Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: Z04Kq4EOhfwz0Rpa4NhrAZh+hG2E4JcysWr9u4Qwp7A=
Subject key identifier: C2:28:52:4C:B1:21:86:FB:8C:67:71:9D:96:0E:2C:75:E3:CA:26:8B
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 0198D73B92C322FB3E4935A6E082516E9082
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 14:01:02 +0000
Manifest this update: Sat 23 Aug 2025 14:01:02 +0000
Manifest next update: Sun 24 Aug 2025 14:01:02 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: 0g3TJd+LH/5JMw+GO1Yt3q1LrqF+zd+xWVHhunTT3bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:92:c3:22:fb:3e:49:35:a6:e0:82:51:6e:90:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Aug 23 14:01:02 2025 GMT
Not After : Aug 24 14:01:02 2025 GMT
Subject: CN=c228524cb12186fb8c67719d960e2c75e3ca268b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:87:5f:ab:b3:37:54:0b:aa:48:0c:0e:16:
8d:be:85:19:d1:ea:a4:e6:7a:3a:3b:75:7d:45:71:
88:dc:fe:3b:05:3b:a2:d2:1f:2d:50:41:27:e8:02:
df:d0:0e:d8:fe:45:63:39:6a:4e:2d:45:14:2d:48:
4d:93:68:09:16:43:9e:29:f4:ff:83:cd:12:c6:3d:
46:07:0f:47:aa:98:d7:53:27:d2:00:65:ad:5f:6b:
0f:63:b9:46:5f:0e:3e:7b:0d:99:cf:42:68:31:52:
a1:c5:03:bb:2b:8e:12:51:29:72:2c:d9:7e:f4:26:
fe:09:8a:6f:18:a2:bf:1b:ba:63:b7:45:14:04:79:
35:92:21:f0:a0:d9:b7:34:4d:a2:28:18:eb:8d:51:
7f:aa:65:45:3b:6b:27:5b:bf:9e:06:21:b9:10:39:
ca:c0:cb:a7:76:95:f3:f4:23:14:e1:a1:ea:b0:64:
1d:e0:6f:2f:94:7f:e9:cb:4d:7a:dd:6f:55:cf:21:
4f:4f:bb:ae:61:8c:ef:ca:e8:45:ab:f0:9a:d6:78:
1a:04:63:29:d3:c1:ed:34:ee:77:af:7e:32:2f:c2:
a0:a3:6e:1e:a4:3a:db:52:8b:d4:47:d7:48:50:56:
db:5e:55:c3:e4:58:44:48:97:e0:f0:1d:0a:16:91:
3b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:28:52:4C:B1:21:86:FB:8C:67:71:9D:96:0E:2C:75:E3:CA:26:8B
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:1b:b5:d5:07:c0:af:5e:9b:9c:7f:09:ad:5c:7f:11:87:d7:
f4:96:5a:0a:f1:29:8c:f6:90:b2:ea:68:b4:35:b5:0a:31:7d:
41:f9:a2:ff:dc:34:7c:83:7f:c7:99:98:7d:9b:70:08:8e:5f:
62:47:91:c2:59:f4:20:32:2c:9e:2f:5e:94:43:a7:3d:15:c8:
0e:8e:72:5d:1f:c1:ea:27:c7:d9:e8:1a:48:2b:73:4f:04:de:
52:b8:a9:3c:f9:76:d8:77:8d:d0:07:1b:42:46:d8:01:fc:9f:
47:1e:0e:7c:56:fd:6d:d2:9a:5c:89:0a:70:74:00:29:15:da:
48:d8:29:90:7f:1e:6a:c1:7d:05:dc:74:a8:43:a5:bd:96:30:
6c:b8:c9:ec:dc:eb:15:52:87:14:e5:a0:fd:6f:5b:55:f4:0a:
c5:8a:b9:d8:88:74:32:2d:86:19:59:e4:5c:09:be:34:d1:4e:
88:2c:c2:c7:c6:62:48:e1:b4:30:bd:fa:51:d1:06:2b:c1:13:
70:2f:69:c4:6d:ae:f3:2a:f8:01:7b:18:d9:04:32:7e:8d:af:
05:1c:f2:5c:19:f2:95:51:b8:9f:94:d3:ce:b6:26:79:8d:15:
7d:22:b2:d0:92:57:26:ed:7e:dd:15:14:1e:ae:96:e3:78:2f:
d8:21:88:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:14:53 2025 by rpki-client