Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: NYBC2xRIpeE4n3RZ1Sd6fbirUkWtuh6JTLERoK8eBeE=
Subject key identifier: 33:FB:23:54:69:AA:6F:79:C3:56:9A:F4:0D:0B:59:29:AD:2F:3E:8F
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 0198D4A7945A91C4439496C53E8C73CFCF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 05F4
Signing time: Sat 23 Aug 2025 02:00:08 +0000
Manifest this update: Sat 23 Aug 2025 02:00:08 +0000
Manifest next update: Sun 24 Aug 2025 02:00:08 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: kGSdUyOks75mP1vu22Ld1rnCDGb4JuIU68EZtC850Pg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:94:5a:91:c4:43:94:96:c5:3e:8c:73:cf:cf:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Aug 23 02:00:08 2025 GMT
Not After : Aug 24 02:00:08 2025 GMT
Subject: CN=33fb235469aa6f79c3569af40d0b5929ad2f3e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b8:18:04:56:e1:d6:d1:28:41:18:98:42:35:
c3:76:84:0c:e5:64:3c:c2:d2:85:d5:6d:ed:0c:ac:
56:4b:c8:17:87:a4:9c:be:2a:97:ae:c5:11:c4:7f:
bb:9c:2a:54:2b:87:49:c2:45:08:9a:9b:09:91:df:
ac:78:45:1b:0e:df:1e:3c:c5:b6:68:fb:31:de:6b:
02:e1:70:80:e6:37:dc:2b:a5:19:df:ca:f0:fe:d3:
ab:ef:a6:50:6d:60:6e:88:4d:2f:58:51:df:1b:96:
ef:2e:62:2a:ed:ca:f3:23:bc:a7:1f:cd:cc:33:e4:
8b:80:e5:38:a8:3b:2b:36:50:fe:ed:75:ab:b3:c6:
2b:db:4a:83:0f:1a:2d:1c:9e:6c:a5:fb:68:b0:ad:
e0:da:55:19:58:5a:03:f1:da:fc:ac:72:7c:9d:47:
76:66:ec:73:17:c4:22:38:be:d1:6b:be:e4:47:24:
2b:05:bc:cc:52:fd:2c:c7:66:ed:8b:f1:2f:9b:b2:
6b:0a:e1:fb:b8:6f:a5:04:2c:3d:85:c1:35:b8:a4:
9c:a1:6e:96:19:08:53:37:da:33:7a:02:0f:39:5b:
a7:74:0e:a7:c3:e6:23:d6:33:f9:ab:85:b9:7c:f9:
7d:69:2b:2f:41:8b:7c:1c:2e:d5:a5:55:4f:aa:6d:
e9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FB:23:54:69:AA:6F:79:C3:56:9A:F4:0D:0B:59:29:AD:2F:3E:8F
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:d6:4d:e8:6b:fd:ea:e0:6b:00:e1:fe:34:e7:67:bc:9a:08:
ae:39:51:10:b1:f3:94:af:0b:3f:b8:55:62:62:92:4c:ad:da:
3b:87:d7:97:e9:5b:44:e9:0f:e7:da:71:d9:82:a9:14:cb:ad:
d1:bc:d0:7d:01:0b:a3:97:a6:30:bb:2e:31:8b:6f:09:6e:0b:
41:c9:5a:6c:bd:c0:b6:5e:92:ae:a3:9a:78:30:cd:03:d0:23:
3e:fe:5c:19:87:6d:d9:74:c5:d8:0c:1d:b6:cd:70:a6:7c:bc:
22:64:2f:34:8f:26:f1:86:de:f5:ee:20:06:0b:e9:dd:b5:4f:
4b:56:0f:bb:c2:fe:b1:a2:0b:19:a8:a6:b6:ab:4f:38:32:31:
8c:e4:51:34:39:9d:37:c4:46:d8:d5:56:6f:34:3d:a1:03:78:
3e:dd:ea:06:2f:e9:f3:6d:c4:c9:f0:b4:56:a9:b5:37:35:1d:
c9:c7:e8:96:a0:0d:41:6f:ce:d9:89:35:d8:f7:70:56:cb:17:
57:ec:e1:4f:02:63:f0:a5:cc:52:39:d0:92:42:95:e4:e3:af:
19:49:0d:43:03:b0:6d:ac:c1:77:2c:e3:f4:59:cd:c5:46:0b:
44:d7:29:20:55:2a:c9:35:29:f3:62:fc:ba:c0:54:d3:fc:ea:
1e:48:0a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:10 2025 by rpki-client