Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: Y2LbRvDuTPvePqZwnQdd1QqYhRpZKTASYNWsBaLtymw=
Subject key identifier: 2C:BE:EB:AB:D6:73:31:A5:64:A1:84:BC:FB:81:90:F9:3E:B4:77:BD
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 0198D5F15D5E6B052CF64FFC67939B4366D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 15DE
Signing time: Sat 23 Aug 2025 08:00:21 +0000
Manifest this update: Sat 23 Aug 2025 08:00:21 +0000
Manifest next update: Sun 24 Aug 2025 08:00:21 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: y9waEHQXDefwZl6GY06Ett2+sAD7IaKeqlLGXDugi+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:5d:5e:6b:05:2c:f6:4f:fc:67:93:9b:43:66:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Aug 23 08:00:21 2025 GMT
Not After : Aug 24 08:00:21 2025 GMT
Subject: CN=2cbeebabd67331a564a184bcfb8190f93eb477bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:91:1c:5b:54:b6:66:f3:31:e9:5c:fa:20:
a3:7f:a3:e5:ca:95:72:65:c2:23:2f:3c:a1:e8:5a:
73:9c:23:3a:b4:7a:28:70:f4:c5:ab:c0:ab:4d:fe:
12:e7:a9:10:04:4a:17:63:d5:85:94:89:6b:38:7b:
67:55:92:a2:f5:ca:68:a3:4e:60:a5:d4:0d:7c:a0:
f9:9c:0a:dd:f4:7f:20:dd:ed:9b:32:4e:13:bb:54:
c8:74:d9:3a:d0:bd:30:e5:b7:b8:ba:01:6c:2b:08:
69:ad:38:8f:ce:5d:f8:70:8a:b7:44:96:f9:d3:9c:
5b:54:6a:10:7a:50:ed:aa:e2:4b:26:b1:8d:72:6c:
10:be:b9:74:32:18:3d:76:5e:8e:5e:a0:88:73:7b:
f5:06:5e:b1:f5:e1:3b:8a:aa:1b:3a:62:be:9e:0c:
cf:46:38:4a:9c:ca:94:b6:df:f3:8d:6a:1d:95:c5:
c4:a8:a2:64:64:ec:3c:d2:61:01:dc:c8:2a:7a:6d:
bd:32:8c:70:8a:20:1f:06:3b:c4:3b:25:1f:d4:5b:
8b:53:99:d6:16:ad:28:a2:7c:cc:e0:1e:b5:38:2e:
b2:99:63:38:75:60:53:4c:f9:f3:ab:90:b5:23:64:
a5:bb:8d:00:59:54:5d:3b:b9:08:e4:e4:df:1d:cf:
a8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BE:EB:AB:D6:73:31:A5:64:A1:84:BC:FB:81:90:F9:3E:B4:77:BD
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d5:8a:05:46:55:2b:16:31:82:56:ea:f3:03:12:9e:9d:cb:
35:29:98:5e:28:5f:da:07:c0:1d:a0:c8:7c:21:85:3d:b2:ba:
7c:3d:4e:a9:c7:d2:26:f5:43:f2:64:3f:6f:76:40:c2:ad:75:
c2:7c:9a:c3:6d:f7:2e:0f:da:ed:38:5c:13:27:7a:0b:1e:0f:
9f:84:29:05:e2:c0:e7:f6:ac:aa:7f:c8:95:4f:35:b2:d8:84:
cd:34:75:ed:32:8c:4b:6d:68:3a:b3:9f:35:98:c9:7d:3f:72:
50:59:b0:b9:98:59:51:62:27:c2:ea:99:ce:f7:1b:62:7b:05:
dd:9d:ad:ac:e5:9a:7e:b0:79:ab:5c:45:a2:2f:79:6c:c6:9f:
a5:21:f2:9e:64:f1:db:f1:86:fc:32:47:aa:96:2d:2f:c1:54:
ef:01:3b:10:9d:41:6b:4d:16:cb:47:bb:20:bc:e0:c5:d8:76:
7b:41:d8:05:7e:c6:c5:6c:81:4a:0e:dc:97:55:9a:85:ca:16:
ea:bc:3d:ef:3e:b0:00:e1:ac:4d:38:5c:d3:91:e0:52:d2:52:
2c:e8:7e:09:be:a9:fc:80:84:05:9c:d4:18:4b:df:29:23:55:
be:1c:0c:84:b5:99:d8:e7:74:c8:36:49:5f:73:81:c4:b3:49:
87:55:55:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:40 2025 by rpki-client