Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
File: os1DAbKJXx2YqFDlic58BjxTn00.mft (raw, json)
Hash identifier: 2TX2m+YCJIYUTTehzSXpYTVXKKhX6H9+zBWt+encf9M=
Subject key identifier: A0:81:18:C2:1A:EC:FF:C8:50:E8:92:25:9E:C4:45:D4:0E:FD:E3:CE
Authority key identifier: A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
Certificate issuer: /CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Certificate serial: 0198D69850A4B9A303403A01DBD73CFC751E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
Manifest number: 11AF
Signing time: Sat 23 Aug 2025 11:02:43 +0000
Manifest this update: Sat 23 Aug 2025 11:02:43 +0000
Manifest next update: Sun 24 Aug 2025 11:02:43 +0000
Files and hashes: 1: KAKz0xo2XXEBIDI7U4s2tUakP98.roa (hash: nzwZHLIuL4E1A+Jcxn7qeWA8mqGxoFVori2v9JbkLPE=)
2: os1DAbKJXx2YqFDlic58BjxTn00.crl (hash: VL09U9v9OJlWBVMIjWpNHKZ9ZgmZxrUHg5JO70anZWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:50:a4:b9:a3:03:40:3a:01:db:d7:3c:fc:75:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Validity
Not Before: Aug 23 11:02:43 2025 GMT
Not After : Aug 24 11:02:43 2025 GMT
Subject: CN=a08118c21aecffc850e892259ec445d40efde3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:03:2d:de:4b:eb:fd:84:0b:c7:2b:7c:20:ff:
ec:7a:d7:8d:a0:cf:a8:16:05:ca:04:ef:33:b2:1e:
0b:d7:2b:7c:48:08:7a:ca:d2:57:c5:f2:cd:7d:f5:
62:de:34:35:7a:77:c5:94:b3:60:10:5a:40:68:dd:
e0:27:5b:65:f5:80:59:1f:8e:fd:19:87:41:b5:c5:
47:c8:a4:cd:8b:35:a6:d5:e4:ca:8c:23:5b:e0:ee:
05:b7:1d:73:9b:ff:93:de:6b:4a:08:a8:88:e8:a1:
67:de:b7:31:ee:49:dc:56:4c:9d:1d:f6:af:9c:87:
32:8b:6e:4e:db:5e:ef:b0:7b:00:8a:40:4c:c3:1f:
3b:e0:48:73:f8:35:4a:21:42:62:a3:79:5a:be:77:
51:70:60:38:fc:20:5d:f9:ea:df:fc:9e:55:7c:a6:
52:56:fd:e6:83:3c:7a:d6:53:a8:44:40:77:b9:ca:
7e:ba:79:eb:f4:04:d6:a7:f5:98:24:95:c2:45:ca:
99:67:01:52:46:c2:1e:6e:2d:b5:0d:9e:3d:76:69:
2c:88:79:02:e9:33:60:5c:8d:28:18:e4:7c:6c:0a:
39:58:3a:92:52:91:ed:b2:af:ea:af:ab:70:94:18:
ad:ab:6c:c7:da:e4:6e:35:78:5d:3f:7e:99:1e:00:
e2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:81:18:C2:1A:EC:FF:C8:50:E8:92:25:9E:C4:45:D4:0E:FD:E3:CE
X509v3 Authority Key Identifier:
keyid:A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e0:88:c7:5c:85:6d:87:c4:93:50:61:59:18:62:e6:19:68:
2f:3e:f4:33:c2:cc:a3:97:e3:9a:4a:e9:83:f9:15:81:13:42:
e8:3b:e1:a4:ad:9b:39:9c:4e:1c:db:6d:09:9f:e0:a5:fe:a8:
2b:c5:7a:1c:1b:09:b9:1c:e7:d0:25:43:fa:d9:89:88:6f:2e:
63:28:b5:77:8a:bb:95:7c:16:87:ba:18:98:46:50:27:44:0f:
0e:3b:d6:ce:5d:78:53:ef:a5:80:02:bf:4b:7d:b9:47:77:f8:
97:03:69:dd:09:98:91:f3:17:7d:e4:2f:06:70:e8:03:bf:28:
44:3b:d3:55:6a:a2:e1:5d:e5:5d:29:20:20:d9:f4:76:95:90:
63:a8:e7:e5:ba:76:74:6f:0d:46:ff:18:0a:b2:f4:94:a1:75:
56:32:14:13:c6:ee:ad:80:08:ab:16:e2:4c:f3:e5:25:99:6a:
94:3a:9c:3e:d6:e7:df:0e:28:09:c4:24:88:1e:8c:dd:f2:59:
61:cc:9c:f4:51:bc:70:63:40:0e:1e:ad:48:16:a8:65:56:97:
79:57:56:76:a6:40:94:98:83:33:32:93:5c:ec:95:07:31:8e:
15:31:73:c2:30:81:bd:f7:32:d1:11:33:0c:b0:4f:62:03:e9:
9b:6c:40:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:53:03 2025 by rpki-client