Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: x+moF1dIjIsqqhDvbtLXh3M4jFTwv4B1SEFZkNgpw7Y=
Subject key identifier: 33:72:8A:DA:2F:25:03:B6:F1:5E:6B:C2:B8:50:E7:B9:97:3E:7F:03
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 0198D4E05B09CFDC232ED9ECFEBB74F4EF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0DE5
Signing time: Sat 23 Aug 2025 03:02:09 +0000
Manifest this update: Sat 23 Aug 2025 03:02:09 +0000
Manifest next update: Sun 24 Aug 2025 03:02:09 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: qhjpu8LtQRPRDl+zOo9FU+mVmuI0bc7XmxhIYZZk1uU=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:5b:09:cf:dc:23:2e:d9:ec:fe:bb:74:f4:ef:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Aug 23 03:02:09 2025 GMT
Not After : Aug 24 03:02:09 2025 GMT
Subject: CN=33728ada2f2503b6f15e6bc2b850e7b9973e7f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:af:c2:5b:3b:c8:83:fe:a3:ed:0d:40:3b:37:
2d:8f:c5:7b:e1:5a:8b:1b:8a:d2:7f:56:33:86:f9:
e7:5c:84:47:57:33:db:c4:fe:0f:84:4d:51:0c:8c:
2a:fb:ec:9c:c5:a5:33:68:e5:62:4a:22:3e:54:af:
9b:4c:25:a4:24:6e:12:56:d3:95:b8:1c:ef:91:c7:
95:42:ac:8b:19:57:1e:74:71:52:e4:3f:3f:d4:dc:
c0:54:a0:76:cf:6d:a4:b7:fa:45:8e:af:f0:5f:78:
0f:61:38:61:40:65:ad:3d:a2:ff:66:ca:67:01:e1:
89:01:67:0d:c6:d9:91:cb:05:33:41:42:e6:16:5f:
1f:75:68:10:ed:1a:ff:4c:0d:5f:24:e5:17:8f:3a:
8c:75:87:11:98:51:b8:6e:7d:39:3e:8f:88:1a:a6:
84:c5:c9:c8:46:b7:e6:0d:b1:75:82:dc:9b:c6:f2:
18:be:10:11:d6:ac:bf:aa:3d:32:d6:cb:28:99:8c:
c0:b0:a2:54:f6:de:21:66:a5:22:a3:d1:01:fa:2f:
b1:e0:57:ae:d4:40:88:0f:2f:45:29:3d:51:bc:17:
fb:59:e7:82:35:4d:6f:a4:56:ec:2b:ba:1e:70:4f:
02:42:92:f0:ef:86:28:54:fb:6a:b2:86:6b:19:b7:
ec:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:72:8A:DA:2F:25:03:B6:F1:5E:6B:C2:B8:50:E7:B9:97:3E:7F:03
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:f5:01:42:c0:be:f9:53:df:c1:3b:00:3c:3c:97:bd:dc:8f:
52:c0:c6:f0:f5:cb:e7:3e:e1:6c:39:bb:fe:03:ce:43:c8:78:
b1:a1:39:6d:7c:e5:95:ea:93:f9:d4:2d:81:61:69:ea:d7:a5:
b4:40:5a:a1:6e:98:32:ab:5e:68:3c:b9:07:35:a9:74:3a:2c:
6b:61:eb:0a:e2:86:a2:73:ef:79:3c:54:fb:1e:aa:e8:ac:be:
3b:0e:55:ec:7a:24:66:4f:ca:84:36:58:73:c3:03:34:af:c4:
06:db:dc:a3:65:84:03:28:09:87:1b:65:e7:f3:77:2f:30:d4:
79:84:f8:de:41:c9:1c:ba:f4:07:65:69:94:75:47:43:58:11:
e8:04:87:e1:34:ce:69:b2:9f:65:bc:47:07:fa:cb:72:b8:fc:
85:df:56:3d:66:2a:03:25:fa:28:c1:a9:d9:ae:5f:98:00:d4:
12:0f:d9:0d:34:eb:36:62:e3:f0:47:5d:a2:c3:21:f3:78:99:
ea:91:ab:92:00:dd:52:5a:67:1a:4e:8e:8a:3b:80:f5:c9:88:
87:3f:ad:a1:b3:44:f9:d7:f5:55:95:94:bf:94:c7:01:da:92:
ad:0b:84:52:60:2f:19:e2:f3:72:2f:35:34:16:a5:8c:8f:98:
1c:f5:61:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:29 2025 by rpki-client