Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
File: osiREA5QD7XGTzDxYD_lRdq0kBY.mft (raw, json)
Hash identifier: IXNrJxEUwkpZuPyFkJBK9CVgbPUFFn59c9ppz4wFHWQ=
Subject key identifier: DF:72:A9:6C:EE:BE:FD:02:0A:E6:31:AB:8B:AF:65:06:CA:69:D7:14
Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016
Certificate serial: 0198D661182D811066DD25C287309C82D2EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
Manifest number: 0A3C
Signing time: Sat 23 Aug 2025 10:02:23 +0000
Manifest this update: Sat 23 Aug 2025 10:02:23 +0000
Manifest next update: Sun 24 Aug 2025 10:02:23 +0000
Files and hashes: 1: 2r58NpxvTCdcnNGrjt0v-zkeUtY.roa (hash: TkXA680kjgu+5bXWMHrgD9kPPHcPEiisIsJWWTeRFzw=)
2: osiREA5QD7XGTzDxYD_lRdq0kBY.crl (hash: duTz7Ee3oDCqSeC4lLJ0ppMElN2XXNonYiHyMlZIOnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:18:2d:81:10:66:dd:25:c2:87:30:9c:82:d2:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016
Validity
Not Before: Aug 23 10:02:23 2025 GMT
Not After : Aug 24 10:02:23 2025 GMT
Subject: CN=df72a96ceebefd020ae631ab8baf6506ca69d714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:98:e0:24:0b:0d:89:70:1c:82:1e:a6:a9:
03:97:b8:c8:77:01:a9:61:6d:51:62:02:38:3c:f9:
85:fc:96:f6:3d:49:a8:5b:0e:bb:68:b6:ce:59:9d:
e8:a4:68:ee:f4:10:d3:15:4e:b5:9a:1f:58:84:52:
fb:a5:b0:00:09:dd:0f:7b:12:db:3d:27:e9:89:c8:
e5:52:c9:dd:f5:74:9b:58:55:af:44:3a:63:5e:d3:
82:1a:de:aa:44:c0:77:e0:b3:b3:16:c6:d6:41:3a:
db:90:96:20:4c:77:e2:f5:0e:af:ad:87:9f:5a:11:
07:eb:78:0c:cd:bd:b6:f0:7e:a7:a4:bf:a5:da:b5:
e1:e3:d3:bf:51:a4:f3:88:e3:9e:bb:d6:83:60:cc:
34:4f:52:48:26:ed:4d:84:96:68:4d:37:cf:fe:74:
d8:85:32:8d:45:c7:d2:29:4d:de:cd:9a:ca:f3:c4:
ba:27:0b:b9:41:d9:6a:72:ae:64:cb:54:70:5f:b0:
65:46:90:ea:42:75:bf:13:3f:29:09:6a:03:61:ac:
e4:5f:b1:de:b7:ce:a1:dc:b3:f1:37:97:15:61:e9:
49:a8:69:cd:16:0f:e6:3a:60:04:c8:e0:87:8c:0b:
ce:e4:2a:9e:c7:8a:cb:b7:91:23:e5:da:76:ee:d1:
03:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:72:A9:6C:EE:BE:FD:02:0A:E6:31:AB:8B:AF:65:06:CA:69:D7:14
X509v3 Authority Key Identifier:
keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:3f:d4:ed:63:5c:5a:d9:ac:0c:03:3e:54:5e:d5:bc:e5:22:
fb:b3:6e:a0:c5:68:84:0a:c6:67:7b:58:43:11:b3:7f:15:24:
21:45:b6:73:a2:d2:fb:24:9c:7c:9a:67:48:d1:e2:6f:6a:b9:
56:a1:23:ba:ff:44:b7:e5:18:cb:b5:4e:3d:52:7d:67:13:bb:
f4:bd:5c:1a:df:8d:0b:6f:34:aa:5a:1f:59:a5:70:29:3c:11:
31:90:b5:bc:4b:da:7f:77:ee:24:2a:b7:7b:40:b0:fe:af:8d:
8a:dd:f7:5f:e5:5f:e9:6d:f5:e4:02:22:0f:27:f7:c6:d5:76:
2f:5d:38:2d:e6:91:37:99:9d:09:bb:e4:94:78:8b:d4:b9:81:
a4:fb:4a:26:44:9d:fc:f0:ee:91:07:fe:26:17:73:0b:c0:63:
fb:70:48:1c:ca:d4:98:06:55:6d:c7:41:97:3c:03:82:d9:f3:
4c:67:0e:81:ef:ac:da:11:c4:a0:72:3a:24:3f:1c:6f:d4:f4:
57:86:b5:0c:b9:d9:c9:74:b0:b1:65:b4:bd:e7:9b:9f:20:16:
15:f4:8d:39:fd:2b:9f:73:b8:bc:ae:88:d2:15:3d:b3:15:1b:
df:8f:f3:7b:2d:bd:a7:ba:4d:7a:ba:f4:ee:eb:bd:d5:f4:16:
0c:b2:2e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:22:39 2025 by rpki-client