Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
File: osiREA5QD7XGTzDxYD_lRdq0kBY.mft (raw, json)
Hash identifier: 4otqN6V6R1q5ydzglihOiJHqgY+5hAq0eE4Cq9PN4ys=
Subject key identifier: 5F:57:62:75:E6:48:78:DB:CF:16:36:DD:82:FA:E4:D3:50:38:17:A5
Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016
Certificate serial: 0197C61535F179B4A5C1A03A3C1E333C78F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
Manifest number: 09AF
Signing time: Tue 01 Jul 2025 13:02:48 +0000
Manifest this update: Tue 01 Jul 2025 13:02:48 +0000
Manifest next update: Wed 02 Jul 2025 13:02:48 +0000
Files and hashes: 1: 2r58NpxvTCdcnNGrjt0v-zkeUtY.roa (hash: TkXA680kjgu+5bXWMHrgD9kPPHcPEiisIsJWWTeRFzw=)
2: osiREA5QD7XGTzDxYD_lRdq0kBY.crl (hash: AacxPvXaWu+GkKvO4K8I+QQNX8QdY9tcY7c53JrhM8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 13:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:15:35:f1:79:b4:a5:c1:a0:3a:3c:1e:33:3c:78:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016
Validity
Not Before: Jul 1 13:02:48 2025 GMT
Not After : Jul 2 13:02:48 2025 GMT
Subject: CN=5f576275e64878dbcf1636dd82fae4d3503817a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:c9:41:dc:68:7d:9b:88:40:cc:40:c4:22:
b3:04:7c:47:07:ee:d4:c3:e7:54:3c:c1:93:f2:44:
cc:e8:2b:2f:82:f8:71:0b:6f:50:e6:3f:0b:d9:39:
cb:bb:df:e8:0e:6c:d1:bb:d9:3d:9c:fa:f2:24:69:
e5:e7:c4:62:d9:9a:a3:93:fd:5a:c6:9f:6d:48:d8:
cc:76:06:fe:c9:b6:d0:74:2d:ae:4c:6b:95:56:1b:
52:75:03:16:fe:66:8c:d6:d1:5e:94:47:57:c2:32:
6b:82:2a:5c:fd:f1:67:93:66:b1:8f:81:11:78:59:
d1:73:66:4f:03:3f:ae:22:6a:e8:12:a5:fd:87:26:
34:d4:ec:af:fb:2b:8d:dd:41:b2:7e:60:b1:80:92:
1e:a0:b8:60:a7:da:9e:4d:62:47:45:e5:cf:f9:07:
40:5f:1c:0d:8b:86:31:0d:17:ef:98:14:8b:eb:84:
fe:81:2a:91:35:fd:e9:6e:e0:eb:80:06:61:e9:64:
84:2b:00:09:e0:5c:e6:c9:a8:47:24:09:2a:d9:82:
4d:a9:89:b3:c9:3d:62:cd:eb:2d:88:04:60:f1:94:
2d:f7:f8:a2:62:1c:f1:51:aa:bd:da:39:e4:30:11:
b8:76:e1:63:a9:b6:a3:b3:d2:90:eb:2e:11:45:c2:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:57:62:75:E6:48:78:DB:CF:16:36:DD:82:FA:E4:D3:50:38:17:A5
X509v3 Authority Key Identifier:
keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:b0:87:85:26:f1:15:f4:89:32:a0:c5:77:27:02:4e:a0:3b:
46:40:22:93:a6:a0:44:99:4b:8b:46:af:e7:91:ed:96:c8:04:
11:d1:d5:b6:42:d9:fd:68:06:97:a4:73:6c:bd:9c:73:c5:9a:
da:12:71:86:e3:93:83:93:b2:57:6d:66:45:4a:6c:24:18:23:
19:8d:fb:cc:43:95:d9:2f:43:42:4a:3f:68:ae:4e:41:fd:58:
7f:49:04:b4:13:36:41:c8:b3:ea:b6:19:51:00:5e:66:ad:54:
89:e4:80:23:b2:3e:8d:61:44:a2:53:e5:23:59:c1:b8:ec:18:
ef:67:68:1c:0b:85:6a:a3:8d:98:f7:1f:d9:6c:e4:15:d3:3f:
88:f8:4b:c3:ed:f5:b8:c3:55:f3:24:c4:91:bb:57:9d:62:78:
69:77:4f:7f:02:26:90:c0:85:03:6f:c0:9e:a1:fe:7f:a0:87:
65:a5:5d:29:3d:d0:8d:3b:88:fb:73:08:5c:ba:26:af:09:95:
49:c6:07:ab:80:04:a0:a4:93:9a:8f:db:08:7a:29:95:da:55:
c9:40:ee:36:54:61:97:b8:43:26:e6:6e:6a:fa:20:2a:18:c8:
c3:eb:b2:3c:08:bc:5f:0a:82:6f:3e:7a:12:73:f6:2f:0b:45:
cb:0e:cc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 19:08:46 2025 by rpki-client