikNo5LQIwbC8wLoNxdXTHd831rR/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:aa:b2:8a:2f:40:c6:c0:0f:f5:f1:ad:a9:9d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20cc67154b403145d139469886127ab629eb928
Validity
Not Before: Aug 6 04:02:41 2025 GMT
Not After : Aug 7 04:02:41 2025 GMT
Subject: CN=061b74ed3467f20f10f21c0db09aeb8986f57a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:90:dd:69:74:f2:d5:e0:0e:b2:43:f8:da:56:
50:1f:53:b6:e5:cb:9f:a1:c2:84:fe:ff:41:d2:de:
04:53:a4:27:2e:a3:d6:04:cb:a6:6e:7f:de:b2:16:
51:73:d8:6f:c4:62:4a:58:cd:ec:7c:0b:5e:df:92:
d6:cc:10:dd:45:6f:9c:c2:48:4a:50:d5:c9:a4:59:
67:97:66:fa:20:98:87:80:13:36:2c:79:e4:f9:fe:
d2:76:ac:16:1b:fe:73:6b:26:af:9f:9f:54:f2:6d:
11:04:cf:c3:a5:d4:de:65:38:71:be:ad:a9:bd:90:
92:c2:e5:74:4b:f5:01:63:06:95:cd:6b:65:b9:11:
f8:4a:e2:6e:cb:06:14:9d:75:b0:2f:03:76:b5:55:
c3:d1:d7:26:ac:ce:a3:07:ee:f6:c8:69:e0:97:c4:
eb:39:19:1f:d2:c0:6c:4b:cb:3d:be:cf:42:e6:83:
46:a2:fe:73:bf:59:26:74:2a:16:9e:99:97:3d:ff:
a2:b6:be:ab:36:5e:55:a1:d8:fa:e3:2d:57:18:04:
7a:f2:41:d4:a9:15:79:c9:10:65:52:08:ab:b7:76:
da:88:82:4e:4a:59:93:d6:79:25:a4:6c:93:be:13:
ad:bb:fc:4f:26:fc:cf:71:35:fc:04:ad:e8:31:2a:
f8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1B:74:ED:34:67:F2:0F:10:F2:1C:0D:B0:9A:EB:89:86:F5:7A:45
X509v3 Authority Key Identifier:
keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:53:ea:66:55:b1:73:d6:70:85:d0:b9:08:79:3c:f7:ee:eb:
80:24:a9:ea:81:a5:9a:5b:7d:3c:ea:ec:57:f3:43:4c:40:41:
46:f5:b8:31:de:a5:be:69:01:6f:41:3c:fc:7b:90:f1:eb:1f:
23:64:7e:a2:23:82:7b:7d:bf:2c:06:fa:b8:d5:64:11:a0:7e:
f1:7d:23:c3:77:af:3b:ce:cd:1b:51:a8:0f:cc:dd:b2:62:c1:
6b:34:04:a9:01:d7:e5:b3:4f:21:76:4b:08:65:bd:d7:cc:23:
90:c3:bb:2a:78:22:75:4c:c7:6a:ed:39:29:d4:33:84:c1:a9:
7b:06:b9:99:4f:6b:14:32:b0:c8:28:0c:4c:c3:b1:84:f6:e3:
a7:44:2f:96:bd:71:24:13:a0:29:3e:84:8e:76:8d:8e:0f:4d:
c2:73:48:d7:04:38:2b:fa:35:72:7f:e1:d9:e0:72:d9:ff:b2:
3e:2f:03:e1:54:80:fa:48:b2:8d:ca:ce:53:8e:6b:0b:d9:67:
c9:21:a4:0d:ff:7a:c2:b9:ba:c1:d8:27:30:fb:e0:3e:9d:b4:
60:a6:af:b6:18:41:15:e8:8c:6f:35:15:5f:23:71:09:dd:a6:
81:f5:88:13:b6:3e:27:4a:88:b9:ec:61:af:0e:2f:90:81:84:
ac:39:9d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:12:20 2025 by rpki-client