Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json)
Hash identifier: GZO2mJXzPhLOlaUB1sKiDAM/eLivcTS7WOot//3Yrzw=
Subject key identifier: A1:1F:84:BB:09:D8:9A:C2:BD:BD:7E:4A:41:0B:8F:24:E5:B5:97:33
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 0198D65FE0ED90C7D1DB7FD26B54ED6EA55E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
Manifest number: 0FC6
Signing time: Sat 23 Aug 2025 10:01:04 +0000
Manifest this update: Sat 23 Aug 2025 10:01:04 +0000
Manifest next update: Sun 24 Aug 2025 10:01:04 +0000
Files and hashes: 1: N4CwZRnLnlumD-RJFVgkbIUrCBc.roa (hash: EtoC/NIHh5NhO9jyQ35IICnYchDtP+NYLu/Fs0pjNjc=)
2: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: zo6VVfLDZtoaoFlM9msnluIs4IeEyO34gYvaLAgkCyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:e0:ed:90:c7:d1:db:7f:d2:6b:54:ed:6e:a5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Aug 23 10:01:04 2025 GMT
Not After : Aug 24 10:01:04 2025 GMT
Subject: CN=a11f84bb09d89ac2bdbd7e4a410b8f24e5b59733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6f:96:40:0c:47:87:5b:0e:f9:a8:ea:45:d3:
06:08:66:d1:2e:86:e4:a6:7f:bf:59:fc:0f:60:9f:
ce:d0:53:c1:2b:3e:b7:81:66:26:0f:d4:a2:9f:4c:
da:ee:eb:3c:1f:f3:7d:bf:71:07:7c:5c:96:07:be:
60:75:67:d8:22:99:fc:c1:66:c4:2b:2f:39:d5:14:
2a:3f:29:b9:4f:b8:0d:de:f7:b3:0c:71:76:ab:d7:
ce:1c:c5:d7:30:43:b6:fa:02:91:a6:99:bb:82:a1:
65:68:17:7b:89:36:86:a0:2a:cf:b9:d8:60:33:b8:
3d:66:c6:6c:ef:60:bb:5e:4e:73:01:b6:63:3a:db:
a7:40:83:e2:4f:2a:bb:37:f7:0d:b7:17:8e:06:fb:
01:15:87:fc:5b:3e:27:63:35:3e:d4:c6:ea:a7:84:
5d:b3:b7:3e:47:aa:0b:84:2f:dc:fd:c6:4a:25:91:
f0:b4:3c:b9:a4:c1:b3:3e:54:64:5f:5a:4f:df:9b:
56:28:00:85:e8:85:c6:ff:75:9d:b4:e8:84:a1:53:
3d:8e:53:08:80:e3:a5:cc:2d:36:51:7c:3d:41:e7:
34:45:3e:a9:ea:e5:b4:57:8c:32:dd:25:1b:ae:fa:
c6:11:06:87:95:c8:ae:bf:af:c8:a9:a9:fc:83:7c:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1F:84:BB:09:D8:9A:C2:BD:BD:7E:4A:41:0B:8F:24:E5:B5:97:33
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:63:e8:39:41:3d:e5:9d:46:9e:22:e3:c5:ed:8c:5a:ea:ba:
5b:f3:cb:0d:ed:b7:f0:f4:1f:50:43:21:50:26:3d:fe:ff:30:
51:b2:dd:3a:c1:ad:40:f7:df:76:8c:91:11:6d:94:29:1c:db:
d4:4a:0b:07:db:02:e1:1b:dc:06:8b:28:c1:2e:8e:e0:19:c8:
e1:ae:3f:2d:32:bb:ec:f3:45:e2:7d:59:6f:cc:e5:38:63:c3:
43:0e:22:42:c0:6e:52:2c:5c:73:d3:f4:09:7d:1e:ff:ee:6e:
07:9c:e5:2f:f6:fb:ae:66:0d:0e:e4:64:89:f2:77:d0:e8:a4:
c8:6d:9b:8d:a1:52:f4:b5:e3:60:87:89:7b:f5:42:a3:11:0b:
ca:0e:f3:d4:1c:d6:49:1d:b4:99:0e:bd:16:12:77:57:e6:1f:
63:d9:34:dd:6b:6f:26:4d:ae:cf:f5:59:2e:a4:5f:a4:32:07:
20:79:60:29:ae:aa:c2:ad:4f:a9:14:8c:9f:e6:42:6f:c1:be:
5b:83:26:29:be:e4:c5:fe:d4:fd:11:12:d9:45:bd:cf:a7:f1:
b7:db:23:30:c4:be:83:e4:80:19:18:1e:53:ef:ea:0a:c3:9b:
56:f1:a4:50:d5:d4:d2:c9:43:23:33:30:96:a3:5e:2c:47:5c:
48:30:96:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:24 2025 by rpki-client